zavirovaný PC

[Pixe]

Dobrý den, prosím o kontrolu RSIT logu, Avira poslední dobou přesunula do karantény hromadu virů. Děkuji.

Logfile of random's system information tool 1.08 (written by random/random)
Run by Vojta at 2014-07-20 11:04:20
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 100 GB (21%) free of 476 GB
Total RAM: 4095 MB (44% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:04:26, on 20.7.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16521)
Boot mode: Normal

Running processes:
C:\Windows\PixArt\Pac7302\Monitor.exe
C:\Program Files (x86)\Vtune\TBPANEL.exe
C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
C:\Users\Vojta\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Classic PDF Editor\PDFVPrinter.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Vojta.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [PDFVPrinter] C:\Program Files (x86)\Classic PDF Editor\PDFVPrinter.exe
O4 - HKLM\..\Run: [RazerGameBooster] C:\Program Files (x86)\Razer\Razer Game Booster\RazerGameBooster.exe -autorun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [Everything] "C:\Program Files (x86)\Everything\Everything.exe" -startup
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [TBPanel] C:\Program Files (x86)\Vtune\TBPanel.exe /A
O4 - HKCU\..\Run: [Google Update] "C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Anime Studio Pro v10] wscript.exe //B "C:\Users\Vojta\AppData\Local\Temp\Anime Studio Pro v10.0 + Activator.vbs"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Vojta\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Vojta\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - Startup: Anime Studio Pro v10.0 + Activator.vbs
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O4 - Global Startup: Secunia PSI Tray.lnk = C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FreeMediaConverter - Unknown owner - C:\Users\Vojta\AppData\Roaming\GVU Technologies\Free Media Converter\CertifiedBrowserService.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protect Monitor (ProtectMonitor) - Unknown owner - C:\Program Files\PCDApp\StartHelp.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: RzKLService - Razer Inc. - C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\sua.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TurboBoost - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13803 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\AUDIODG.EXE 0x2c8
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
taskeng.exe {27BC9392-9483-4910-998B-72AED37E27D1}
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Windows\PixArt\Pac7302\Monitor.exe"
"C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE" /logon
"C:\Program Files (x86)\Vtune\TBPANEL.exe" /A
"C:\Windows\System32\wscript.exe" //B "C:\Users\Vojta\AppData\Local\Temp\Anime Studio Pro v10.0 + Activator.vbs"
"C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe"
"C:\Users\Vojta\AppData\Roaming\GVU Technologies\Free Media Converter\CertifiedBrowserService.exe"
"C:\Program Files (x86)\Secunia\PSI\psi_tray.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\SavePass\7f837661-9578-4ba1-93de-83a099809887-11.exe" 001504 AB41FB89E94A4F359746102CFCA14A7CIE 57050 1404488577 93-0,102-0,104-0,178-288,179-288,180-288,223-288
szndesktop.exe default start
"C:\Users\Vojta\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\Windows\system32\conhost.exe "10855298415654665343166893471974544541-183097997-1961719729940700592-2113078780
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" /logon
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Program Files (x86)\Classic PDF Editor\PDFVPrinter.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe"
"C:\Program Files (x86)\Secunia\PSI\PSIA.exe" --start-service
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
WLIDSvcM.exe 2796
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\splwow64.exe 8192
\??\C:\Windows\system32\conhost.exe "-386533413-666129288-1550317563-175878756-1596399367-5131446801194312628610308628
"C:\Windows\Temp\dgen.exe" -o stratum+tcp://jul6.dgensvc.com:6002 -R 5 -a X11
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_0000066c
"C:\Program Files (x86)\Secunia\PSI\sua.exe" --start-service
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-95fe6bfb-8601-4537-9fc2-6f0aa75ffe5e -SystemEventPortName:HostProcess-c0a9926d-0660-45bf-abd9-826f15a439dc -IoCancelEventPortName:HostProcess-3b56bbe1-6add-45b5-a377-524b5b7dc095 -NonStateChangingEventPortName:HostProcess-9491b859-b46c-44b4-80c0-6805d349e041 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:c32a5fb9-115b-4c13-9b80-238b216b6bc1 -DeviceGroupId:WpdFsGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --remote-debugging-port=9223
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4384.0.1637833976\1489293616" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,16,43 --gpu-vendor-id=0x10de --gpu-device-id=0x0640 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.1106 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/NewSuggestType_A3_Stable_R1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_01/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --channel="4384.2.2094928505\692651748" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/NewSuggestType_A3_Stable_R1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_01/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --channel="4384.3.450726117\300674344" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/NewSuggestType_A3_Stable_R1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_01/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --channel="4384.5.306016954\668835517" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/NewSuggestType_A3_Stable_R1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_01/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --channel="4384.6.1106664591\1109933101" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/NewSuggestType_A3_Stable_R1/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_01/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --channel="4384.10.1976584035\806110330" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4384.11.1572420493\1992024384" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/OmniboxBundledExperimentV1/NewSuggestType_A3_Stable_R1/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_01/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --channel="4384.17.17282076\116067113" /prefetch:673131151
taskeng.exe {4BE426FD-313A-4F85-92F6-64E7EEEC8D66}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/OmniboxBundledExperimentV1/NewSuggestType_A3_Stable_R1/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_01/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --channel="4384.23.2018187666\1407324597" /prefetch:673131151
taskhost.exe $(Arg0)
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/OmniboxBundledExperimentV1/NewSuggestType_A3_Stable_R1/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_01/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --channel="4384.24.247534719\279719360" /prefetch:673131151
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
"C:\Users\Vojta\Downloads\RSITx64 (1).exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\12106982-84c6-415d-8573-e3b1ac84f792-1.job
C:\Windows\tasks\12106982-84c6-415d-8573-e3b1ac84f792-11.job
C:\Windows\tasks\12106982-84c6-415d-8573-e3b1ac84f792-2.job
C:\Windows\tasks\12106982-84c6-415d-8573-e3b1ac84f792-3.job
C:\Windows\tasks\12106982-84c6-415d-8573-e3b1ac84f792-4.job
C:\Windows\tasks\12106982-84c6-415d-8573-e3b1ac84f792-5.job
C:\Windows\tasks\12106982-84c6-415d-8573-e3b1ac84f792-5_user.job
C:\Windows\tasks\12106982-84c6-415d-8573-e3b1ac84f792-6.job
C:\Windows\tasks\12106982-84c6-415d-8573-e3b1ac84f792-7.job
C:\Windows\tasks\7f837661-9578-4ba1-93de-83a099809887-1.job
C:\Windows\tasks\7f837661-9578-4ba1-93de-83a099809887-10.job
C:\Windows\tasks\7f837661-9578-4ba1-93de-83a099809887-11.job
C:\Windows\tasks\7f837661-9578-4ba1-93de-83a099809887-2.job
C:\Windows\tasks\7f837661-9578-4ba1-93de-83a099809887-4.job
C:\Windows\tasks\7f837661-9578-4ba1-93de-83a099809887-5.job
C:\Windows\tasks\7f837661-9578-4ba1-93de-83a099809887-5_user.job
C:\Windows\tasks\7f837661-9578-4ba1-93de-83a099809887-6.job
C:\Windows\tasks\7f837661-9578-4ba1-93de-83a099809887-7.job
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\AmiUpdXp.job
C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job
C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore1ce80a272d47fbe.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000Core1ce7ee924bea913.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000UA.job
C:\Windows\tasks\Norton Security Scan for Vojta.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09 96128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08 202144]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-05-11 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-05-11 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"PAC7302_Monitor"=C:\Windows\PixArt\PAC7302\Monitor.exe [2007-12-10 323584]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2010-03-25 2726728]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"TBPanel"=C:\Program Files (x86)\Vtune\TBPanel.exe [2009-10-05 2158592]
"Google Update"=C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-14 116648]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-02-10 20922016]
"AdobeBridge"= []
"Anime Studio Pro v10"=wscript.exe //B C:\Users\Vojta\AppData\Local\Temp\Anime Studio Pro v10.0 + Activator.vbs []
"cz.seznam.software.autoupdate"=C:\Users\Vojta\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Vojta\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Vojta^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~2\MICROS~1\Office12\ONENOTEM.EXE [2009-02-26 97680]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2010-01-18 2787840]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"CanonSolutionMenuEx"=C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2010-04-02 1185112]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2014-06-24 750160]
"AdobeCS4ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"PDFVPrinter"=C:\Program Files (x86)\Classic PDF Editor\PDFVPrinter.exe [2011-07-26 28672]
"RazerGameBooster"=C:\Program Files (x86)\Razer\Razer Game Booster\RazerGameBooster.exe [2014-02-25 61152]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2014-06-23 3816272]
"Everything"=C:\Program Files (x86)\Everything\Everything.exe [2009-03-13 602624]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
Secunia PSI Tray.lnk - C:\Program Files (x86)\Secunia\PSI\psi_tray.exe

C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Anime Studio Pro v10.0 + Activator.vbs

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-07-21 258560]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2014-07-19 14:46:57 ----D---- C:\Program Files (x86)\Czech Soccer Manager
2014-07-18 12:42:15 ----A---- C:\awhDF37.tmp
2014-07-11 18:17:40 ----D---- C:\Users\Vojta\AppData\Roaming\DownloadManager
2014-07-11 18:16:59 ----A---- C:\awhA500.tmp
2014-07-11 18:14:42 ----D---- C:\Program Files (x86)\Seznam.cz
2014-07-11 18:12:48 ----D---- C:\Program Files\PCDApp
2014-07-11 18:12:28 ----D---- C:\ProgramData\1c7ebe08af89e1ae
2014-07-11 15:17:40 ----D---- C:\Users\Vojta\AppData\Roaming\QuickScan
2014-07-11 15:11:18 ----D---- C:\Program Files (x86)\P-HD-V1.4
2014-07-11 11:57:39 ----D---- C:\Users\Vojta\AppData\Roaming\Celemony Software GmbH
2014-07-11 11:55:50 ----D---- C:\Program Files\Common Files\Propellerhead Software
2014-07-11 11:55:49 ----D---- C:\Program Files\Common Files\VST3
2014-07-11 11:55:48 ----D---- C:\Program Files\Common Files\VST2
2014-07-11 11:55:45 ----D---- C:\Program Files\Common Files\Avid
2014-07-11 11:55:37 ----D---- C:\ProgramData\Celemony Software GmbH
2014-07-11 11:55:37 ----D---- C:\Program Files\Celemony
2014-07-11 11:55:37 ----D---- C:\Program Files (x86)\Celemony
2014-07-11 11:54:54 ----D---- C:\Program Files\Common Files\Celemony
2014-07-11 10:56:46 ----D---- C:\Program Files\McAfee Security Scan
2014-07-09 12:45:03 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2014-07-09 09:28:56 ----A---- C:\Windows\system32\drivers\nethfdrv.sys
2014-07-09 09:28:00 ----A---- C:\Windows\SYSWOW64\hfpapi.dll
2014-07-08 10:56:22 ----D---- C:\ProgramData\McAfee Security Scan
2014-07-08 10:56:19 ----D---- C:\ProgramData\McAfee
2014-07-05 17:33:28 ----D---- C:\Users\Vojta\AppData\Roaming\Wirecast for YouTube
2014-07-05 17:33:24 ----D---- C:\ProgramData\Telestream
2014-07-05 17:33:23 ----D---- C:\Users\Vojta\AppData\Roaming\Vara Software
2014-07-05 17:30:58 ----D---- C:\Program Files (x86)\Telestream
2014-07-04 17:47:50 ----D---- C:\Program Files (x86)\Everything
2014-07-04 17:46:19 ----D---- C:\Program Files (x86)\YouTube Accelerator
2014-07-04 17:43:17 ----D---- C:\Program Files (x86)\globalUpdate
2014-07-04 17:43:15 ----D---- C:\Program Files (x86)\SavePass
2014-06-24 12:30:16 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2014-06-21 10:23:34 ----D---- C:\Program Files (x86)\Portal.2.Crack.Fix-SKIDROW

======List of files/folders modified in the last 1 months======

2014-07-20 11:04:26 ----D---- C:\Windows\Temp
2014-07-20 11:04:23 ----D---- C:\Program Files\trend micro
2014-07-20 08:53:32 ----D---- C:\Windows\system32\config
2014-07-20 08:45:19 ----D---- C:\Users\Vojta\AppData\Roaming\Seznam.cz
2014-07-20 08:44:57 ----D---- C:\Users\Vojta\AppData\Roaming\Skype
2014-07-20 08:39:55 ----D---- C:\Windows
2014-07-20 08:39:54 ----D---- C:\ProgramData\NVIDIA
2014-07-20 08:39:43 ----SHD---- C:\Config.Msi
2014-07-19 18:02:01 ----D---- C:\Program Files (x86)\Steam
2014-07-19 14:53:45 ----D---- C:\Windows\system32\Tasks
2014-07-19 14:46:57 ----D---- C:\Program Files (x86)
2014-07-19 14:08:18 ----D---- C:\Windows\inf
2014-07-19 11:49:07 ----HD---- C:\ProgramData
2014-07-19 11:28:36 ----AD---- C:\ProgramData\TEMP
2014-07-19 10:45:45 ----SHD---- C:\Windows\Installer
2014-07-19 10:18:04 ----D---- C:\Windows\winsxs
2014-07-19 10:07:25 ----D---- C:\Program Files (x86)\Adobe
2014-07-19 10:01:05 ----D---- C:\Users\Vojta\AppData\Roaming\Adobe
2014-07-19 10:00:58 ----D---- C:\Windows\SysWOW64
2014-07-19 09:58:30 ----D---- C:\Program Files (x86)\CCleaner
2014-07-19 09:58:16 ----D---- C:\Program Files (x86)\ABC 3GP Converter
2014-07-19 09:57:21 ----D---- C:\Users\Vojta\AppData\Roaming\Media Player Classic
2014-07-19 09:56:41 ----SHD---- C:\System Volume Information
2014-07-19 09:56:28 ----D---- C:\Windows\Logs
2014-07-18 17:47:02 ----D---- C:\Users\Vojta\AppData\Roaming\Audacity
2014-07-18 12:46:39 ----D---- C:\Windows\Tasks
2014-07-18 12:38:08 ----D---- C:\Windows\tracing
2014-07-11 21:26:02 ----D---- C:\Users\Vojta\AppData\Roaming\.minecraft
2014-07-11 18:12:48 ----D---- C:\Program Files
2014-07-11 18:12:19 ----RD---- C:\Users
2014-07-11 18:11:50 ----D---- C:\Windows\system32\drivers
2014-07-11 18:11:50 ----D---- C:\Program Files (x86)\Common Files
2014-07-11 11:55:50 ----D---- C:\Program Files\Common Files
2014-07-11 11:55:47 ----D---- C:\Program Files (x86)\VstPlugins
2014-07-11 11:55:36 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-07-11 11:54:38 ----D---- C:\Temp
2014-07-11 10:49:28 ----D---- C:\Users\Vojta\AppData\Roaming\Origin
2014-07-11 10:49:28 ----D---- C:\ProgramData\Origin
2014-07-11 10:47:34 ----D---- C:\Program Files (x86)\Origin
2014-07-09 14:24:58 ----D---- C:\Program Files (x86)\Valve
2014-07-09 12:45:11 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-07-06 15:28:35 ----D---- C:\ProgramData\CanonIJPLM
2014-07-05 08:56:33 ----D---- C:\Users\Vojta\AppData\Roaming\Vso
2014-07-05 08:56:33 ----D---- C:\ProgramData\VSO
2014-07-05 08:56:32 ----D---- C:\Users\Vojta\AppData\Roaming\uTorrent
2014-07-05 08:56:32 ----D---- C:\Program Files (x86)\PDFCreator
2014-06-30 14:49:57 ----D---- C:\Users\Vojta\AppData\Roaming\FlvPlayer
2014-06-29 04:29:27 ----D---- C:\Windows\system32\catroot2
2014-06-28 19:40:26 ----D---- C:\Windows\System32
2014-06-28 19:40:26 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-06-27 18:04:43 ----D---- C:\Users\Vojta\AppData\Roaming\ultrastardx
2014-06-26 16:23:52 ----D---- C:\Program Files (x86)\Stabenfeldt
2014-06-26 15:35:47 ----D---- C:\Program Files (x86)\MyLittleKaraoke
2014-06-24 12:34:14 ----D---- C:\Windows\system32\catroot
2014-06-21 21:23:56 ----D---- C:\Program Files (x86)\MSI
2014-06-21 21:23:25 ----D---- C:\Program Files (x86)\Electronic Arts

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-01-05 503352]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2012-12-06 30568]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2014-05-27 130584]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-10-01 28600]
R1 nethfdrv;nethfdrv; \??\C:\Windows\system32\drivers\nethfdrv.sys [2014-07-09 46160]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2012-08-24 126944]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2014-06-24 117712]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-01-27 47632]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2009-11-02 13784]
R3 CamSuiteVAC;CamSuite Virtual Audio; C:\Windows\system32\DRIVERS\CamSuiteVAC.sys [2008-09-18 56320]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-11-27 67072]
R3 PSI;PSI; C:\Windows\system32\DRIVERS\psi_mf.sys [2010-09-01 17976]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2010-01-11 1290752]
S2 TBPanel;TBPanel; C:\Windows\system32\drivers\TBPanel.sys []
S3 atikmdag;atikmdag; C:\Windows\system32\drivers\atikmdag.sys [2009-07-13 5020672]
S3 DualCoreCenter;DualCoreCenter; \??\C:\Program Files (x86)\MSI\GreenPowerCenterII\NTGLM7X64.sys [2010-02-08 44344]
S3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K; C:\Windows\system32\DRIVERS\e1k62x64.sys [2010-04-06 301232]
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-07-21 7345344]
S3 ioatdma1;ioatdma1; C:\Windows\System32\Drivers\qd162x64.sys [2009-11-16 40144]
S3 ioatdma2;Intel(R) QuickData Technology device ver.2; C:\Windows\System32\Drivers\qd262x64.sys [2009-11-16 42192]
S3 ManyCam;ManyCam Virtual Webcam; C:\Windows\system32\DRIVERS\mcvidrv.sys [2013-11-27 42016]
S3 mcaudrv_simple;ManyCam Virtual Microphone; C:\Windows\system32\drivers\mcaudrv_x64.sys [2013-12-06 35232]
S3 MSILiveVirtualCamera;MSI Live Virtual Camera; C:\Windows\system32\DRIVERS\MSILiveVirtualCamera.sys [2007-01-29 456192]
S3 PAC7302;iLook 300; C:\Windows\system32\DRIVERS\PAC7302.SYS [2009-04-28 532480]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RushTopDevice_J;RushTopDevice_J; \??\C:\Program Files (x86)\MSI\GreenPowerCenterII\RushJ64.sys [2009-03-05 33080]
S3 RushTopDevice2;RushTopDevice2; \??\C:\Program Files (x86)\MSI\GreenPowerCenterII\RushTop64.sys [2008-12-18 75576]
S3 SMARTMouseFilterx64;HID-compliant mouse; C:\Windows\system32\DRIVERS\SMARTMouseFilterx64.sys [2012-03-21 13168]
S3 SMARTVHidMiniVistaAmd64;SMART HID Device; C:\Windows\system32\DRIVERS\SMARTVHidMiniVistaAmd64.sys [2012-03-21 16368]
S3 SMARTVTabletPCx64;SMART Virtual TabletPC; C:\Windows\system32\DRIVERS\SMARTVTabletPCx64.sys [2012-03-21 24944]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 127488]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgx64bus.sys [2008-11-11 17920]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgx64diag.sys [2008-11-11 27136]
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgx64modem.sys [2008-11-11 33792]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2014-06-24 430160]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2014-06-24 430160]
R2 FreeMediaConverter;FreeMediaConverter; C:\Users\Vojta\AppData\Roaming\GVU Technologies\Free Media Converter\CertifiedBrowserService.exe [2013-10-29 105472]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-06-23 2524496]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-04-15 377616]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-01-18 884512]
R2 RzKLService;RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [2014-02-25 105448]
R2 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [2011-04-19 993848]
R2 Secunia Update Agent;Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [2011-04-19 399416]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-01-18 383264]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-07-11 68608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-11 136176]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-26 1260320]
S2 ProtectMonitor;Protect Monitor; C:\Program Files\PCDApp\StartHelp.exe [2014-06-28 65846]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2014-04-22 72704]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09 262320]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-01-12 655624]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-07-11 68608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-11 136176]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-01 111616]
S3 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2010-04-05 116104]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 289256]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-05-13 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-07-16 542912]
S3 TurboBoost;TurboBoost; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2009-11-02 126352]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-08-10 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]

-----------------EOF-----------------

[vyosek]

Zdravim

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

• Ulozte nejlepe na plochu
• Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
• Probehne vytvoreni zalohy a nasledne prohledavani
• Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

[Pixe]

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Vojta on ne 20.07.2014 at 11:16:23,96
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installcore
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installedbrowserextensions
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\crossrider
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\installedbrowserextensions
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{99c91fc5-db5b-4aa0-bb70-5d89c5a4df96}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{55555555-5555-5555-5555-550555705550}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{55555555-5555-5555-5555-550555835562}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660566706650}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660566836662}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{44444444-4444-4444-4444-440544704450}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{44444444-4444-4444-4444-440544834462}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{55555555-5555-5555-5555-550555705550}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{55555555-5555-5555-5555-550555835562}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{66666666-6666-6666-6666-660566706650}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{66666666-6666-6666-6666-660566836662}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440544704450}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440544834462}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{55555555-5555-5555-5555-550555705550}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{55555555-5555-5555-5555-550555835562}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660566706650}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660566836662}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{44444444-4444-4444-4444-440544704450}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{44444444-4444-4444-4444-440544834462}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110511701150}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110511701150}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{55555555-5555-5555-5555-550555705550}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{55555555-5555-5555-5555-550555835562}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{66666666-6666-6666-6666-660566706650}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{66666666-6666-6666-6666-660566836662}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440544704450}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440544834462}



~~~ Files

Successfully deleted: [File] C:\Windows\Tasks\amiupdxp.job



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\Users\Vojta\AppData\Roaming\getrighttogo"
Successfully deleted: [Folder] "C:\Users\Vojta\AppData\Roaming\opencandy"
Successfully deleted: [Folder] "C:\Users\Vojta\AppData\Roaming\pdfforge"
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{0323FFEA-A105-48EC-9EBA-881C8353942E}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{28EA4BFA-E31F-4387-B839-0FB94675DA26}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{40D8F75C-89B5-44F4-A2C4-81B19AB425CB}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{5BCDBCE7-49F1-417D-94CA-7AB9ACAFEB89}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{6DAA7AF0-969F-4FF0-8AE8-B2531DD80369}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{7BA26D80-9919-48B2-8B8D-E5589E68D4ED}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{8EBF0429-6EB9-43D2-9A7E-19E3AD73988E}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{8FEE0598-CFBF-4729-B985-88114F160221}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{D9A60186-9899-437A-BCB4-69798C0CB741}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{F669AEBD-621D-45F6-B29C-98B940471471}



~~~ FireFox

Successfully deleted: [Folder] C:\Users\Vojta\AppData\Roaming\mozilla\firefox\profiles\skz3rplt.default-1369055093059\extensions\staged
Successfully deleted the following from C:\Users\Vojta\AppData\Roaming\mozilla\firefox\profiles\skz3rplt.default-1369055093059\prefs.js

user_pref("extensions.a587fea1b1c7643c08b293c3da78e24852309207e4ba642d8b8a23b0a22e052b5com57050.57050.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A
user_pref("extensions.a858a779a4bec47f4ac06ed86e2daad75d82626c3adcb475bb77d9a1e67c4fd2acom47220.47220.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A
user_pref("extensions.crossrider.bic", "14716c39b4924c0c72aa11eb415c4144");
Emptied folder: C:\Users\Vojta\AppData\Roaming\mozilla\firefox\profiles\skz3rplt.default-1369055093059\minidumps [92 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 20.07.2014 at 11:30:20,26
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[vyosek]

Pokracujte AdwCleanerem

[Pixe]

# AdwCleaner v3.216 - Report created 20/07/2014 at 11:33:46
# Updated 17/07/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Vojta - VOJTA-PC
# Running from : C:\Users\Vojta\Downloads\adwcleaner_3.216.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : globalUpdate
[#] Service Deleted : globalUpdatem
Service Deleted : nethfdrv
[#] Service Deleted : ProtectMonitor

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlvPlayer
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightspark 0.5.3-git
Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Program Files (x86)\Lightspark 0.5.3-git
Folder Deleted : C:\Program Files (x86)\YouTube Accelerator
Folder Deleted : C:\Program Files\PCDApp
Folder Deleted : C:\Users\Administrator\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Administrator\AppData\Local\torch
Folder Deleted : C:\Users\Guest\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Guest\AppData\Local\torch
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\torch
Folder Deleted : C:\Users\Public\Documents\Goobzo
Folder Deleted : C:\Users\UpdatusUser\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\UpdatusUser\AppData\Local\torch
Folder Deleted : C:\Users\Vojta\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Vojta\AppData\Local\globalUpdate
Folder Deleted : C:\Users\Vojta\AppData\Local\torch
Folder Deleted : C:\Users\Vojta\AppData\Roaming\FlvPlayer
Folder Deleted : C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\587fea1b-1c76-43c0-8b29-3c3da78e2485@2309207e-4ba6-42d8-b8a2-3b0a22e052b5.com
Folder Deleted : C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\508d4e2f-a469-421d-a294-135dbb84fe1b@f7b17943-cc9e-4d4a-b223-0bd1e7cfc871.com
Folder Deleted : C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\858a779a-4bec-47f4-ac06-ed86e2daad75@d82626c3-adcb-475b-b77d-9a1e67c4fd2a.com
File Deleted : C:\Windows\SysWOW64\hfpapi.dll
File Deleted : C:\Windows\System32\drivers\nethfdrv.sys
File Deleted : C:\Users\Guest\Desktop\YouTube Accelerator.lnk
File Deleted : C:\Users\UpdatusUser\Desktop\YouTube Accelerator.lnk
File Deleted : C:\Users\Vojta\daemonprocess.txt
File Deleted : C:\Users\Vojta\Desktop\Uninstall.exe
File Deleted : C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
File Deleted : C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
File Deleted : C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
File Deleted : C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
File Deleted : C:\Windows\System32\Tasks\Oxy
File Deleted : C:\Windows\System32\Tasks\PileFile logon
File Deleted : C:\Windows\System32\Tasks\PileFile reminder
File Deleted : C:\Windows\System32\Tasks\ProtectedSearch
File Deleted : C:\Windows\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-1.job
File Deleted : C:\Windows\System32\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-1
File Deleted : C:\Windows\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-11.job
File Deleted : C:\Windows\System32\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-11
File Deleted : C:\Windows\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-2.job
File Deleted : C:\Windows\System32\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-2
File Deleted : C:\Windows\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-3.job
File Deleted : C:\Windows\System32\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-3
File Deleted : C:\Windows\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-4.job
File Deleted : C:\Windows\System32\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-4
File Deleted : C:\Windows\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-5.job
File Deleted : C:\Windows\System32\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-5
File Deleted : C:\Windows\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-5_user.job
File Deleted : C:\Windows\System32\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-5_user
File Deleted : C:\Windows\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-6.job
File Deleted : C:\Windows\System32\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-6
File Deleted : C:\Windows\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-7.job
File Deleted : C:\Windows\System32\Tasks\12106982-84c6-415d-8573-e3b1ac84f792-7
File Deleted : C:\Windows\Tasks\7f837661-9578-4ba1-93de-83a099809887-1.job
File Deleted : C:\Windows\System32\Tasks\7f837661-9578-4ba1-93de-83a099809887-1
File Deleted : C:\Windows\Tasks\7f837661-9578-4ba1-93de-83a099809887-10.job
File Deleted : C:\Windows\System32\Tasks\7f837661-9578-4ba1-93de-83a099809887-10
File Deleted : C:\Windows\Tasks\7f837661-9578-4ba1-93de-83a099809887-11.job
File Deleted : C:\Windows\System32\Tasks\7f837661-9578-4ba1-93de-83a099809887-11
File Deleted : C:\Windows\Tasks\7f837661-9578-4ba1-93de-83a099809887-2.job
File Deleted : C:\Windows\System32\Tasks\7f837661-9578-4ba1-93de-83a099809887-2
File Deleted : C:\Windows\Tasks\7f837661-9578-4ba1-93de-83a099809887-4.job
File Deleted : C:\Windows\System32\Tasks\7f837661-9578-4ba1-93de-83a099809887-4
File Deleted : C:\Windows\Tasks\7f837661-9578-4ba1-93de-83a099809887-5.job
File Deleted : C:\Windows\System32\Tasks\7f837661-9578-4ba1-93de-83a099809887-5
File Deleted : C:\Windows\Tasks\7f837661-9578-4ba1-93de-83a099809887-5_user.job
File Deleted : C:\Windows\System32\Tasks\7f837661-9578-4ba1-93de-83a099809887-5_user
File Deleted : C:\Windows\Tasks\7f837661-9578-4ba1-93de-83a099809887-6.job
File Deleted : C:\Windows\System32\Tasks\7f837661-9578-4ba1-93de-83a099809887-6
File Deleted : C:\Windows\Tasks\7f837661-9578-4ba1-93de-83a099809887-7.job
File Deleted : C:\Windows\System32\Tasks\7f837661-9578-4ba1-93de-83a099809887-7

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabMaint_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabMaint_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASMANCS
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DCABB943-792E-44C4-9029-ECBEE6265AF9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DEDAF650-12B8-48F5-A843-BBA100716106}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : HKCU\Software\Escolade
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\Goobzo
Key Deleted : HKLM\Software\FlvPlayer
Key Deleted : HKLM\Software\GlobalUpdate
Key Deleted : HKLM\Software\Lightspark Team
Key Deleted : HKLM\Software\MediaPlayerV1
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5BF593B3-9AC9-44E5-8AC4-92BD3F4DFBD8}_is1
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{9AAF2503-6CD5-414A-B5BA-37639B76C91F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\FlvPlayer
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Lightspark
Key Deleted : [x64] HKLM\SOFTWARE\installedbrowserextensions
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16521


-\\ Mozilla Firefox v29.0.1 (en-US)

[ File : C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\gmorizz4.default\prefs.js ]


[ File : C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\prefs.js ]


-\\ Google Chrome v36.0.1985.125

[ File : C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Extension] : bopakagnckmlgajfccecajhnimjiiedh
Deleted [Extension] : pljcgbedjplidkdjahbaalanadmjfgop

*************************

AdwCleaner[R2].txt - [3913 octets] - [03/03/2014 00:19:42]
AdwCleaner[R3].txt - [1187 octets] - [03/03/2014 00:46:29]
AdwCleaner[R4].txt - [9185 octets] - [20/07/2014 11:32:12]
AdwCleaner[S1].txt - [3933 octets] - [03/03/2014 00:20:55]
AdwCleaner[S2].txt - [8917 octets] - [20/07/2014 11:33:46]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [8977 octets] ##########

[vyosek]

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  emptyclsid;
  iedefaults;
  FFdefaults;
  CHRdefaults;
  emptyalltemp;
  resethosts;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

[Pixe]

Při pokusu o spuštění se zobrazuje následující hlášení:

Kód: Vybrat vše

C:\Users\Vojta\Desktop\zoek.exe
K dokončení požadované služby není k dispozici dostatek prostředků.

Avira detekuje v zoek.exe virus HEUR/APC (Cloud) a blokuje přístup.

[vyosek]

Dejte tedy log z FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

[Pixe]

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-07-2014
Ran by Vojta (administrator) on VOJTA-PC on 20-07-2014 11:57:42
Running from C:\Users\Vojta\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
() C:\Users\Vojta\AppData\Roaming\GVU Technologies\Free Media Converter\CertifiedBrowserService.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\Pac7302\Monitor.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
() C:\Program Files (x86)\Vtune\TBPANEL.exe
(Microsoft Corporation) C:\Windows\System32\wscript.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(None) C:\Program Files (x86)\Classic PDF Editor\PDFVPrinter.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\main.exe
() C:\Users\Vojta\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\Vojta\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Vojta\Desktop\FRSTLauncher (2).exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [PAC7302_Monitor] => C:\Windows\PixArt\PAC7302\Monitor.exe [323584 2007-12-10] (PixArt Imaging Incorporation)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-25] (CANON INC.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2787840 2010-01-18] (VIA)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [CanonSolutionMenuEx] => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [750160 2014-06-24] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [AdobeCS4ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PDFVPrinter] => C:\Program Files (x86)\Classic PDF Editor\PDFVPrinter.exe [28672 2011-07-26] (None)
HKLM-x32\...\Run: [RazerGameBooster] => C:\Program Files (x86)\Razer\Razer Game Booster\RazerGameBooster.exe [61152 2014-02-25] (Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3816272 2014-06-23] (LogMeIn Inc.)
HKLM-x32\...\Run: [Everything] => C:\Program Files (x86)\Everything\Everything.exe [602624 2009-03-13] ()
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [TBPanel] => C:\Program Files (x86)\Vtune\TBPanel.exe [2158592 2009-10-05] ()
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [Google Update] => C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-09-14] (Google Inc.)
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [Anime Studio Pro v10] => wscript.exe //B "C:\Users\Vojta\AppData\Local\Temp\Anime Studio Pro v10.0 + Activator.vbs"
<===== ATTENTION
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Vojta\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Vojta\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\MountPoints2: E - E:\Autorun.exe
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\MountPoints2: {009d2d5f-ccd1-11df-89eb-6c626d55336b} - G:\Autorun.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
Startup: C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Anime Studio Pro v10.0 + Activator.vbs ()
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=UP97&ocid=UP97DHP
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - {43BDF51A-2F60-44F0-BAF4-59FD6EB6C5E8} URL = http://search.findwide.com/serp?guid={6 ... earchTerms}
SearchScopes: HKCU - {60485703-A58D-40E7-861F-F907F99A4CF4} URL = http://search.yahoo.com/search?p={searc ... type=10799
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059
FF DefaultSearchEngine: Bing
FF SearchEngineOrder.3: Bing
FF SelectedSearchEngine: Bing
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1210150.dll (Adobe Systems, Inc.)
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Windows\system32\C2MP\npdivx32.dll No File
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @real.com/nppl3260;version=12.0.1.669 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nppl3260;version=6.0.12.449 - C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprjplug;version=12.0.1.669 - c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=12.0.1.669 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprphtml5videoshim;version=12.0.1.669 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=12.0.1.669 - c:\program files (x86)\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.448 - C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @lightspark.github.com/Lightspark;version=1 - C:\Program Files (x86)\Lightspark 0.5.3-git\nplightsparkplugin.dll No File
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Vojta\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Vojta\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Vojta\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tnt2ghost.com/Plugin - C:\Users\Vojta\AppData\Local\TNT2\2.0.0.1702\npTNT2ghost.dll (Findwide)
FF Plugin HKCU: @tnt2npapi.com/Plugin - C:\Users\Vojta\AppData\Local\TNT2\2.0.0.1702\npTNT2.dll (Findwide)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Vojta\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Vojta\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Vojta\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: gamevenus.com/CertifiedBrowser - C:\Users\Vojta\AppData\Roaming\GVU Technologies\Free Media Converter\npCertifiedBrowser.dll (GVU Technologies)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Vojta\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Vojta\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF Extension: Star Stable Online - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\plugin@starstable.com [2014-01-12]
FF Extension: Seznam lištička - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-07-11]
FF Extension: Laflurla - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\firefox@laflurla.com.xpi [2014-04-19]
FF Extension: Stylish - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2013-12-17]
FF Extension: Adblock Plus - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-02-05]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-05-13]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-05-13]
FF HKCU\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: No Name - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]

Chrome:
=======
CHR HomePage: hxxp://www.seznam.cz/?clid=16194
CHR StartupUrls: "hxxp://www.seznam.cz/"
CHR NewTab: "chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.4.600\_platform_specific\win_x86\widevinecdmadapter.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\pdf.dll ()
CHR Plugin: (Star Stable Online) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnlmdkpemkkigkgelegknllpmfclakkk\1.0.0.5_0\npstudioruntime.dll (World of Horsecraft AB)
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (CANON iMAGE GATEWAY Album Plugin Utility) - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Java Deployment Toolkit 7.0.550.14) - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U55) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Lightspark 0.5.3-git\nplightsparkplugin.dll No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (globalUpdate Update) - C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
CHR Plugin: (RealNetworks(tm) Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (Unity Player) - C:\Users\Vojta\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Vojta\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CHR Plugin: (Google Update) - C:\Users\Vojta\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (npAPI Plugin) - C:\Users\Vojta\AppData\Local\TNT2\2.0.0.1702\npTNT2.dll (Findwide)
CHR Plugin: (npAPI Ghost Plugin) - C:\Users\Vojta\AppData\Local\TNT2\2.0.0.1702\npTNT2ghost.dll (Findwide)
CHR Plugin: (Certified Browser) - C:\Users\Vojta\AppData\Roaming\GVU Technologies\Free Media Converter\npCertifiedBrowser.dll (GVU Technologies)
CHR Plugin: (Google Talk Plugin) - C:\Users\Vojta\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
CHR Plugin: (Google Talk Plugin Video Renderer) - C:\Users\Vojta\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1210150.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
CHR Plugin: (DivX Web Player) - C:\Windows\system32\C2MP\npdivx32.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealJukebox NS Plugin) - c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - c:\program files (x86)\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
CHR Extension: (Dokumenty Google) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-17]
CHR Extension: (Disk Google) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-09]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2014-07-18]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2014-07-18]
CHR Extension: (YouTube) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-17]
CHR Extension: (Vyhledávání Google) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-17]
CHR Extension: (Star Stable Online) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnlmdkpemkkigkgelegknllpmfclakkk [2014-06-17]
CHR Extension: (AdBlock) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-07-18]
CHR Extension: (Peněženka Google) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-26]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-07-18]
CHR Extension: (Gmail) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-17]
CHR HKLM-x32\...\Chrome\Extension: [cgbealecnakbhfoeeipcnoboempfkbjd] - C:\Program Files (x86)\AmiExt\flashEnhancer\ch\flashEnhancer.crx [2014-04-17]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]

==================== Services (Whitelisted) =================

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2014-04-22] (Adobe Systems) [File not signed]
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-06-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-06-24] (Avira Operations GmbH & Co. KG)
R2 FreeMediaConverter; C:\Users\Vojta\AppData\Roaming\GVU Technologies\Free Media Converter\CertifiedBrowserService.exe [105472 2013-10-29] () [File not signed]
S3 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] ()
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-04-15] (LogMeIn, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [993848 2011-04-19] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [399416 2011-04-19] (Secunia)
R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed]

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-06-24] (Avira Operations GmbH & Co. KG)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [30568 2012-12-06] (AVG Technologies)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-05-27] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-01] (Avira Operations GmbH & Co. KG)
R3 CamSuiteVAC; C:\Windows\System32\DRIVERS\CamSuiteVAC.sys [56320 2008-09-18] ()
S3 DualCoreCenter; C:\Program Files (x86)\MSI\GreenPowerCenterII\NTGLM7X64.sys [44344 2010-02-08] (MICRO-STAR INT'L CO., LTD.)
S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [7345344 2009-07-21] (Intel Corporation) [File not signed]
S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [42016 2013-11-27] (Visicom Media Inc.)
S3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35232 2013-12-06] (Visicom Media Inc.)
S3 MSILiveVirtualCamera; C:\Windows\System32\DRIVERS\MSILiveVirtualCamera.sys [456192 2007-01-29] (MSI Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [47632 2010-01-27] (CACE Technologies, Inc.)
S3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [532480 2009-04-28] (PixArt Imaging Inc.)
S3 RushTopDevice2; C:\Program Files (x86)\MSI\GreenPowerCenterII\RushTop64.sys [75576 2008-12-18] (Your Corporation)
S3 RushTopDevice_J; C:\Program Files (x86)\MSI\GreenPowerCenterII\RushJ64.sys [33080 2009-03-05] (Your Corporation)
S3 SMARTMouseFilterx64; C:\Windows\System32\DRIVERS\SMARTMouseFilterx64.sys [13168 2012-03-21] (SMART Technologies ULC)
S3 SMARTVHidMiniVistaAmd64; C:\Windows\System32\DRIVERS\SMARTVHidMiniVistaAmd64.sys [16368 2012-03-21] (SMART Technologies ULC)
S3 SMARTVTabletPCx64; C:\Windows\System32\DRIVERS\SMARTVTabletPCx64.sys [24944 2012-03-21] (SMART Technologies ULC)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [503352 2011-01-05] () [File not signed]
S2 TBPanel; No ImagePath
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13784 2009-11-02] ()
S3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2008-11-11] (LG Electronics Inc.)
S3 UsbDiag; C:\Windows\System32\DRIVERS\lgx64diag.sys [27136 2008-11-11] (LG Electronics Inc.)
S3 USBModem; C:\Windows\System32\DRIVERS\lgx64modem.sys [33792 2008-11-11] (LG Electronics Inc.)
U3 a62g689c; C:\Windows\System32\Drivers\a62g689c.sys [0 ] (Microsoft Corporation)
U3 aq1j0x8b; C:\Windows\System32\Drivers\aq1j0x8b.sys [0 ] (Microsoft Corporation)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-20 11:57 - 2014-07-20 11:58 - 00030996 _____ () C:\Users\Vojta\Desktop\FRST.txt
2014-07-20 11:57 - 2014-07-20 11:57 - 00000000 ____D () C:\FRST
2014-07-20 11:55 - 2014-07-20 11:55 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Desktop\FRSTLauncher (2).exe
2014-07-20 11:54 - 2014-07-20 11:54 - 02089984 _____ (Farbar) C:\Users\Vojta\Desktop\FRST64.exe
2014-07-20 11:54 - 2014-07-20 11:54 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Downloads\Nepotvrzeno 999264.crdownload
2014-07-20 11:54 - 2014-07-20 11:54 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Downloads\Nepotvrzeno 534212.crdownload
2014-07-20 11:46 - 2014-07-20 11:46 - 01287168 _____ () C:\Users\Vojta\Desktop\zoek.exe
2014-07-20 11:32 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-07-20 11:31 - 2014-07-20 11:31 - 01354223 _____ () C:\Users\Vojta\Desktop\adwcleaner_3.216.exe
2014-07-20 11:30 - 2014-07-20 11:30 - 00006759 _____ () C:\Users\Vojta\Desktop\JRT.txt
2014-07-20 11:15 - 2014-07-20 11:15 - 01016261 _____ (Thisisu) C:\Users\Vojta\Desktop\JRT.exe
2014-07-20 11:03 - 2014-07-20 11:03 - 00832273 _____ () C:\Users\Vojta\Downloads\RSITx64 (1).exe
2014-07-20 08:39 - 2014-07-20 11:35 - 00002298 _____ () C:\Windows\PFRO.log
2014-07-20 08:39 - 2014-07-20 11:35 - 00000112 _____ () C:\Windows\setupact.log
2014-07-20 08:39 - 2014-07-20 08:39 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-19 14:53 - 2014-07-19 14:53 - 00002998 _____ () C:\Windows\System32\Tasks\{E12C2694-014F-48E7-BE9E-D91493171F9C}
2014-07-19 14:47 - 2014-07-19 16:25 - 00000000 ____D () C:\Users\Vojta\Documents\CSM
2014-07-19 14:47 - 2014-07-19 14:55 - 00001108 _____ () C:\Users\Public\Desktop\Czech Soccer Manager.lnk
2014-07-19 14:47 - 2014-07-19 14:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Czech Soccer Manager
2014-07-19 14:46 - 2014-07-19 14:47 - 00000000 ____D () C:\Program Files (x86)\Czech Soccer Manager
2014-07-19 14:46 - 2014-07-19 14:46 - 36968553 _____ () C:\Users\Vojta\Downloads\csm_setup.exe
2014-07-18 17:15 - 2014-07-18 17:15 - 00000000 ____D () C:\Users\Vojta\Desktop\shipping or osinto lp
2014-07-18 17:06 - 2014-07-18 17:06 - 00000000 ____D () C:\Users\Vojta\Desktop\mje oc kresby
2014-07-18 13:22 - 2014-07-18 13:22 - 04812672 _____ (Piriform Ltd) C:\Users\Vojta\Downloads\ccsetup415.exe
2014-07-18 12:42 - 2014-07-18 12:42 - 00000687 _____ () C:\awhDF37.tmp
2014-07-11 21:23 - 2014-07-11 21:24 - 01592398 _____ (TeamExtreme) C:\Users\Vojta\Downloads\Minecraft-warez-Launcher-1.7.9.exe
2014-07-11 18:59 - 2014-07-11 18:59 - 17489920 _____ () C:\Users\Vojta\Desktop\New Canvas.sai
2014-07-11 18:19 - 2014-07-11 18:19 - 00000000 ____D () C:\Users\Vojta\AppData\Local\13373
2014-07-11 18:17 - 2014-07-11 18:17 - 00003538 _____ () C:\Windows\System32\Tasks\DMUpdaterDaily
2014-07-11 18:17 - 2014-07-11 18:17 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\DownloadManager
2014-07-11 18:16 - 2014-07-11 18:16 - 00000687 _____ () C:\awhA500.tmp
2014-07-11 18:14 - 2014-07-11 18:14 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\Vojta\AppData\Local\Comodo
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Google
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Comodo
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\HomeGroupUser$
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\Administrator
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\ProgramData\1c7ebe08af89e1ae
2014-07-11 18:11 - 2014-07-11 18:11 - 00339168 _____ () C:\Users\Vojta\Downloads\VidN Player__5160_i1027185082_il1154.exe
2014-07-11 18:11 - 2014-07-11 18:11 - 00000000 ____D () C:\Users\Vojta\AppData\Local\11916
2014-07-11 18:10 - 2014-07-11 18:10 - 00339168 _____ () C:\Users\Vojta\Downloads\VidN Player__5160_i1027181502_il1154.exe
2014-07-11 15:17 - 2014-07-11 15:17 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\QuickScan
2014-07-11 15:11 - 2014-07-18 19:27 - 00000000 ____D () C:\Program Files (x86)\P-HD-V1.4
2014-07-11 15:08 - 2014-07-11 15:09 - 00981863 _____ () C:\Users\Vojta\Downloads\The Sims 4 Downloader.rar
2014-07-11 14:22 - 2014-07-11 14:22 - 00065208 _____ () C:\Users\Vojta\Downloads\The-Sims-4.rar
2014-07-11 12:07 - 2014-07-11 12:07 - 00000000 ____D () C:\Users\Vojta\Documents\Celemony
2014-07-11 11:57 - 2014-07-11 12:07 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Celemony Software GmbH
2014-07-11 11:55 - 2014-07-11 11:57 - 00000000 ____D () C:\ProgramData\Celemony Software GmbH
2014-07-11 11:55 - 2014-07-11 11:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Celemony
2014-07-11 11:55 - 2014-07-11 11:55 - 00000000 ____D () C:\Program Files\Common Files\VST3
2014-07-11 11:55 - 2014-07-11 11:55 - 00000000 ____D () C:\Program Files\Common Files\VST2
2014-07-11 11:55 - 2014-07-11 11:55 - 00000000 ____D () C:\Program Files\Common Files\Propellerhead Software
2014-07-11 11:55 - 2014-07-11 11:55 - 00000000 ____D () C:\Program Files\Common Files\Avid
2014-07-11 11:55 - 2014-07-11 11:55 - 00000000 ____D () C:\Program Files\Celemony
2014-07-11 11:55 - 2014-07-11 11:55 - 00000000 ____D () C:\Program Files (x86)\Celemony
2014-07-11 11:54 - 2014-07-11 11:55 - 00000000 ____D () C:\Program Files\Common Files\Celemony
2014-07-11 10:56 - 2014-07-11 10:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-07-11 10:56 - 2014-07-11 10:56 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-07-11 10:48 - 2014-07-11 10:49 - 132538273 _____ () C:\Users\Vojta\Downloads\Melodyne_editor_Demo.2.1.2.zip
2014-07-11 10:33 - 2014-07-11 10:33 - 28926964 _____ () C:\Users\Vojta\Downloads\This_Is_Halloween.avi
2014-07-10 09:11 - 2014-07-18 21:12 - 00000000 ____D () C:\Users\Vojta\Desktop\moje oc kresby neb. oc kresby ve kterým jsem
2014-07-09 14:27 - 2014-07-09 14:27 - 00001983 _____ () C:\Users\Vojta\Desktop\Portal CZ.lnk
2014-07-09 12:45 - 2014-07-09 12:45 - 10603008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-07-08 10:56 - 2014-07-11 10:56 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-07-08 10:56 - 2014-07-08 10:56 - 00000000 ____D () C:\ProgramData\McAfee
2014-07-07 17:37 - 2014-07-07 18:16 - 705101824 _____ () C:\Users\Vojta\Downloads\Portal-1-(plna-PC-hra).iso
2014-07-07 11:29 - 2014-07-07 11:29 - 00000000 ____D () C:\Users\Vojta\Documents\Adobe
2014-07-06 21:04 - 2014-07-07 10:16 - 08781824 _____ () C:\Users\Vojta\Desktop\my_little_pony_fim_meme_by_don_komandorr-d35y2mv.sai
2014-07-05 17:39 - 2014-07-05 17:54 - 00000110 _____ () C:\Users\Vojta\AppData\Roaming\net.telestream.wirecast.webstream.xml
2014-07-05 17:33 - 2014-07-05 17:54 - 00024033 _____ () C:\Users\Vojta\AppData\Roaming\net.telestream.wirecast.xml
2014-07-05 17:33 - 2014-07-05 17:40 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Wirecast for YouTube
2014-07-05 17:33 - 2014-07-05 17:33 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Vara Software
2014-07-05 17:33 - 2014-07-05 17:33 - 00000000 ____D () C:\ProgramData\Telestream
2014-07-05 17:30 - 2014-07-05 17:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Telestream
2014-07-05 17:30 - 2014-07-05 17:30 - 00000000 ____D () C:\Program Files (x86)\Telestream
2014-07-04 17:47 - 2014-07-04 17:49 - 00000000 ____D () C:\Program Files (x86)\Everything
2014-07-04 17:47 - 2014-07-04 17:47 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Everything
2014-07-04 17:46 - 2014-07-04 17:46 - 00172032 _____ (Jin Hui E-mail: jinhui@jcomsoft.com Web: http://www.jcomsoft.com) C:\Windows\SysWOW64\AniGIF.ocx
2014-07-04 17:43 - 2014-07-18 13:59 - 00000000 ____D () C:\Program Files (x86)\SavePass
2014-07-03 17:13 - 2014-07-03 18:43 - 833647204 _____ () C:\Users\Vojta\Downloads\8mm-1999-cz-dvd-rip.avi
2014-07-01 17:18 - 2014-07-01 17:19 - 140658628 _____ () C:\Users\Vojta\Downloads\Disney Karaoke Challenge.wav
2014-06-26 16:53 - 2014-06-26 17:00 - 1421358396 _____ () C:\Users\Vojta\Downloads\MLK_AC2.iso
2014-06-26 16:26 - 2014-06-26 17:23 - 00000000 ____D () C:\Users\Vojta\Desktop\Theme
2014-06-26 16:26 - 2014-06-26 17:21 - 00000000 ____D () C:\Users\Vojta\Desktop\Songs
2014-06-26 16:26 - 2014-06-26 17:21 - 00000000 ____D () C:\Users\Vojta\Desktop\Extras
2014-06-26 16:26 - 2014-06-26 17:20 - 00000000 ____D () C:\Users\Vojta\Desktop\Binaries
2014-06-26 15:40 - 2014-06-26 15:46 - 2003293560 _____ () C:\Users\Vojta\Downloads\MLK_AC.iso
2014-06-26 15:35 - 2014-06-26 15:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Derpy Muffins Factory
2014-06-26 12:44 - 2014-06-26 12:44 - 22411654 _____ () C:\Users\Vojta\Downloads\My_Little_Pony__Friendship_is_Magic___Raise_This_Barn__1080p.avi
2014-06-25 19:39 - 2014-06-25 19:43 - 43730908 _____ () C:\Users\Vojta\Downloads\MLP____Call_of_the_Cutie__Apple_Bloom_Highlights__Michelle_Creber.avi
2014-06-25 16:25 - 2014-06-25 16:26 - 17562823 _____ () C:\Users\Vojta\Downloads\My Little Pony_ Rhythm is Heaven AppleJaaJ ftw.mp4
2014-06-25 14:46 - 2014-06-25 14:46 - 33502816 _____ () C:\Users\Vojta\Downloads\SONG__A_True__True_Friend_czech_dubbing.avi
2014-06-24 12:30 - 2014-06-24 12:30 - 00000893 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-06-24 12:30 - 2014-06-24 12:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-06-24 12:30 - 2014-06-24 12:30 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-06-22 12:25 - 2014-06-22 12:25 - 24363644 _____ () C:\Users\Vojta\Downloads\MLP_FiM_Song___What_My_Cutie_Mark_Is_Telling_Me__HD.avi
2014-06-21 19:40 - 2014-06-28 17:04 - 00000204 _____ () C:\Users\Vojta\Desktop\Portal 2.url
2014-06-21 19:32 - 2014-06-21 19:32 - 00000513 _____ () C:\Users\Vojta\Desktop\Fraps.lnk
2014-06-21 19:32 - 2014-06-21 19:32 - 00000000 ____D () C:\Users\Vojta\Desktop\HELP
2014-06-21 19:32 - 2014-06-21 19:32 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps
2014-06-21 19:28 - 2014-06-22 14:50 - 00000000 ____D () C:\Users\Vojta\Desktop\NOHAVICA JAROMIR - Od Jarka pod stromecek (CZ 2006)
2014-06-21 19:28 - 2014-06-22 14:48 - 00000000 ____D () C:\Users\Vojta\Desktop\NOHAVICA JAROMIR - Tenkrat-nostalgie 90.let (CZ 2013)_[MP3.CBR.320]
2014-06-21 19:21 - 2014-06-21 19:23 - 38193281 _____ () C:\Users\Vojta\Downloads\NOHAVICA-JAROMIR---Od-Jarka-pod-stromecek-(CZ-2006)_[MP3.CBR.192].rar
2014-06-21 19:12 - 2014-06-21 19:12 - 00001961 _____ () C:\Users\Public\Desktop\Portal 2.lnk
2014-06-21 19:12 - 2014-06-21 19:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Valve
2014-06-21 18:22 - 2014-06-21 18:38 - 154475128 _____ () C:\Users\Vojta\Downloads\NOHAVICA-JAROMIR---Tenkrat-nostalgie-90.let-(CZ-2013)_[MP3.CBR.320].rar
2014-06-21 18:08 - 2014-06-21 18:08 - 00000000 ____D () C:\Users\Vojta\Downloads\Tomáš-Klus---Cesta-do-záhu(d)by
2014-06-21 18:02 - 2013-03-04 19:06 - 00000000 ____D () C:\Users\Vojta\Desktop\k. zeme plna trpasliku
2014-06-21 18:02 - 2013-03-04 19:06 - 00000000 ____D () C:\Users\Vojta\Desktop\k. ma ji motorovou
2014-06-21 18:02 - 2013-03-04 19:06 - 00000000 ____D () C:\Users\Vojta\Desktop\k. go satane go
2014-06-21 18:01 - 2014-06-29 09:49 - 00000000 ____D () C:\Users\Vojta\Desktop\k. corrida
2014-06-21 18:01 - 2013-03-04 19:07 - 00000000 ____D () C:\Users\Vojta\Desktop\Kabát---Banditi-Di-Praga-2010
2014-06-21 18:01 - 2013-03-04 19:07 - 00000000 ____D () C:\Users\Vojta\Desktop\Kabát - MegaHu 1999
2014-06-21 18:01 - 2013-03-04 19:06 - 00000000 ____D () C:\Users\Vojta\Desktop\k. colorado
2014-06-21 18:01 - 2013-03-04 19:06 - 00000000 ____D () C:\Users\Vojta\Desktop\Čert na koze jel
2014-06-21 18:00 - 2013-03-04 19:07 - 00000000 ____D () C:\Users\Vojta\Desktop\Kabát - Dole v dole
2014-06-21 18:00 - 2013-03-04 19:07 - 00000000 ____D () C:\Users\Vojta\Desktop\Kabát - Děvky to znaj (mp3)
2014-06-21 10:23 - 2014-06-21 10:23 - 00001194 _____ () C:\Users\Public\Desktop\Portal.2.Crack.Fix-SKIDROW.lnk
2014-06-21 10:23 - 2014-06-21 10:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Portal.2.Crack.Fix-SKIDROW
2014-06-21 10:23 - 2014-06-21 10:23 - 00000000 ____D () C:\Program Files (x86)\Portal.2.Crack.Fix-SKIDROW
2014-06-21 09:55 - 2014-07-05 09:47 - 00000000 ____D () C:\Users\Vojta\Desktop\Nová složka (2)

==================== One Month Modified Files and Folders =======

2014-07-20 11:58 - 2014-07-20 11:57 - 00030996 _____ () C:\Users\Vojta\Desktop\FRST.txt
2014-07-20 11:57 - 2014-07-20 11:57 - 00000000 ____D () C:\FRST
2014-07-20 11:55 - 2014-07-20 11:55 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Desktop\FRSTLauncher (2).exe
2014-07-20 11:54 - 2014-07-20 11:54 - 02089984 _____ (Farbar) C:\Users\Vojta\Desktop\FRST64.exe
2014-07-20 11:54 - 2014-07-20 11:54 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Downloads\Nepotvrzeno 999264.crdownload
2014-07-20 11:54 - 2014-07-20 11:54 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Downloads\Nepotvrzeno 534212.crdownload
2014-07-20 11:46 - 2014-07-20 11:46 - 01287168 _____ () C:\Users\Vojta\Desktop\zoek.exe
2014-07-20 11:46 - 2014-04-03 14:27 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-20 11:45 - 2014-03-19 07:31 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-20 11:45 - 2009-07-14 06:45 - 00020128 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-20 11:45 - 2009-07-14 06:45 - 00020128 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-20 11:41 - 2013-05-04 17:31 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Seznam.cz
2014-07-20 11:41 - 2010-09-28 11:43 - 01115178 _____ () C:\Windows\WindowsUpdate.log
2014-07-20 11:38 - 2010-10-11 19:53 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Skype
2014-07-20 11:36 - 2014-04-07 16:42 - 00000000 ____D () C:\Users\Vojta\AppData\Local\LogMeIn Hamachi
2014-07-20 11:36 - 2013-05-23 17:54 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-07-20 11:35 - 2014-07-20 08:39 - 00002298 _____ () C:\Windows\PFRO.log
2014-07-20 11:35 - 2014-07-20 08:39 - 00000112 _____ () C:\Windows\setupact.log
2014-07-20 11:35 - 2014-04-03 14:27 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1ce80a272d47fbe.job
2014-07-20 11:35 - 2010-09-09 21:00 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-07-20 11:35 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-20 11:34 - 2014-03-03 00:19 - 00000000 ____D () C:\AdwCleaner
2014-07-20 11:34 - 2010-09-28 13:26 - 00000000 ____D () C:\Users\Vojta
2014-07-20 11:31 - 2014-07-20 11:31 - 01354223 _____ () C:\Users\Vojta\Desktop\adwcleaner_3.216.exe
2014-07-20 11:30 - 2014-07-20 11:30 - 00006759 _____ () C:\Users\Vojta\Desktop\JRT.txt
2014-07-20 11:24 - 2013-07-27 16:28 - 15745536 ___SH () C:\Users\Vojta\Desktop\Thumbs.db
2014-07-20 11:15 - 2014-07-20 11:15 - 01016261 _____ (Thisisu) C:\Users\Vojta\Desktop\JRT.exe
2014-07-20 11:07 - 2014-03-28 14:40 - 00000962 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000UA.job
2014-07-20 11:04 - 2011-07-31 20:58 - 00000000 ____D () C:\Program Files\trend micro
2014-07-20 11:03 - 2014-07-20 11:03 - 00832273 _____ () C:\Users\Vojta\Downloads\RSITx64 (1).exe
2014-07-20 08:50 - 2010-09-28 19:58 - 00000000 ____D () C:\Users\Vojta\AppData\Local\Adobe
2014-07-20 08:39 - 2014-07-20 08:39 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-19 18:02 - 2013-05-04 18:05 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-07-19 16:25 - 2014-07-19 14:47 - 00000000 ____D () C:\Users\Vojta\Documents\CSM
2014-07-19 14:55 - 2014-07-19 14:47 - 00001108 _____ () C:\Users\Public\Desktop\Czech Soccer Manager.lnk
2014-07-19 14:53 - 2014-07-19 14:53 - 00002998 _____ () C:\Windows\System32\Tasks\{E12C2694-014F-48E7-BE9E-D91493171F9C}
2014-07-19 14:47 - 2014-07-19 14:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Czech Soccer Manager
2014-07-19 14:47 - 2014-07-19 14:46 - 00000000 ____D () C:\Program Files (x86)\Czech Soccer Manager
2014-07-19 14:46 - 2014-07-19 14:46 - 36968553 _____ () C:\Users\Vojta\Downloads\csm_setup.exe
2014-07-19 14:30 - 2011-11-29 18:30 - 20169216 ___SH () C:\Users\Vojta\Downloads\Thumbs.db
2014-07-19 14:21 - 2012-12-11 15:21 - 00000000 ____D () C:\Users\Vojta\Documents\HyperCam3
2014-07-19 14:13 - 2013-04-10 15:57 - 00079872 ___SH () C:\Users\Vojta\Thumbs.db
2014-07-19 13:07 - 2014-03-28 14:40 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000Core1ce7ee924bea913.job
2014-07-19 11:28 - 2010-12-08 18:28 - 00000000 ____D () C:\ProgramData\TEMP
2014-07-19 10:09 - 2010-10-11 19:54 - 00002208 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-19 10:07 - 2010-08-10 14:10 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-07-19 10:01 - 2010-09-28 17:28 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Adobe
2014-07-19 09:58 - 2011-04-12 15:51 - 00000000 ____D () C:\Program Files (x86)\ABC 3GP Converter
2014-07-19 09:58 - 2010-09-30 22:08 - 00000000 ____D () C:\Program Files (x86)\CCleaner
2014-07-19 09:57 - 2012-11-12 17:51 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Media Player Classic
2014-07-19 09:56 - 2010-10-04 19:45 - 00000000 ____D () C:\Users\Vojta\AppData\Local\CrashDumps
2014-07-19 09:46 - 2014-03-02 21:38 - 00000984 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-07-19 09:46 - 2010-11-08 01:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-19 09:46 - 2010-09-30 22:08 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-18 21:12 - 2014-07-10 09:11 - 00000000 ____D () C:\Users\Vojta\Desktop\moje oc kresby neb. oc kresby ve kterým jsem
2014-07-18 19:27 - 2014-07-11 15:11 - 00000000 ____D () C:\Program Files (x86)\P-HD-V1.4
2014-07-18 17:47 - 2013-12-27 13:45 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Audacity
2014-07-18 17:19 - 2014-03-18 10:27 - 00000000 ____D () C:\Users\Vojta\Desktop\Paint.NET
2014-07-18 17:15 - 2014-07-18 17:15 - 00000000 ____D () C:\Users\Vojta\Desktop\shipping or osinto lp
2014-07-18 17:06 - 2014-07-18 17:06 - 00000000 ____D () C:\Users\Vojta\Desktop\mje oc kresby
2014-07-18 13:59 - 2014-07-04 17:43 - 00000000 ____D () C:\Program Files (x86)\SavePass
2014-07-18 13:22 - 2014-07-18 13:22 - 04812672 _____ (Piriform Ltd) C:\Users\Vojta\Downloads\ccsetup415.exe
2014-07-18 12:42 - 2014-07-18 12:42 - 00000687 _____ () C:\awhDF37.tmp
2014-07-18 12:38 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\tracing
2014-07-11 21:29 - 2011-12-09 13:47 - 00000000 ____D () C:\Users\Vojta\AppData\Local\WMTools Downloaded Files
2014-07-11 21:26 - 2013-05-23 19:53 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\.minecraft
2014-07-11 21:24 - 2014-07-11 21:23 - 01592398 _____ (TeamExtreme) C:\Users\Vojta\Downloads\Minecraft-warez-Launcher-1.7.9.exe
2014-07-11 21:20 - 2014-04-18 06:54 - 00000452 ____H () C:\Windows\Tasks\Norton Security Scan for Vojta.job
2014-07-11 18:59 - 2014-07-11 18:59 - 17489920 _____ () C:\Users\Vojta\Desktop\New Canvas.sai
2014-07-11 18:19 - 2014-07-11 18:19 - 00000000 ____D () C:\Users\Vojta\AppData\Local\13373
2014-07-11 18:17 - 2014-07-11 18:17 - 00003538 _____ () C:\Windows\System32\Tasks\DMUpdaterDaily
2014-07-11 18:17 - 2014-07-11 18:17 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\DownloadManager
2014-07-11 18:16 - 2014-07-11 18:16 - 00000687 _____ () C:\awhA500.tmp
2014-07-11 18:14 - 2014-07-11 18:14 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\Vojta\AppData\Local\Comodo
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Google
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Comodo
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\HomeGroupUser$
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\Users\Administrator
2014-07-11 18:12 - 2014-07-11 18:12 - 00000000 ____D () C:\ProgramData\1c7ebe08af89e1ae
2014-07-11 18:12 - 2010-10-11 19:53 - 00000000 ____D () C:\Users\Vojta\AppData\Local\Google
2014-07-11 18:11 - 2014-07-11 18:11 - 00339168 _____ () C:\Users\Vojta\Downloads\VidN Player__5160_i1027185082_il1154.exe
2014-07-11 18:11 - 2014-07-11 18:11 - 00000000 ____D () C:\Users\Vojta\AppData\Local\11916
2014-07-11 18:10 - 2014-07-11 18:10 - 00339168 _____ () C:\Users\Vojta\Downloads\VidN Player__5160_i1027181502_il1154.exe
2014-07-11 15:17 - 2014-07-11 15:17 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\QuickScan
2014-07-11 15:09 - 2014-07-11 15:08 - 00981863 _____ () C:\Users\Vojta\Downloads\The Sims 4 Downloader.rar
2014-07-11 14:22 - 2014-07-11 14:22 - 00065208 _____ () C:\Users\Vojta\Downloads\The-Sims-4.rar
2014-07-11 12:07 - 2014-07-11 12:07 - 00000000 ____D () C:\Users\Vojta\Documents\Celemony
2014-07-11 12:07 - 2014-07-11 11:57 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Celemony Software GmbH
2014-07-11 11:57 - 2014-07-11 11:55 - 00000000 ____D () C:\ProgramData\Celemony Software GmbH
2014-07-11 11:55 - 2014-07-11 11:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Celemony
2014-07-11 11:55 - 2014-07-11 11:55 - 00000000 ____D () C:\Program Files\Common Files\VST3
2014-07-11 11:55 - 2014-07-11 11:55 - 00000000 ____D () C:\Program Files\Common Files\VST2
2014-07-11 11:55 - 2014-07-11 11:55 - 00000000 ____D () C:\Program Files\Common Files\Propellerhead Software
2014-07-11 11:55 - 2014-07-11 11:55 - 00000000 ____D () C:\Program Files\Common Files\Avid
2014-07-11 11:55 - 2014-07-11 11:55 - 00000000 ____D () C:\Program Files\Celemony
2014-07-11 11:55 - 2014-07-11 11:55 - 00000000 ____D () C:\Program Files (x86)\Celemony
2014-07-11 11:55 - 2014-07-11 11:54 - 00000000 ____D () C:\Program Files\Common Files\Celemony
2014-07-11 11:55 - 2014-03-14 22:06 - 00000000 ____D () C:\Program Files (x86)\VstPlugins
2014-07-11 11:55 - 2010-09-06 16:29 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-07-11 11:54 - 2010-09-09 20:59 - 00000000 ____D () C:\Temp
2014-07-11 10:56 - 2014-07-11 10:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-07-11 10:56 - 2014-07-11 10:56 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-07-11 10:56 - 2014-07-08 10:56 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-07-11 10:49 - 2014-07-11 10:48 - 132538273 _____ () C:\Users\Vojta\Downloads\Melodyne_editor_Demo.2.1.2.zip
2014-07-11 10:49 - 2011-10-08 15:12 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Origin
2014-07-11 10:49 - 2011-10-08 15:12 - 00000000 ____D () C:\Users\Vojta\AppData\Local\Origin
2014-07-11 10:49 - 2011-10-08 15:11 - 00000000 ____D () C:\ProgramData\Origin
2014-07-11 10:47 - 2011-10-08 15:11 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-07-11 10:36 - 2011-12-09 13:41 - 00158208 _____ () C:\Users\Vojta\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-07-11 10:33 - 2014-07-11 10:33 - 28926964 _____ () C:\Users\Vojta\Downloads\This_Is_Halloween.avi
2014-07-09 14:27 - 2014-07-09 14:27 - 00001983 _____ () C:\Users\Vojta\Desktop\Portal CZ.lnk
2014-07-09 14:24 - 2011-06-16 07:10 - 00000000 ____D () C:\Program Files (x86)\Valve
2014-07-09 12:45 - 2014-07-09 12:45 - 10603008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-07-09 12:45 - 2012-04-02 23:51 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-09 12:45 - 2012-04-02 23:51 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-07-09 12:45 - 2011-06-02 07:14 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-08 10:56 - 2014-07-08 10:56 - 00000000 ____D () C:\ProgramData\McAfee
2014-07-07 18:16 - 2014-07-07 17:37 - 705101824 _____ () C:\Users\Vojta\Downloads\Portal-1-(plna-PC-hra).iso
2014-07-07 11:29 - 2014-07-07 11:29 - 00000000 ____D () C:\Users\Vojta\Documents\Adobe
2014-07-07 10:16 - 2014-07-06 21:04 - 08781824 _____ () C:\Users\Vojta\Desktop\my_little_pony_fim_meme_by_don_komandorr-d35y2mv.sai
2014-07-06 15:28 - 2011-08-16 23:30 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-07-05 18:04 - 2014-03-09 10:31 - 00000000 ____D () C:\Users\Vojta\Desktop\Benchmarks
2014-07-05 17:54 - 2014-07-05 17:39 - 00000110 _____ () C:\Users\Vojta\AppData\Roaming\net.telestream.wirecast.webstream.xml
2014-07-05 17:54 - 2014-07-05 17:33 - 00024033 _____ () C:\Users\Vojta\AppData\Roaming\net.telestream.wirecast.xml
2014-07-05 17:40 - 2014-07-05 17:33 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Wirecast for YouTube
2014-07-05 17:33 - 2014-07-05 17:33 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Vara Software
2014-07-05 17:33 - 2014-07-05 17:33 - 00000000 ____D () C:\ProgramData\Telestream
2014-07-05 17:31 - 2014-07-05 17:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Telestream
2014-07-05 17:30 - 2014-07-05 17:30 - 00000000 ____D () C:\Program Files (x86)\Telestream
2014-07-05 09:47 - 2014-06-21 09:55 - 00000000 ____D () C:\Users\Vojta\Desktop\Nová složka (2)
2014-07-05 09:47 - 2014-06-16 18:48 - 00000000 ____D () C:\Users\Vojta\Desktop\mmmmm
2014-07-05 08:56 - 2014-06-15 02:33 - 00000000 ____D () C:\Program Files (x86)\PDFCreator
2014-07-05 08:56 - 2013-03-31 12:19 - 00000000 ____D () C:\ProgramData\VSO
2014-07-05 08:56 - 2010-10-26 22:00 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Vso
2014-07-05 08:56 - 2010-09-30 15:42 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\uTorrent
2014-07-04 17:49 - 2014-07-04 17:47 - 00000000 ____D () C:\Program Files (x86)\Everything
2014-07-04 17:47 - 2014-07-04 17:47 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Everything
2014-07-04 17:46 - 2014-07-04 17:46 - 00172032 _____ (Jin Hui E-mail: jinhui@jcomsoft.com Web: http://www.jcomsoft.com) C:\Windows\SysWOW64\AniGIF.ocx
2014-07-03 18:43 - 2014-07-03 17:13 - 833647204 _____ () C:\Users\Vojta\Downloads\8mm-1999-cz-dvd-rip.avi
2014-07-03 11:00 - 2014-03-09 13:23 - 00000510 _____ () C:\Users\Vojta\rgmnr
2014-07-01 17:19 - 2014-07-01 17:18 - 140658628 _____ () C:\Users\Vojta\Downloads\Disney Karaoke Challenge.wav
2014-06-30 13:06 - 2014-06-17 15:12 - 38519780 _____ () C:\Users\Vojta\Desktop\My_Little_Pony__Friendship_is_Magic___Crazy_Twilight_Sparkle_Compilation.avi
2014-06-29 09:49 - 2014-06-21 18:01 - 00000000 ____D () C:\Users\Vojta\Desktop\k. corrida
2014-06-28 19:40 - 2009-07-14 17:18 - 00672138 _____ () C:\Windows\system32\perfh005.dat
2014-06-28 19:40 - 2009-07-14 17:18 - 00143408 _____ () C:\Windows\system32\perfc005.dat
2014-06-28 19:40 - 2009-07-14 07:13 - 01594316 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-28 17:04 - 2014-06-21 19:40 - 00000204 _____ () C:\Users\Vojta\Desktop\Portal 2.url
2014-06-27 18:04 - 2013-07-29 10:45 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\ultrastardx
2014-06-27 09:43 - 2009-07-14 06:45 - 05320280 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-26 17:23 - 2014-06-26 16:26 - 00000000 ____D () C:\Users\Vojta\Desktop\Theme
2014-06-26 17:21 - 2014-06-26 16:26 - 00000000 ____D () C:\Users\Vojta\Desktop\Songs
2014-06-26 17:21 - 2014-06-26 16:26 - 00000000 ____D () C:\Users\Vojta\Desktop\Extras
2014-06-26 17:20 - 2014-06-26 16:26 - 00000000 ____D () C:\Users\Vojta\Desktop\Binaries
2014-06-26 17:00 - 2014-06-26 16:53 - 1421358396 _____ () C:\Users\Vojta\Downloads\MLK_AC2.iso
2014-06-26 16:24 - 2010-10-31 09:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stabenfeldt
2014-06-26 16:23 - 2013-06-12 14:50 - 00000000 ____D () C:\Program Files (x86)\Stabenfeldt
2014-06-26 15:46 - 2014-06-26 15:40 - 2003293560 _____ () C:\Users\Vojta\Downloads\MLK_AC.iso
2014-06-26 15:40 - 2010-09-29 16:29 - 00116456 _____ () C:\Users\Vojta\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-26 15:35 - 2014-06-26 15:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Derpy Muffins Factory
2014-06-26 15:35 - 2013-07-29 10:45 - 00000000 ____D () C:\Program Files (x86)\MyLittleKaraoke
2014-06-26 12:44 - 2014-06-26 12:44 - 22411654 _____ () C:\Users\Vojta\Downloads\My_Little_Pony__Friendship_is_Magic___Raise_This_Barn__1080p.avi
2014-06-25 19:43 - 2014-06-25 19:39 - 43730908 _____ () C:\Users\Vojta\Downloads\MLP____Call_of_the_Cutie__Apple_Bloom_Highlights__Michelle_Creber.avi
2014-06-25 16:26 - 2014-06-25 16:25 - 17562823 _____ () C:\Users\Vojta\Downloads\My Little Pony_ Rhythm is Heaven AppleJaaJ ftw.mp4
2014-06-25 14:46 - 2014-06-25 14:46 - 33502816 _____ () C:\Users\Vojta\Downloads\SONG__A_True__True_Friend_czech_dubbing.avi
2014-06-25 13:02 - 2013-10-15 19:44 - 00003536 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000Core1ce7ee924bea913
2014-06-25 13:02 - 2013-02-04 17:16 - 00003932 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000UA
2014-06-24 12:33 - 2013-04-14 20:21 - 00117712 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-06-24 12:30 - 2014-06-24 12:30 - 00000893 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-06-24 12:30 - 2014-06-24 12:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-06-24 12:30 - 2014-06-24 12:30 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-06-23 17:41 - 2013-10-09 14:54 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1ce80a272d47fbe
2014-06-23 17:41 - 2010-10-11 19:53 - 00003948 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-22 14:50 - 2014-06-21 19:28 - 00000000 ____D () C:\Users\Vojta\Desktop\NOHAVICA JAROMIR - Od Jarka pod stromecek (CZ 2006)
2014-06-22 14:48 - 2014-06-21 19:28 - 00000000 ____D () C:\Users\Vojta\Desktop\NOHAVICA JAROMIR - Tenkrat-nostalgie 90.let (CZ 2013)_[MP3.CBR.320]
2014-06-22 12:25 - 2014-06-22 12:25 - 24363644 _____ () C:\Users\Vojta\Downloads\MLP_FiM_Song___What_My_Cutie_Mark_Is_Telling_Me__HD.avi
2014-06-21 21:23 - 2014-03-18 10:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
2014-06-21 21:23 - 2010-10-01 19:33 - 00000000 ____D () C:\Program Files (x86)\Electronic Arts
2014-06-21 21:23 - 2010-09-28 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2014-06-21 21:23 - 2010-09-28 18:00 - 00000000 ____D () C:\Program Files (x86)\MSI
2014-06-21 19:58 - 2013-12-26 15:29 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-06-21 19:32 - 2014-06-21 19:32 - 00000513 _____ () C:\Users\Vojta\Desktop\Fraps.lnk
2014-06-21 19:32 - 2014-06-21 19:32 - 00000000 ____D () C:\Users\Vojta\Desktop\HELP
2014-06-21 19:32 - 2014-06-21 19:32 - 00000000 ____D () C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps
2014-06-21 19:23 - 2014-06-21 19:21 - 38193281 _____ () C:\Users\Vojta\Downloads\NOHAVICA-JAROMIR---Od-Jarka-pod-stromecek-(CZ-2006)_[MP3.CBR.192].rar
2014-06-21 19:12 - 2014-06-21 19:12 - 00001961 _____ () C:\Users\Public\Desktop\Portal 2.lnk
2014-06-21 19:12 - 2014-06-21 19:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Valve
2014-06-21 18:38 - 2014-06-21 18:22 - 154475128 _____ () C:\Users\Vojta\Downloads\NOHAVICA-JAROMIR---Tenkrat-nostalgie-90.let-(CZ-2013)_[MP3.CBR.320].rar
2014-06-21 18:08 - 2014-06-21 18:08 - 00000000 ____D () C:\Users\Vojta\Downloads\Tomáš-Klus---Cesta-do-záhu(d)by
2014-06-21 10:23 - 2014-06-21 10:23 - 00001194 _____ () C:\Users\Public\Desktop\Portal.2.Crack.Fix-SKIDROW.lnk
2014-06-21 10:23 - 2014-06-21 10:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Portal.2.Crack.Fix-SKIDROW
2014-06-21 10:23 - 2014-06-21 10:23 - 00000000 ____D () C:\Program Files (x86)\Portal.2.Crack.Fix-SKIDROW

Some content of TEMP:
====================
C:\Users\Vojta\AppData\Local\Temp\avgnt.exe
C:\Users\Vojta\AppData\Local\Temp\cabex.dll
C:\Users\Vojta\AppData\Local\Temp\Quarantine.exe
C:\Users\Vojta\AppData\Local\Temp\VARemove.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-03-03 14:42




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (Windows) (Fixed) (Total:465.32 GB) (Free:97.41 GB) NTFS
Drive d: (My DVD) (CDROM) (Total:2.59 GB) (Free:0 GB) UDF

Available physical RAM: 1929.17 MB
Total physical RAM: 4095.24 MB
Percentage of memory in use: 52%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 0137BF33)
Partition 1: (Active) - (Size=456 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1ce80a272d47fbe.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000Core1ce7ee924bea913.job => C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000UA.job => C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Norton Security Scan for Vojta.job => C:\PROGRA~2\NORTON~2\Engine\403~1.24\Nss.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\TEMP:56E2E879

==================== Security Center ==================

AV: Avira Desktop (Disabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Disabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Vojta\Desktop" je 19137 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Vojta^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^V��ezy obrazovky a spu�t�n� aplikace OneNote 2007.lnk
C:\PROGRA~2\MICROS~1\Office12\ONENOTEM.EXE


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

[vyosek]

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [AdobeCS4ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [RazerGameBooster] => C:\Program Files (x86)\Razer\Razer Game Booster\RazerGameBooster.exe [61152 2014-02-25] (Razer Inc.)
  HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
  HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3816272 2014-06-23] (LogMeIn Inc.)
  HKLM-x32\...\Run: [Everything] => C:\Program Files (x86)\Everything\Everything.exe [602624 2009-03-13] ()
  HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
  HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [TBPanel] => C:\Program Files (x86)\Vtune\TBPanel.exe [2158592 2009-10-05] ()
  HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [Google Update] => C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-09-14] (Google Inc.)
  HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.)
  HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [AdobeBridge] => [X]
  HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [Anime Studio Pro v10] => wscript.exe //B "C:\Users\Vojta\AppData\Local\Temp\Anime Studio Pro v10.0 + Activator.vbs"
  <===== ATTENTION
  HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Vojta\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
  HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Vojta\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
  HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\MountPoints2: E - E:\Autorun.exe
  HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\MountPoints2: {009d2d5f-ccd1-11df-89eb-6c626d55336b} - G:\Autorun.exe
  Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
  Startup: C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Anime Studio Pro v10.0 + Activator.vbs ()
  ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
  ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
  ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
  ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File
  GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
  
  HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=UP97&ocid=UP97DHP
  SearchScopes: HKLM-x32 - DefaultScope value is missing.
  SearchScopes: HKCU - {43BDF51A-2F60-44F0-BAF4-59FD6EB6C5E8} URL = http://search.findwide.com/serp?guid={638519AC-CFD1-4409-92F9-54DAA70A9FA5}&action=default_search&serpv=22&k={searchTerms}
  SearchScopes: HKCU - {60485703-A58D-40E7-861F-F907F99A4CF4} URL = http://search.yahoo.com/search?p={searchTerms}&fr=tightropetb&type=10799
  
  FF DefaultSearchEngine: Bing
  FF SearchEngineOrder.3: Bing
  FF SelectedSearchEngine: Bing 
  FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
  FF Extension: Seznam lištička - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-07-11]
  FF Extension: Laflurla - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\firefox@laflurla.com.xpi [2014-04-19]
  FF Extension: Stylish - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2013-12-17]
  FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-05-13]
  FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-05-13]
  
  CHR HKLM-x32\...\Chrome\Extension: [cgbealecnakbhfoeeipcnoboempfkbjd] - C:\Program Files (x86)\AmiExt\flashEnhancer\ch\flashEnhancer.crx [2014-04-17]
  CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]
  
  U3 a62g689c; C:\Windows\System32\Drivers\a62g689c.sys [0 ] (Microsoft Corporation)
  U3 aq1j0x8b; C:\Windows\System32\Drivers\aq1j0x8b.sys [0 ] (Microsoft Corporation)
  S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
  S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
  
  2014-07-20 11:55 - 2014-07-20 11:55 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Desktop\FRSTLauncher (2).exe
  2014-07-20 11:54 - 2014-07-20 11:54 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Downloads\Nepotvrzeno 999264.crdownload
  2014-07-20 11:54 - 2014-07-20 11:54 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Downloads\Nepotvrzeno 534212.crdownload
  2014-07-20 11:46 - 2014-07-20 11:46 - 01287168 _____ () C:\Users\Vojta\Desktop\zoek.exe
  2014-07-20 11:32 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
  2014-07-20 11:31 - 2014-07-20 11:31 - 01354223 _____ () C:\Users\Vojta\Desktop\adwcleaner_3.216.exe
  2014-07-20 11:30 - 2014-07-20 11:30 - 00006759 _____ () C:\Users\Vojta\Desktop\JRT.txt
  2014-07-20 11:15 - 2014-07-20 11:15 - 01016261 _____ (Thisisu) C:\Users\Vojta\Desktop\JRT.exe
  2014-07-20 11:03 - 2014-07-20 11:03 - 00832273 _____ () C:\Users\Vojta\Downloads\RSITx64 (1).exe
  2014-07-20 08:39 - 2014-07-20 11:35 - 00002298 _____ () C:\Windows\PFRO.log
  2014-07-20 08:39 - 2014-07-20 11:35 - 00000112 _____ () C:\Windows\setupact.log
  2014-07-20 08:39 - 2014-07-20 08:39 - 00000000 _____ () C:\Windows\setuperr.log
  2014-07-11 10:56 - 2014-07-11 10:56 - 00000000 ____D () C:\Program Files\McAfee Security Scan
  2014-07-11 10:56 - 2014-07-08 10:56 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
  C:\Users\Vojta\AppData\Local\Temp\avgnt.exe
  C:\Users\Vojta\AppData\Local\Temp\cabex.dll
  C:\Users\Vojta\AppData\Local\Temp\Quarantine.exe
  C:\Users\Vojta\AppData\Local\Temp\VARemove.exe
  C:\Users\Vojta\AppData\Local\Temp\Anime Studio Pro v10.0 + Activator.vbs
  
  Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1ce80a272d47fbe.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000Core1ce7ee924bea913.job => C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000UA.job => C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\Norton Security Scan for Vojta.job => C:\PROGRA~2\NORTON~2\Engine\403~1.24\Nss.exe
  
  AlternateDataStreams: C:\ProgramData\TEMP:56E2E879
  
  Task: {04553F7D-7854-4F56-B6B3-BE327562BADF} - System32\Tasks\SmartPCFix Task => C:\Program Files (x86)\SmartPCFix\SmartPCFix.exe <==== ATTENTION
  Task: {099A640D-0123-43D7-B138-397CC65842DC} - \PileFile logon No Task File <==== ATTENTION
  Task: {0E4927D9-376F-4A1D-AF79-580612067FAD} - \7f837661-9578-4ba1-93de-83a099809887-5 No Task File <==== ATTENTION
  Task: {11494D31-A747-4434-9CA7-EFD738D50BF0} - \12106982-84c6-415d-8573-e3b1ac84f792-2 No Task File <==== ATTENTION
  Task: {14A64227-1D74-4D99-9C97-985B9A340DE8} - \7f837661-9578-4ba1-93de-83a099809887-10 No Task File <==== ATTENTION
  Task: {1C1A9297-88C7-4381-A252-30DE1A3A2AC8} - \globalUpdateUpdateTaskMachineCore No Task File <==== ATTENTION
  Task: {2430919B-C50E-4CA0-B4F7-0AD8BBE9CD29} - \7f837661-9578-4ba1-93de-83a099809887-6 No Task File <==== ATTENTION
  Task: {273AF6A4-9867-4050-8187-A03BACBC3923} - \PileFile reminder No Task File <==== ATTENTION
  Task: {330B9D62-D53A-4EAE-99AB-74EB351CC40B} - \12106982-84c6-415d-8573-e3b1ac84f792-7 No Task File <==== ATTENTION
  Task: {3B47C68C-3FB6-4689-90E3-4E73794AB1EA} - \globalUpdateUpdateTaskMachineUA No Task File <==== ATTENTION
  Task: {488A4E49-5ECD-4F7B-A827-B0A9164377CA} - \12106982-84c6-415d-8573-e3b1ac84f792-1 No Task File <==== ATTENTION
  Task: {545B17B4-7B07-4679-8ED7-41464542FAA4} - \12106982-84c6-415d-8573-e3b1ac84f792-5 No Task File <==== ATTENTION
  Task: {6D4DFC50-1627-4B17-B783-7B4652D64D63} - \12106982-84c6-415d-8573-e3b1ac84f792-5_user No Task File <==== ATTENTION
  Task: {7E56E31A-BE04-4FF3-A542-E8A637852BEF} - \12106982-84c6-415d-8573-e3b1ac84f792-4 No Task File <==== ATTENTION
  Task: {7F0C8F5F-75DB-4D9A-B7E6-17DC0F53A7AB} - \12106982-84c6-415d-8573-e3b1ac84f792-3 No Task File <==== ATTENTION
  Task: {924A2D73-3E9C-44D6-8569-886B89133DBA} - \7f837661-9578-4ba1-93de-83a099809887-7 No Task File <==== ATTENTION
  Task: {9405394F-811B-4173-B3CB-436043995631} - System32\Tasks\RunAsStdUser Task => C:\Users\Vojta\AppData\Local\Oxy\Application\oxy.exe <==== ATTENTION
  Task: {98029319-D0C2-461A-A58E-E3849FBAB866} - \ProtectedSearch\Protected Search No Task File <==== ATTENTION
  Task: {A6E4F858-9656-4EDD-A8A8-CD20FE66129B} - \7f837661-9578-4ba1-93de-83a099809887-4 No Task File <==== ATTENTION
  Task: {BAA9AC89-C314-4E19-A819-E5C5E903B983} - \7f837661-9578-4ba1-93de-83a099809887-2 No Task File <==== ATTENTION
  Task: {CB27FF78-A643-4728-A81B-7A55F9CD6B6C} - \7f837661-9578-4ba1-93de-83a099809887-11 No Task File <==== ATTENTION
  Task: {D619780C-D9A3-4993-85FC-DAA6B3DDC72F} - \Oxy No Task File <==== ATTENTION
  Task: {D8AC553F-D044-4263-B192-DF42B4DFBA68} - \7f837661-9578-4ba1-93de-83a099809887-1 No Task File <==== ATTENTION
  Task: {F862DE4E-C6EA-4A6B-AB2D-5C29C39ADD50} - \7f837661-9578-4ba1-93de-83a099809887-5_user No Task File <==== ATTENTION
  Task: {F8B7C39D-7FDF-40CD-8D3C-A7A0BD0AF7B7} - \12106982-84c6-415d-8573-e3b1ac84f792-11 No Task File <==== ATTENTION
  Task: {F9FE9D53-BE16-4D95-883F-1C51256C0DF9} - \12106982-84c6-415d-8573-e3b1ac84f792-6 No Task File <==== ATTENTION
  
  C:\Program Files (x86)\SmartPCFix
  C:\Users\Vojta\AppData\Local\Oxy
  
  Reboot:
  End
  

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[Pixe]

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 19-07-2014
Ran by Vojta at 2014-07-20 17:30:54 Run:1
Running from C:\Users\Vojta\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS4ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [RazerGameBooster] => C:\Program Files (x86)\Razer\Razer Game Booster\RazerGameBooster.exe [61152 2014-02-25] (Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3816272 2014-06-23] (LogMeIn Inc.)
HKLM-x32\...\Run: [Everything] => C:\Program Files (x86)\Everything\Everything.exe [602624 2009-03-13] ()
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [TBPanel] => C:\Program Files (x86)\Vtune\TBPanel.exe [2158592 2009-10-05] ()
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [Google Update] => C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-09-14] (Google Inc.)
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [Anime Studio Pro v10] => wscript.exe //B "C:\Users\Vojta\AppData\Local\Temp\Anime Studio Pro v10.0 + Activator.vbs"
<===== ATTENTION
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Vojta\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Vojta\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\MountPoints2: E - E:\Autorun.exe
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\...\MountPoints2: {009d2d5f-ccd1-11df-89eb-6c626d55336b} - G:\Autorun.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
Startup: C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Anime Studio Pro v10.0 + Activator.vbs ()
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=UP97&ocid=UP97DHP
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - {43BDF51A-2F60-44F0-BAF4-59FD6EB6C5E8} URL = http://search.findwide.com/serp?guid={6 ... earchTerms}
SearchScopes: HKCU - {60485703-A58D-40E7-861F-F907F99A4CF4} URL = http://search.yahoo.com/search?p={searc ... type=10799

FF DefaultSearchEngine: Bing
FF SearchEngineOrder.3: Bing
FF SelectedSearchEngine: Bing
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Extension: Seznam lištička - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-07-11]
FF Extension: Laflurla - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\firefox@laflurla.com.xpi [2014-04-19]
FF Extension: Stylish - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2013-12-17]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-05-13]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-05-13]

CHR HKLM-x32\...\Chrome\Extension: [cgbealecnakbhfoeeipcnoboempfkbjd] - C:\Program Files (x86)\AmiExt\flashEnhancer\ch\flashEnhancer.crx [2014-04-17]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]

U3 a62g689c; C:\Windows\System32\Drivers\a62g689c.sys [0 ] (Microsoft Corporation)
U3 aq1j0x8b; C:\Windows\System32\Drivers\aq1j0x8b.sys [0 ] (Microsoft Corporation)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)

2014-07-20 11:55 - 2014-07-20 11:55 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Desktop\FRSTLauncher (2).exe
2014-07-20 11:54 - 2014-07-20 11:54 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Downloads\Nepotvrzeno 999264.crdownload
2014-07-20 11:54 - 2014-07-20 11:54 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Downloads\Nepotvrzeno 534212.crdownload
2014-07-20 11:46 - 2014-07-20 11:46 - 01287168 _____ () C:\Users\Vojta\Desktop\zoek.exe
2014-07-20 11:32 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-07-20 11:31 - 2014-07-20 11:31 - 01354223 _____ () C:\Users\Vojta\Desktop\adwcleaner_3.216.exe
2014-07-20 11:30 - 2014-07-20 11:30 - 00006759 _____ () C:\Users\Vojta\Desktop\JRT.txt
2014-07-20 11:15 - 2014-07-20 11:15 - 01016261 _____ (Thisisu) C:\Users\Vojta\Desktop\JRT.exe
2014-07-20 11:03 - 2014-07-20 11:03 - 00832273 _____ () C:\Users\Vojta\Downloads\RSITx64 (1).exe
2014-07-20 08:39 - 2014-07-20 11:35 - 00002298 _____ () C:\Windows\PFRO.log
2014-07-20 08:39 - 2014-07-20 11:35 - 00000112 _____ () C:\Windows\setupact.log
2014-07-20 08:39 - 2014-07-20 08:39 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-11 10:56 - 2014-07-11 10:56 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-07-11 10:56 - 2014-07-08 10:56 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
C:\Users\Vojta\AppData\Local\Temp\avgnt.exe
C:\Users\Vojta\AppData\Local\Temp\cabex.dll
C:\Users\Vojta\AppData\Local\Temp\Quarantine.exe
C:\Users\Vojta\AppData\Local\Temp\VARemove.exe
C:\Users\Vojta\AppData\Local\Temp\Anime Studio Pro v10.0 + Activator.vbs

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1ce80a272d47fbe.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000Core1ce7ee924bea913.job => C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000UA.job => C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Norton Security Scan for Vojta.job => C:\PROGRA~2\NORTON~2\Engine\403~1.24\Nss.exe

AlternateDataStreams: C:\ProgramData\TEMP:56E2E879

Task: {04553F7D-7854-4F56-B6B3-BE327562BADF} - System32\Tasks\SmartPCFix Task => C:\Program Files (x86)\SmartPCFix\SmartPCFix.exe <==== ATTENTION
Task: {099A640D-0123-43D7-B138-397CC65842DC} - \PileFile logon No Task File <==== ATTENTION
Task: {0E4927D9-376F-4A1D-AF79-580612067FAD} - \7f837661-9578-4ba1-93de-83a099809887-5 No Task File <==== ATTENTION
Task: {11494D31-A747-4434-9CA7-EFD738D50BF0} - \12106982-84c6-415d-8573-e3b1ac84f792-2 No Task File <==== ATTENTION
Task: {14A64227-1D74-4D99-9C97-985B9A340DE8} - \7f837661-9578-4ba1-93de-83a099809887-10 No Task File <==== ATTENTION
Task: {1C1A9297-88C7-4381-A252-30DE1A3A2AC8} - \globalUpdateUpdateTaskMachineCore No Task File <==== ATTENTION
Task: {2430919B-C50E-4CA0-B4F7-0AD8BBE9CD29} - \7f837661-9578-4ba1-93de-83a099809887-6 No Task File <==== ATTENTION
Task: {273AF6A4-9867-4050-8187-A03BACBC3923} - \PileFile reminder No Task File <==== ATTENTION
Task: {330B9D62-D53A-4EAE-99AB-74EB351CC40B} - \12106982-84c6-415d-8573-e3b1ac84f792-7 No Task File <==== ATTENTION
Task: {3B47C68C-3FB6-4689-90E3-4E73794AB1EA} - \globalUpdateUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {488A4E49-5ECD-4F7B-A827-B0A9164377CA} - \12106982-84c6-415d-8573-e3b1ac84f792-1 No Task File <==== ATTENTION
Task: {545B17B4-7B07-4679-8ED7-41464542FAA4} - \12106982-84c6-415d-8573-e3b1ac84f792-5 No Task File <==== ATTENTION
Task: {6D4DFC50-1627-4B17-B783-7B4652D64D63} - \12106982-84c6-415d-8573-e3b1ac84f792-5_user No Task File <==== ATTENTION
Task: {7E56E31A-BE04-4FF3-A542-E8A637852BEF} - \12106982-84c6-415d-8573-e3b1ac84f792-4 No Task File <==== ATTENTION
Task: {7F0C8F5F-75DB-4D9A-B7E6-17DC0F53A7AB} - \12106982-84c6-415d-8573-e3b1ac84f792-3 No Task File <==== ATTENTION
Task: {924A2D73-3E9C-44D6-8569-886B89133DBA} - \7f837661-9578-4ba1-93de-83a099809887-7 No Task File <==== ATTENTION
Task: {9405394F-811B-4173-B3CB-436043995631} - System32\Tasks\RunAsStdUser Task => C:\Users\Vojta\AppData\Local\Oxy\Application\oxy.exe <==== ATTENTION
Task: {98029319-D0C2-461A-A58E-E3849FBAB866} - \ProtectedSearch\Protected Search No Task File <==== ATTENTION
Task: {A6E4F858-9656-4EDD-A8A8-CD20FE66129B} - \7f837661-9578-4ba1-93de-83a099809887-4 No Task File <==== ATTENTION
Task: {BAA9AC89-C314-4E19-A819-E5C5E903B983} - \7f837661-9578-4ba1-93de-83a099809887-2 No Task File <==== ATTENTION
Task: {CB27FF78-A643-4728-A81B-7A55F9CD6B6C} - \7f837661-9578-4ba1-93de-83a099809887-11 No Task File <==== ATTENTION
Task: {D619780C-D9A3-4993-85FC-DAA6B3DDC72F} - \Oxy No Task File <==== ATTENTION
Task: {D8AC553F-D044-4263-B192-DF42B4DFBA68} - \7f837661-9578-4ba1-93de-83a099809887-1 No Task File <==== ATTENTION
Task: {F862DE4E-C6EA-4A6B-AB2D-5C29C39ADD50} - \7f837661-9578-4ba1-93de-83a099809887-5_user No Task File <==== ATTENTION
Task: {F8B7C39D-7FDF-40CD-8D3C-A7A0BD0AF7B7} - \12106982-84c6-415d-8573-e3b1ac84f792-11 No Task File <==== ATTENTION
Task: {F9FE9D53-BE16-4D95-883F-1C51256C0DF9} - \12106982-84c6-415d-8573-e3b1ac84f792-6 No Task File <==== ATTENTION

C:\Program Files (x86)\SmartPCFix
C:\Users\Vojta\AppData\Local\Oxy

Reboot:
End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\AdobeCS4ServiceManager => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\RazerGameBooster => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\LogMeIn Hamachi Ui => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Everything => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce => value deleted successfully.
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\Software\Microsoft\Windows\CurrentVersion\Run\\TBPanel => value deleted successfully.
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update => value deleted successfully.
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Skype => value deleted successfully.
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value deleted successfully.
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Anime Studio Pro v10 => value deleted successfully.
<===== ATTENTION => Error: No automatic fix found for this entry.
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate => value deleted successfully.
HKU\S-1-5-21-245253757-1308271664-2816636852-1000\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop => value deleted successfully.
'HKU\S-1-5-21-245253757-1308271664-2816636852-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-245253757-1308271664-2816636852-1000'=> Key not found.
'HKU\S-1-5-21-245253757-1308271664-2816636852-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{009d2d5f-ccd1-11df-89eb-6c626d55336b}' => Key deleted successfully.
'HKCR\CLSID\{009d2d5f-ccd1-11df-89eb-6c626d55336b}'=> Key not found.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk => Moved successfully.
C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Anime Studio Pro v10.0 + Activator.vbs => Moved successfully.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt1' => Key deleted successfully.
'HKLM\Software\Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt2' => Key deleted successfully.
'HKLM\Software\Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt3' => Key deleted successfully.
'HKLM\Software\Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt4' => Key deleted successfully.
'HKLM\Software\Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{43BDF51A-2F60-44F0-BAF4-59FD6EB6C5E8}' => Key deleted successfully.
'HKCR\CLSID\{43BDF51A-2F60-44F0-BAF4-59FD6EB6C5E8}'=> Key not found.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{60485703-A58D-40E7-861F-F907F99A4CF4}' => Key deleted successfully.
'HKCR\CLSID\{60485703-A58D-40E7-861F-F907F99A4CF4}'=> Key not found.
Firefox DefaultSearchEngine deleted successfully.
Firefox SearchEngineOrder.3 deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
'HKLM\Software\Wow6432Node\MozillaPlugins\FF Plugin-x32: @microsoft.com/GENUINE - disabled No File'=> Key not found.
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File not found.
C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} => Moved successfully.
C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\firefox@laflurla.com.xpi => Moved successfully.
C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi => Moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} => Moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} => Moved successfully.
'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\cgbealecnakbhfoeeipcnoboempfkbjd' => Key deleted successfully.
"C:\Program Files (x86)\AmiExt\flashEnhancer\ch\flashEnhancer.crx" => File/Directory not found.
'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl' => Key deleted successfully.
C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx => Moved successfully.
a62g689c => Service deleted successfully.
aq1j0x8b => Service deleted successfully.
EagleX64 => Service deleted successfully.
McComponentHostService => Service deleted successfully.
C:\Users\Vojta\Desktop\FRSTLauncher (2).exe => Moved successfully.
"C:\Users\Vojta\Downloads\Nepotvrzeno 999264.crdownload" => File/Directory not found.
"C:\Users\Vojta\Downloads\Nepotvrzeno 534212.crdownload" => File/Directory not found.
C:\Users\Vojta\Desktop\zoek.exe => Moved successfully.
C:\Windows\SysWOW64\sqlite3.dll => Moved successfully.
C:\Users\Vojta\Desktop\adwcleaner_3.216.exe => Moved successfully.
C:\Users\Vojta\Desktop\JRT.txt => Moved successfully.
C:\Users\Vojta\Desktop\JRT.exe => Moved successfully.
C:\Users\Vojta\Downloads\RSITx64 (1).exe => Moved successfully.
C:\Windows\PFRO.log => Moved successfully.
C:\Windows\setupact.log => Moved successfully.
C:\Windows\setuperr.log => Moved successfully.
C:\Program Files\McAfee Security Scan => Moved successfully.
C:\ProgramData\McAfee Security Scan => Moved successfully.
C:\Users\Vojta\AppData\Local\Temp\avgnt.exe => Moved successfully.
C:\Users\Vojta\AppData\Local\Temp\cabex.dll => Moved successfully.
C:\Users\Vojta\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\Vojta\AppData\Local\Temp\VARemove.exe => Moved successfully.
Could not move "C:\Users\Vojta\AppData\Local\Temp\Anime Studio Pro v10.0 + Activator.vbs" => Scheduled to move on reboot.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1ce80a272d47fbe.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000Core1ce7ee924bea913.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000UA.job => Moved successfully.
C:\Windows\Tasks\Norton Security Scan for Vojta.job => Moved successfully.
C:\ProgramData\TEMP => ":56E2E879" ADS removed successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{04553F7D-7854-4F56-B6B3-BE327562BADF}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{04553F7D-7854-4F56-B6B3-BE327562BADF}' => Key deleted successfully.
C:\Windows\System32\Tasks\SmartPCFix Task => Moved successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SmartPCFix Task' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{099A640D-0123-43D7-B138-397CC65842DC}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{099A640D-0123-43D7-B138-397CC65842DC}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PileFile logon' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0E4927D9-376F-4A1D-AF79-580612067FAD}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0E4927D9-376F-4A1D-AF79-580612067FAD}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\7f837661-9578-4ba1-93de-83a099809887-5' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{11494D31-A747-4434-9CA7-EFD738D50BF0}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{11494D31-A747-4434-9CA7-EFD738D50BF0}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\12106982-84c6-415d-8573-e3b1ac84f792-2' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{14A64227-1D74-4D99-9C97-985B9A340DE8}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{14A64227-1D74-4D99-9C97-985B9A340DE8}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\7f837661-9578-4ba1-93de-83a099809887-10' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1C1A9297-88C7-4381-A252-30DE1A3A2AC8}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1C1A9297-88C7-4381-A252-30DE1A3A2AC8}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineCore' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2430919B-C50E-4CA0-B4F7-0AD8BBE9CD29}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2430919B-C50E-4CA0-B4F7-0AD8BBE9CD29}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\7f837661-9578-4ba1-93de-83a099809887-6' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{273AF6A4-9867-4050-8187-A03BACBC3923}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{273AF6A4-9867-4050-8187-A03BACBC3923}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PileFile reminder' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{330B9D62-D53A-4EAE-99AB-74EB351CC40B}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{330B9D62-D53A-4EAE-99AB-74EB351CC40B}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\12106982-84c6-415d-8573-e3b1ac84f792-7' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3B47C68C-3FB6-4689-90E3-4E73794AB1EA}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3B47C68C-3FB6-4689-90E3-4E73794AB1EA}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineUA' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{488A4E49-5ECD-4F7B-A827-B0A9164377CA}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{488A4E49-5ECD-4F7B-A827-B0A9164377CA}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\12106982-84c6-415d-8573-e3b1ac84f792-1' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{545B17B4-7B07-4679-8ED7-41464542FAA4}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{545B17B4-7B07-4679-8ED7-41464542FAA4}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\12106982-84c6-415d-8573-e3b1ac84f792-5' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6D4DFC50-1627-4B17-B783-7B4652D64D63}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6D4DFC50-1627-4B17-B783-7B4652D64D63}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\12106982-84c6-415d-8573-e3b1ac84f792-5_user' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7E56E31A-BE04-4FF3-A542-E8A637852BEF}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7E56E31A-BE04-4FF3-A542-E8A637852BEF}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\12106982-84c6-415d-8573-e3b1ac84f792-4' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7F0C8F5F-75DB-4D9A-B7E6-17DC0F53A7AB}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7F0C8F5F-75DB-4D9A-B7E6-17DC0F53A7AB}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\12106982-84c6-415d-8573-e3b1ac84f792-3' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{924A2D73-3E9C-44D6-8569-886B89133DBA}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{924A2D73-3E9C-44D6-8569-886B89133DBA}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\7f837661-9578-4ba1-93de-83a099809887-7' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9405394F-811B-4173-B3CB-436043995631}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9405394F-811B-4173-B3CB-436043995631}' => Key deleted successfully.
C:\Windows\System32\Tasks\RunAsStdUser Task => Moved successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RunAsStdUser Task' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{98029319-D0C2-461A-A58E-E3849FBAB866}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{98029319-D0C2-461A-A58E-E3849FBAB866}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ProtectedSearch\Protected Search' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A6E4F858-9656-4EDD-A8A8-CD20FE66129B}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A6E4F858-9656-4EDD-A8A8-CD20FE66129B}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\7f837661-9578-4ba1-93de-83a099809887-4' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BAA9AC89-C314-4E19-A819-E5C5E903B983}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BAA9AC89-C314-4E19-A819-E5C5E903B983}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\7f837661-9578-4ba1-93de-83a099809887-2' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CB27FF78-A643-4728-A81B-7A55F9CD6B6C}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CB27FF78-A643-4728-A81B-7A55F9CD6B6C}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\7f837661-9578-4ba1-93de-83a099809887-11' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D619780C-D9A3-4993-85FC-DAA6B3DDC72F}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D619780C-D9A3-4993-85FC-DAA6B3DDC72F}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Oxy' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D8AC553F-D044-4263-B192-DF42B4DFBA68}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D8AC553F-D044-4263-B192-DF42B4DFBA68}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\7f837661-9578-4ba1-93de-83a099809887-1' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F862DE4E-C6EA-4A6B-AB2D-5C29C39ADD50}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F862DE4E-C6EA-4A6B-AB2D-5C29C39ADD50}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\7f837661-9578-4ba1-93de-83a099809887-5_user' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F8B7C39D-7FDF-40CD-8D3C-A7A0BD0AF7B7}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F8B7C39D-7FDF-40CD-8D3C-A7A0BD0AF7B7}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\12106982-84c6-415d-8573-e3b1ac84f792-11' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F9FE9D53-BE16-4D95-883F-1C51256C0DF9}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F9FE9D53-BE16-4D95-883F-1C51256C0DF9}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\12106982-84c6-415d-8573-e3b1ac84f792-6' => Key deleted successfully.
"C:\Program Files (x86)\SmartPCFix" => File/Directory not found.
"C:\Users\Vojta\AppData\Local\Oxy" => File/Directory not found.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-07-20 17:33:47)<=

C:\Users\Vojta\AppData\Local\Temp\Anime Studio Pro v10.0 + Activator.vbs => Is moved successfully.

==== End of Fixlog ====

[vyosek]

Jak se chova PC??

[Pixe]

Projel jsem PC Avirou...3 detekce


Report z Aviry:

Avira Free Antivirus
Report file date: 20. července 2014 17:44


The program is running as an unrestricted full version.
Online services are available.

Licensee : Avira Antivirus Free
Serial number : 0000149996-AVHOE-0000001
Platform : Windows 7 Home Premium
Windows version : (Service Pack 1) [6.1.7601]
Boot mode : Normally booted
Username : Vojta
Computer name : VOJTA-PC

Version information:
BUILD.DAT : 14.0.5.450 91868 Bytes 24.6.2014 20:39:00
AVSCAN.EXE : 14.0.5.396 1042512 Bytes 24.6.2014 10:33:04
AVSCANRC.DLL : 14.0.5.364 52816 Bytes 24.6.2014 10:33:04
LUKE.DLL : 14.0.5.336 57936 Bytes 24.6.2014 10:33:11
AVSCPLR.DLL : 14.0.5.376 89680 Bytes 24.6.2014 10:33:04
AVREG.DLL : 14.0.5.356 261200 Bytes 24.6.2014 10:33:03
avlode.dll : 14.0.5.396 588368 Bytes 24.6.2014 10:33:03
avlode.rdf : 14.0.4.42 65114 Bytes 18.7.2014 10:44:19
XBV00008.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00009.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00010.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00011.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00012.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00013.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00014.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00015.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00016.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00017.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00018.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00019.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00020.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00021.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00022.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00023.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00024.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00025.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00026.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00027.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00028.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00029.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00030.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00031.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00032.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00033.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00034.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00035.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00036.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00037.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00038.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00039.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00040.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00041.VDF : 8.11.153.142 2048 Bytes 6.6.2014 12:31:51
XBV00143.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:22
XBV00144.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:22
XBV00145.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:22
XBV00146.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00147.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00148.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00149.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00150.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00151.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00152.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00153.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00154.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00155.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00156.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00157.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00158.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00159.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00160.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00161.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00162.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00163.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00164.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00165.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00166.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00167.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00168.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00169.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00170.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00171.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00172.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00173.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00174.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00175.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00176.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00177.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00178.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00179.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00180.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00181.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00182.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00183.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00184.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00185.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00186.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00187.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00188.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00189.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00190.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00191.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00192.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00193.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00194.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00195.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00196.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00197.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:23
XBV00198.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00199.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00200.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00201.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00202.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00203.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00204.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00205.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00206.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00207.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00208.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00209.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00210.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00211.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00212.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00213.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00214.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00215.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00216.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00217.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00218.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00219.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00220.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00221.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00222.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00223.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00224.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00225.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00226.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00227.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00228.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00229.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00230.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00231.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00232.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00233.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00234.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00235.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00236.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00237.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00238.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00239.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00240.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00241.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00242.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00243.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00244.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00245.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00246.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00247.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00248.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00249.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00250.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:24
XBV00251.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:25
XBV00252.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:25
XBV00253.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:25
XBV00254.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:25
XBV00255.VDF : 8.11.159.102 2048 Bytes 8.7.2014 20:07:25
XBV00000.VDF : 7.11.70.0 66736640 Bytes 4.4.2013 18:19:54
XBV00001.VDF : 7.11.74.226 2201600 Bytes 30.4.2013 10:56:35
XBV00002.VDF : 7.11.80.60 2751488 Bytes 28.5.2013 10:58:19
XBV00003.VDF : 7.11.85.214 2162688 Bytes 21.6.2013 11:04:05
XBV00004.VDF : 7.11.91.176 3903488 Bytes 23.7.2013 10:33:48
XBV00005.VDF : 7.11.98.186 6822912 Bytes 29.8.2013 13:17:35
XBV00006.VDF : 7.11.139.38 15708672 Bytes 27.3.2014 18:42:11
XBV00007.VDF : 7.11.152.100 4193792 Bytes 2.6.2014 12:37:36
XBV00042.VDF : 8.11.153.142 710656 Bytes 6.6.2014 12:31:51
XBV00043.VDF : 8.11.155.44 1013760 Bytes 16.6.2014 12:31:52
XBV00044.VDF : 8.11.159.102 1662976 Bytes 8.7.2014 20:07:20
XBV00045.VDF : 8.11.159.104 13824 Bytes 8.7.2014 20:07:20
XBV00046.VDF : 8.11.159.108 13312 Bytes 8.7.2014 09:52:48
XBV00047.VDF : 8.11.159.112 30720 Bytes 9.7.2014 09:52:48
XBV00048.VDF : 8.11.159.114 6144 Bytes 9.7.2014 09:52:48
XBV00049.VDF : 8.11.159.116 10240 Bytes 9.7.2014 15:52:44
XBV00050.VDF : 8.11.159.118 5632 Bytes 9.7.2014 15:52:44
XBV00051.VDF : 8.11.159.122 7168 Bytes 9.7.2014 15:52:44
XBV00052.VDF : 8.11.159.126 180736 Bytes 9.7.2014 15:52:44
XBV00053.VDF : 8.11.159.148 174080 Bytes 9.7.2014 06:36:00
XBV00054.VDF : 8.11.159.168 2560 Bytes 9.7.2014 06:36:00
XBV00055.VDF : 8.11.159.188 15360 Bytes 9.7.2014 06:36:00
XBV00056.VDF : 8.11.159.210 25600 Bytes 9.7.2014 06:36:00
XBV00057.VDF : 8.11.159.212 7168 Bytes 9.7.2014 06:36:01
XBV00058.VDF : 8.11.159.218 27648 Bytes 10.7.2014 06:36:01
XBV00059.VDF : 8.11.159.220 2048 Bytes 10.7.2014 06:36:01
XBV00060.VDF : 8.11.159.222 29696 Bytes 10.7.2014 12:36:23
XBV00061.VDF : 8.11.159.224 167936 Bytes 10.7.2014 12:36:23
XBV00062.VDF : 8.11.159.226 35328 Bytes 10.7.2014 12:36:23
XBV00063.VDF : 8.11.159.230 186368 Bytes 10.7.2014 18:36:31
XBV00064.VDF : 8.11.159.250 16896 Bytes 10.7.2014 18:36:31
XBV00065.VDF : 8.11.159.252 2048 Bytes 10.7.2014 18:36:31
XBV00066.VDF : 8.11.160.16 6144 Bytes 10.7.2014 04:08:25
XBV00067.VDF : 8.11.160.40 17408 Bytes 10.7.2014 04:08:25
XBV00068.VDF : 8.11.160.42 2048 Bytes 11.7.2014 04:08:25
XBV00069.VDF : 8.11.160.46 179200 Bytes 11.7.2014 10:08:39
XBV00070.VDF : 8.11.160.48 203264 Bytes 11.7.2014 10:44:19
XBV00071.VDF : 8.11.160.50 6144 Bytes 11.7.2014 10:44:19
XBV00072.VDF : 8.11.160.52 2048 Bytes 11.7.2014 10:44:19
XBV00073.VDF : 8.11.160.54 2048 Bytes 11.7.2014 10:44:19
XBV00074.VDF : 8.11.160.58 22016 Bytes 11.7.2014 10:44:20
XBV00075.VDF : 8.11.160.60 2048 Bytes 11.7.2014 10:44:20
XBV00076.VDF : 8.11.160.62 8192 Bytes 11.7.2014 10:44:20
XBV00077.VDF : 8.11.160.66 198656 Bytes 12.7.2014 10:44:20
XBV00078.VDF : 8.11.160.68 7168 Bytes 12.7.2014 10:44:20
XBV00079.VDF : 8.11.160.70 14848 Bytes 12.7.2014 10:44:20
XBV00080.VDF : 8.11.160.72 7168 Bytes 12.7.2014 10:44:20
XBV00081.VDF : 8.11.160.92 40448 Bytes 13.7.2014 10:44:20
XBV00082.VDF : 8.11.160.112 2048 Bytes 13.7.2014 10:44:20
XBV00083.VDF : 8.11.160.130 193024 Bytes 13.7.2014 10:44:20
XBV00084.VDF : 8.11.160.132 2048 Bytes 13.7.2014 10:44:20
XBV00085.VDF : 8.11.160.152 20480 Bytes 13.7.2014 10:44:20
XBV00086.VDF : 8.11.160.154 2048 Bytes 13.7.2014 10:44:20
XBV00087.VDF : 8.11.160.156 20992 Bytes 14.7.2014 10:44:20
XBV00088.VDF : 8.11.160.158 2560 Bytes 14.7.2014 10:44:20
XBV00089.VDF : 8.11.160.160 11264 Bytes 14.7.2014 10:44:20
XBV00090.VDF : 8.11.160.162 2560 Bytes 14.7.2014 10:44:20
XBV00091.VDF : 8.11.160.166 14336 Bytes 14.7.2014 10:44:20
XBV00092.VDF : 8.11.160.168 5120 Bytes 14.7.2014 10:44:20
XBV00093.VDF : 8.11.160.178 7168 Bytes 14.7.2014 10:44:20
XBV00094.VDF : 8.11.160.180 2048 Bytes 14.7.2014 10:44:21
XBV00095.VDF : 8.11.160.182 2048 Bytes 14.7.2014 10:44:21
XBV00096.VDF : 8.11.160.188 256000 Bytes 14.7.2014 10:44:21
XBV00097.VDF : 8.11.160.190 7680 Bytes 14.7.2014 10:44:21
XBV00098.VDF : 8.11.160.194 18432 Bytes 15.7.2014 10:44:21
XBV00099.VDF : 8.11.160.212 184832 Bytes 15.7.2014 10:44:21
XBV00100.VDF : 8.11.160.230 289792 Bytes 15.7.2014 10:44:21
XBV00101.VDF : 8.11.160.232 2048 Bytes 15.7.2014 10:44:21
XBV00102.VDF : 8.11.160.234 176128 Bytes 15.7.2014 10:44:21
XBV00103.VDF : 8.11.160.254 18432 Bytes 15.7.2014 10:44:21
XBV00104.VDF : 8.11.161.16 6144 Bytes 16.7.2014 10:44:21
XBV00105.VDF : 8.11.161.32 2048 Bytes 16.7.2014 10:44:21
XBV00106.VDF : 8.11.161.34 2048 Bytes 16.7.2014 10:44:21
XBV00107.VDF : 8.11.161.52 26624 Bytes 16.7.2014 10:44:21
XBV00108.VDF : 8.11.161.68 184832 Bytes 16.7.2014 10:44:21
XBV00109.VDF : 8.11.161.84 2048 Bytes 16.7.2014 10:44:21
XBV00110.VDF : 8.11.162.2 2560 Bytes 16.7.2014 10:44:21
XBV00111.VDF : 8.11.162.6 16896 Bytes 16.7.2014 10:44:21
XBV00112.VDF : 8.11.162.8 24064 Bytes 16.7.2014 10:44:21
XBV00113.VDF : 8.11.162.10 2560 Bytes 16.7.2014 10:44:21
XBV00114.VDF : 8.11.162.14 41472 Bytes 17.7.2014 10:44:21
XBV00115.VDF : 8.11.162.16 2048 Bytes 17.7.2014 10:44:21
XBV00116.VDF : 8.11.162.18 215040 Bytes 17.7.2014 10:44:21
XBV00117.VDF : 8.11.162.22 184320 Bytes 17.7.2014 10:44:21
XBV00118.VDF : 8.11.162.40 258048 Bytes 17.7.2014 10:44:22
XBV00119.VDF : 8.11.162.42 3584 Bytes 17.7.2014 10:44:22
XBV00120.VDF : 8.11.162.58 3072 Bytes 17.7.2014 10:44:22
XBV00121.VDF : 8.11.162.78 2048 Bytes 17.7.2014 10:44:22
XBV00122.VDF : 8.11.162.94 2048 Bytes 17.7.2014 10:44:22
XBV00123.VDF : 8.11.162.110 35840 Bytes 17.7.2014 10:44:22
XBV00124.VDF : 8.11.162.112 2048 Bytes 18.7.2014 10:44:22
XBV00125.VDF : 8.11.162.130 23040 Bytes 18.7.2014 10:44:22
XBV00126.VDF : 8.11.162.134 184320 Bytes 18.7.2014 10:44:22
XBV00127.VDF : 8.11.162.136 2048 Bytes 18.7.2014 10:44:22
XBV00128.VDF : 8.11.162.152 231424 Bytes 18.7.2014 16:42:16
XBV00129.VDF : 8.11.162.154 2048 Bytes 18.7.2014 16:42:16
XBV00130.VDF : 8.11.162.170 108032 Bytes 18.7.2014 16:42:16
XBV00131.VDF : 8.11.162.172 9728 Bytes 18.7.2014 16:42:16
XBV00132.VDF : 8.11.162.174 2048 Bytes 18.7.2014 16:42:16
XBV00133.VDF : 8.11.162.188 20992 Bytes 18.7.2014 07:43:29
XBV00134.VDF : 8.11.162.192 2048 Bytes 18.7.2014 07:43:30
XBV00135.VDF : 8.11.162.194 2048 Bytes 18.7.2014 07:43:30
XBV00136.VDF : 8.11.162.200 19968 Bytes 18.7.2014 07:43:30
XBV00137.VDF : 8.11.162.204 2048 Bytes 18.7.2014 07:43:30
XBV00138.VDF : 8.11.162.212 2048 Bytes 18.7.2014 07:43:30
XBV00139.VDF : 8.11.162.228 227840 Bytes 19.7.2014 13:42:27
XBV00140.VDF : 8.11.162.244 2048 Bytes 19.7.2014 13:42:27
XBV00141.VDF : 8.11.163.2 31232 Bytes 19.7.2014 19:42:34
XBV00142.VDF : 8.11.163.16 62464 Bytes 20.7.2014 12:45:25
LOCAL001.VDF : 8.11.163.16 109395968 Bytes 20.7.2014 12:46:24
Engine version : 8.3.20.34
AEVDF.DLL : 8.3.0.4 118976 Bytes 20.3.2014 18:59:49
AESCRIPT.DLL : 8.1.4.220 532680 Bytes 11.7.2014 10:08:39
AESCN.DLL : 8.3.1.2 135360 Bytes 28.5.2014 18:34:41
AESBX.DLL : 8.2.20.24 1409224 Bytes 8.5.2014 16:38:17
AERDL.DLL : 8.2.0.138 704888 Bytes 2.12.2013 18:08:48
AEPACK.DLL : 8.4.0.42 786632 Bytes 2.7.2014 17:48:45
AEOFFICE.DLL : 8.3.0.10 209096 Bytes 11.7.2014 10:08:39
AEHEUR.DLL : 8.1.4.1160 7229640 Bytes 11.7.2014 10:08:39
AEHELP.DLL : 8.3.1.0 278728 Bytes 28.5.2014 18:34:39
AEGEN.DLL : 8.1.7.28 450752 Bytes 6.6.2014 11:46:13
AEEXP.DLL : 8.4.2.6 237760 Bytes 27.6.2014 13:48:38
AEEMU.DLL : 8.1.3.2 393587 Bytes 14.4.2013 18:19:57
AEDROID.DLL : 8.4.2.24 442568 Bytes 4.6.2014 16:14:58
AECORE.DLL : 8.3.1.4 241864 Bytes 6.6.2014 11:46:12
AEBB.DLL : 8.1.1.4 53619 Bytes 14.4.2013 18:19:56
AVWINLL.DLL : 14.0.5.320 24144 Bytes 24.6.2014 10:33:01
AVPREF.DLL : 14.0.5.320 50256 Bytes 24.6.2014 10:33:03
AVREP.DLL : 14.0.5.320 219216 Bytes 24.6.2014 10:33:03
AVARKT.DLL : 14.0.5.368 226384 Bytes 24.6.2014 10:33:01
AVEVTLOG.DLL : 14.0.5.320 182352 Bytes 24.6.2014 10:33:02
SQLITE3.DLL : 14.0.5.320 452176 Bytes 24.6.2014 10:33:12
AVSMTP.DLL : 14.0.5.320 76368 Bytes 24.6.2014 10:33:05
NETNT.DLL : 14.0.5.320 13392 Bytes 24.6.2014 10:33:11
RCIMAGE.DLL : 14.0.5.320 4998736 Bytes 24.6.2014 10:33:01
RCTEXT.DLL : 14.0.5.322 73296 Bytes 24.6.2014 10:33:01

Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: C:\program files (x86)\avira\antivir desktop\sysscan.avp
Reporting...........................: default
Primary action......................: Interactive
Secondary action....................: Ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:,
Process scan........................: on
Extended process scan...............: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Limit recursion depth...............: 20
Smart extensions....................: on
Macrovirus heuristic................: on
File heuristic......................: extended

Start of the scan: 20. července 2014 17:44

Start scanning boot sectors:
Boot sector 'HDD0(C:)'
[INFO] No virus was found!

Starting search for hidden objects.
Hidden driver
[NOTE] A memory modification has been detected, which could potentially be used to hide file access attempts.

The scan of running processes will be started:
Scan process 'svchost.exe' - '52' Module(s) have been scanned
Scan process 'nvvsvc.exe' - '35' Module(s) have been scanned
Scan process 'nvSCPAPISvr.exe' - '34' Module(s) have been scanned
Scan process 'svchost.exe' - '36' Module(s) have been scanned
Scan process 'svchost.exe' - '88' Module(s) have been scanned
Scan process 'svchost.exe' - '104' Module(s) have been scanned
Scan process 'svchost.exe' - '82' Module(s) have been scanned
Scan process 'svchost.exe' - '148' Module(s) have been scanned
Scan process 'AUDIODG.EXE' - '41' Module(s) have been scanned
Scan process 'svchost.exe' - '73' Module(s) have been scanned
Scan process 'nvxdsync.exe' - '50' Module(s) have been scanned
Scan process 'nvvsvc.exe' - '47' Module(s) have been scanned
Scan process 'taskeng.exe' - '28' Module(s) have been scanned
Scan process 'spoolsv.exe' - '85' Module(s) have been scanned
Scan process 'sched.exe' - '58' Module(s) have been scanned
Scan process 'svchost.exe' - '62' Module(s) have been scanned
Scan process 'taskhost.exe' - '56' Module(s) have been scanned
Scan process 'Dwm.exe' - '31' Module(s) have been scanned
Scan process 'Explorer.EXE' - '166' Module(s) have been scanned
Scan process 'armsvc.exe' - '28' Module(s) have been scanned
Scan process 'GoogleUpdate.exe' - '56' Module(s) have been scanned
Scan process 'avguard.exe' - '118' Module(s) have been scanned
Scan process 'CertifiedBrowserService.exe' - '65' Module(s) have been scanned
Scan process 'RzKLService.exe' - '25' Module(s) have been scanned
Scan process 'PSIA.exe' - '84' Module(s) have been scanned
Scan process 'StarWindServiceAE.exe' - '41' Module(s) have been scanned
Scan process 'svchost.exe' - '38' Module(s) have been scanned
Scan process 'WLIDSVC.EXE' - '75' Module(s) have been scanned
Scan process 'WLIDSvcM.exe' - '17' Module(s) have been scanned
Scan process 'nvtray.exe' - '52' Module(s) have been scanned
Scan process 'avshadow.exe' - '29' Module(s) have been scanned
Scan process 'sua.exe' - '23' Module(s) have been scanned
Scan process 'svchost.exe' - '37' Module(s) have been scanned
Scan process 'WUDFHost.exe' - '34' Module(s) have been scanned
Scan process 'Monitor.exe' - '30' Module(s) have been scanned
Scan process 'BJMYPRT.EXE' - '26' Module(s) have been scanned
Scan process 'psi_tray.exe' - '27' Module(s) have been scanned
Scan process 'VDeck.exe' - '56' Module(s) have been scanned
Scan process 'CNSEMAIN.EXE' - '71' Module(s) have been scanned
Scan process 'avgnt.exe' - '97' Module(s) have been scanned
Scan process 'PDFVPrinter.exe' - '57' Module(s) have been scanned
Scan process 'SearchIndexer.exe' - '54' Module(s) have been scanned
Scan process 'splwow64.exe' - '35' Module(s) have been scanned
Scan process 'wmpnetwk.exe' - '127' Module(s) have been scanned
Scan process 'svchost.exe' - '61' Module(s) have been scanned
Scan process 'hamachi-2.exe' - '69' Module(s) have been scanned
Scan process 'LMIGuardianSvc.exe' - '42' Module(s) have been scanned
Scan process 'svchost.exe' - '60' Module(s) have been scanned
Scan process 'DllHost.exe' - '45' Module(s) have been scanned
Scan process 'chrome.exe' - '113' Module(s) have been scanned
Scan process 'chrome.exe' - '76' Module(s) have been scanned
Scan process 'chrome.exe' - '52' Module(s) have been scanned
Scan process 'chrome.exe' - '52' Module(s) have been scanned
Scan process 'chrome.exe' - '52' Module(s) have been scanned
Scan process 'chrome.exe' - '52' Module(s) have been scanned
Scan process 'chrome.exe' - '52' Module(s) have been scanned
Scan process 'chrome.exe' - '52' Module(s) have been scanned
Scan process 'chrome.exe' - '52' Module(s) have been scanned
Scan process 'chrome.exe' - '52' Module(s) have been scanned
Scan process 'chrome.exe' - '52' Module(s) have been scanned
Scan process 'chrome.exe' - '52' Module(s) have been scanned
Scan process 'chrome.exe' - '52' Module(s) have been scanned
Scan process 'avscan.exe' - '115' Module(s) have been scanned
Scan process 'vssvc.exe' - '47' Module(s) have been scanned
Scan process 'svchost.exe' - '34' Module(s) have been scanned
Scan process 'chrome.exe' - '52' Module(s) have been scanned
Scan process 'SearchProtocolHost.exe' - '29' Module(s) have been scanned
Scan process 'SearchFilterHost.exe' - '27' Module(s) have been scanned
Scan process 'smss.exe' - '2' Module(s) have been scanned
Scan process 'csrss.exe' - '18' Module(s) have been scanned
Scan process 'wininit.exe' - '26' Module(s) have been scanned
Scan process 'csrss.exe' - '16' Module(s) have been scanned
Scan process 'services.exe' - '33' Module(s) have been scanned
Scan process 'lsass.exe' - '73' Module(s) have been scanned
Scan process 'lsm.exe' - '16' Module(s) have been scanned
Scan process 'winlogon.exe' - '31' Module(s) have been scanned

Starting to scan executable files (registry):
The registry was scanned ( '8395' files ).


Starting the file scan:

Begin scan in 'C:\' <Windows>
C:\FRST\Quarantine\C\Users\Vojta\Desktop\FRSTLauncher (2).exe.xBAD
[DETECTION] Contains recognition pattern of the DR/Delphi.Gen dropper
[0] Archive type: RSRC
--> C:\Program Files (x86)\The KMPlayer\KMPlayer.exe
[1] Archive type: RSRC
--> C:\Users\Vojta\AppData\Local\Temp\tmp6B60.tmp.exe
[2] Archive type: NETRSRC
--> C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20140720-174344-69907D14\00000005-5D2DF205
[3] Archive type: NETRSRC
--> Object
[DETECTION] Contains virus patterns of Adware ADWARE/AgentCV.A.14373
[WARNING] Infected files in archives cannot be repaired
C:\Users\Vojta\AppData\Local\Temp\tmp6B60.tmp.exe
[DETECTION] Contains virus patterns of Adware ADWARE/AgentCV.A.14373

Beginning disinfection:
C:\Users\Vojta\AppData\Local\Temp\tmp6B60.tmp.exe
[DETECTION] Contains virus patterns of Adware ADWARE/AgentCV.A.14373
[NOTE] The file was moved to the quarantine directory under the name '51cab469.qua'!
C:\FRST\Quarantine\C\Users\Vojta\Desktop\FRSTLauncher (2).exe.xBAD
[DETECTION] Contains recognition pattern of the DR/Delphi.Gen dropper
[NOTE] The file was moved to the quarantine directory under the name '497e9bb3.qua'!


End of the scan: 20. července 2014 21:32
Used time: 3:48:06 Hour(s)

The scan has been done completely.

47584 Scanned directories
1704525 Files were scanned
3 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
0 Files were deleted
0 Viruses and unwanted programs were repaired
2 Files were moved to quarantine
0 Files were renamed
0 Files cannot be scanned
1704522 Files not concerned
11973 Archives were scanned
1 Warnings
3 Notes
1325275 Objects were scanned with rootkit scan
1 Hidden objects were found

[vyosek]

Nic vazneho, uklidime

T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

[Pixe]

Provedeno, děkuji.