vracejici se havet

[Rudy]

Především ADWCleaner nemazal. Zapoměl jste kliknout na >Clean<.

[laserd]

Provedl jsem adw. Hned po restaru jsem adw provedl znovu a porad je to tam. Prikladam oba logy.

# AdwCleaner v5.022 - Logfile created 27/11/2015 at 20:44:35
# Updated 22/11/2015 by Xplode
# Database : 2015-11-22.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Natálka - NATALKA-PC
# Running from : C:\Users\Natálka\Downloads\adwcleaner_5.022.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco

***** [ Files ] *****

[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_fcfenmboojpjinhpgggodefccipikbpd_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_fcfenmboojpjinhpgggodefccipikbpd_0.localstorage-journal

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****

[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... XX5TH0ETPN
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : chfdnecihphmhljaaejmgoiahnihplgn
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : dgpdioedihjhncjafcpgbbjdpbbkikmi
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : fcfenmboojpjinhpgggodefccipikbpd
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : oadboiipflhobonjjffjbfekfjcgkhco

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C7].txt - [2427 bytes] ##########



# AdwCleaner v5.022 - Logfile created 27/11/2015 at 20:56:45
# Updated 22/11/2015 by Xplode
# Database : 2015-11-22.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Natálka - NATALKA-PC
# Running from : C:\Users\Natálka\Desktop\Nová složka\adwcleaner_5.022.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco

***** [ Files ] *****


***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****

[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... XX5TH0ETPN
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : chfdnecihphmhljaaejmgoiahnihplgn
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : dgpdioedihjhncjafcpgbbjdpbbkikmi
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : fcfenmboojpjinhpgggodefccipikbpd
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : oadboiipflhobonjjffjbfekfjcgkhco

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C8].txt - [2105 bytes] ##########

[Rudy]

Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

[laserd]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 27.11.2015
Čas skenování: 22:52
Protokol:
Správce: Ano

Verze: 2.2.0.1024
Databáze malwaru: v2015.11.27.04
Databáze rootkitů: v2015.11.26.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Natálka

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 450267
Uplynulý čas: 45 min, 46 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 5
PUP.Optional.SearchFairy, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{27CF82B1-E1D2-4F9B-976E-62095A52BA4A}, , [fc049fe4206b62d4a2f94501cd3556aa],
PUP.Optional.SearchFairy, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{27CF82B1-E1D2-4F9B-976E-62095A52BA4A}, , [fc049fe4206b62d4a2f94501cd3556aa],
PUP.Optional.Bandoo.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{45688B20-2213-4508-A317-8ECA0493D2C0}, , [f60aa2e1ddae73c3ec92668627dcbb45],
PUP.Optional.PCSpeedUp, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\PCSUUCDRV, , [14ec4c37ff8c8caa3488e1b6ff0433cd],
PUP.Optional.DataMngr.AppFlsh, HKU\S-1-5-21-1906600563-3070068863-906702074-1000\SOFTWARE\Datamngr, , [7c84770c97f42511583d896359aa3bc5],

Hodnoty registru: 7
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\CLASSES\.XHTML\OPENWITHPROGIDS|CRSBRWSHTML, , [ec14b0d3c5c67abc77cdb03238cbd22e],
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\CLASSES\WOW6432NODE\.XHTML\OPENWITHPROGIDS|CRSBRWSHTML, , [cf31c6bdeba015212a1ab42e976c847c],
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\CLASSES\.XHTML\OPENWITHPROGIDS|CRSBRWSHTML, , [4bb58bf89eeda78f6cd8d60ccc37728e],
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS, Crossbrowse, , [669a1b68bccf72c4242ab2c822e132ce]
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS|StubPath, "C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level, , [ea16e89b3c4f1224311da5d5ed164bb5]
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS|Localized Name, Crossbrowse, , [e7192c574645da5c8fbf136717ec41bf]
PUP.Optional.Bandoo.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{45688B20-2213-4508-A317-8ECA0493D2C0}|AppPath, C:\PROGRA~2\SEARCH~2\Datamngr\ToolBar, , [f60aa2e1ddae73c3ec92668627dcbb45]

Data registru: 1
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Dobré: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Špatné: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),,[a858f58e365586b081a93533b84c34cc]

Složky: 13
PUP.Optional.ConduitTB.Gen, C:\Users\Natálka\AppData\Local\CRE, , [c73988fb652639fde68b2675659de61a],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\userCode, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\icons, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\icons\actions, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\api, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\popupResource, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.DataMngr.AppFlsh, C:\Users\Natálka\AppData\LocalLow\DataMngr, , [d52b1073eaa10c2a9083266fc53d8c74],

Soubory: 113
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\fakhrujepe4GONdL3WM.exe, , [639db0d3e1aaf73f0a3ccc60926e9769],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\yxeJBbd.exe, , [9f61196ab5d683b36297f73145bc7a86],
PUP.Optional.Nova, C:\Program Files (x86)\53e9fc39-a9d3-410f-891f-d4dcfe244e5c\a625961e-8a88-4dcb-8953-6d303071dc56.dll, , [e0206d160e7d82b4481bb973b54ce61a],
PUP.Optional.CrossRider, C:\Program Files (x86)\53e9fc39-a9d3-410f-891f-d4dcfe244e5c\b3d8b062-acfa-4d40-99ca-ff3ae40f2a4c.dll, , [30d0afd464275ed82c9939ec31d0bb45],
PUP.Optional.CrossRider, C:\Program Files (x86)\Ashampoo\53e9fc39-a9d3-410f-891f-d4dcfe244e5c.dll, , [31cf305398f30a2c8e378e97e71a718f],
PUP.Optional.Nova, C:\Program Files (x86)\Ashampoo\638c51e5-43db-4dcf-b201-2a592284eb35.dll, , [ff01c7bcc7c460d682e181abd0317a86],
PUP.Optional.BitCoinMiner, C:\Windows\SysWOW64\acumncxxmbg.exe, , [46baef94791276c0e8f72bd169983fc1],
Trojan.BitCoinMiner, C:\Windows\SysWOW64\dcgmncxxmbg.exe, , [17e9e2a13952dd5941c06f8e748d1ae6],
PUP.Optional.OpenCandy, C:\Users\Natálka\Downloads\KMPlayer_EN_3.1.0.0.exe, , [867a295a335856e002e1c0bf848056aa],
PUP.Optional.ScamLotto, C:\Users\Natálka\Downloads\GotClip_Setup (1).exe, , [ee12592a563531058a5b6df302ff4eb2],
PUP.Optional.ScamLotto, C:\Users\Natálka\Downloads\GotClip_Setup.exe, , [5ba5572c0c7f43f30fd6a7b950b18878],
PUP.Optional.Bundler, C:\Users\Natálka\Downloads\hamachi-lista-centrumcz.exe, , [f30d146fb3d805312b1f6723e41dd12f],
PUP.Optional.OpenCandy, C:\Users\Natálka\Downloads\DAEMONToolsUltra300-0309.exe, , [15eb770c8a01ed49d50e1a65f014827e],
PUP.Optional.PCSpeedUp, C:\Users\Natálka\Downloads\pcspeedup_ppi_1926_installer_ (1).exe, , [14ec295af29995a1307dfc30ec15728e],
PUP.Optional.PCSpeedUp, C:\Users\Natálka\Downloads\pcspeedup_ppi_1926_installer_.exe, , [b54bd3b0c9c23ff79d102dff9170cf31],
PUP.Optional.OpenCandy, C:\Users\Natálka\Downloads\DTLite4451-0236.exe, , [d22eb7ccb4d73105a142b4cbb2528878],
PUP.Optional.MindSpark, C:\Users\Natálka\Downloads\EliteUnzipSetup.EliteUnzip_aa.gopocncendemolgifaollkommlfpagmg.ch.exe, , [32ce5c2735560d297dca612c788c12ee],
PUP.Optional.Amonetize, C:\Users\Natálka\Downloads\Setup_Tool_Downloader__3687_i1695995521_il612294.exe, , [14ec0e75bbd0b0866d9953fe34cd60a0],
PUP.Optional.Amonetize, C:\Users\Natálka\Downloads\Star Stable Hack Tool Downloader.rar, , [b947a8db02894de99e89ea7fd829ad53],
PUP.Optional.ConduitTB.Gen, C:\Users\Natálka\AppData\Local\CRE\edfohacdfdemjkeejihknkmjkabndgkg.crx, , [c73988fb652639fde68b2675659de61a],
PUP.Optional.SearchFairy, C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\8j0wabur.default\extensions\{7CBBC4B3-C5EB-4b7e-99A5-6649B9D257A7}.xpi, , [619f86fd068556e023d3148aa162ec14],
PUP.Optional.SearchFairy, C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\rndbr9gj.default\extensions\{7CBBC4B3-C5EB-4b7e-99A5-6649B9D257A7}.xpi, , [18e8add6f59673c3787e227c04ff1ee2],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\background.html, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\chromeCoreFilesIndex.txt, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\manifest.json, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\popup.html, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\Settings.json, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\manifest.xml, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins.json, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\273.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\102.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\104.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\119.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\13.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\14.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\17.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\178.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\179.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\180.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\184.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\19.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\195.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\200.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\220.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\223.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\231.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\232.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\234.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\242.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\246.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\252.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\253.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\262.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\263.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\281.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\288.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\311.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\335.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\339.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\345.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\354.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\356.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\376.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\379.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\380.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\385.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\390.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\391.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\4.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\419.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\424.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\47.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\64.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\7.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\78.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\80.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\9.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\91.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\plugins\97.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\userCode\background.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\extensionData\userCode\extension.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\icons\icon128.png, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\icons\icon16.png, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\icons\icon48.png, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\icons\actions\1.png, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\1cfa417af615ffb56bfb88a1da361ea9.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\e6b54d47ff973baf1a4fbd6c884e4362.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\main.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\api\40827cbbc3b1418be432c381bede8f7d.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\api\6727de0f5aa0cc843b2fd6c93af54257.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\api\6e921c80e97721ecd4de30f6c0735f8b.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\api\848332a84d8d0abd69bec4f80d9a36ad.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\api\cd1281fdb311e7fe39b879e31ccca18d.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\api\pageAction.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\0b39ba77a5fd8a8c5e9d362d22274898.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\17111f8a94ef3e1da4ed947d50356527.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\2e134f8531a32efec150b288322c1b97.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\4ec920fca0fd48c4d3b78f702d7a92a5.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\5d10df644e66d2a56e1dd07785c5568d.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\698a10e64bf02de8e6e4bb0ace228d27.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\96d52fc2e960c8fa2fbb9e7ce9d29d99.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\9d0b31ca7034441cb7a7e7d88775b64a.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\abbb9380e674fdee1c300afdae16cfa4.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\ad7e1089839cfffd10196b6bea661d01.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\app_api.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\bcb06ca789cec41452fab75434147c1c.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\bf112669461e7dc60d8bc9bc827328d2.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\e906874bc8fe09a06433b01334b26217.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\e92f8ab184981a55d522f0d7f7a4f62b.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\installer.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\popupResource\newPopup.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.CrossRider, C:\Users\Natálka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.111_0\js\lib\popupResource\popup.js, , [946c5a29c4c7b68004765b3844bef20e],
PUP.Optional.DataMngr.AppFlsh, C:\Users\Natálka\AppData\LocalLow\DataMngr\{7CA1F051-A4FB-4143-B263-02B41E571EED}, , [d52b1073eaa10c2a9083266fc53d8c74],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[Rudy]

Nalezené položky smažte.

[laserd]

smazano. Hned po restartu jsem udelal ccleaner a adw. Porad to tam je. Jeste je divny ze po tom restartu kdyz jsem dal ccleaner tak to hlasilo ze je chrome spusten a musi se ukoncit a potom ze ukoncovani trva moc dlouho a jestli chci vynutit ukonceni.

# AdwCleaner v5.022 - Logfile created 28/11/2015 at 11:52:51
# Updated 22/11/2015 by Xplode
# Database : 2015-11-22.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Natálka - NATALKA-PC
# Running from : C:\Users\Natálka\Desktop\Nová složka\adwcleaner_5.022.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco

***** [ Files ] *****


***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****

[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : delta-homes
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... XX5TH0ETPN
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : chfdnecihphmhljaaejmgoiahnihplgn
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : dgpdioedihjhncjafcpgbbjdpbbkikmi
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : fcfenmboojpjinhpgggodefccipikbpd
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : oadboiipflhobonjjffjbfekfjcgkhco

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C9].txt - [2225 bytes] ##########

[Rudy]

Chrome zazálohujte pomocí Chrome backup: http://www.stahuj.centrum.cz/internet_a ... me-backup/ . Pak Chrome odinstalujte vč. jeho profilu. Znovu nainstalujte a zpět ze zálohy nakopírujte pouze záložky a hesla.

[laserd]

To jsme uz delali ale bez vysledku. Mam to zkusit znovu?

[Rudy]

Nemusíte. Oni to mohou být nějaké věci z rozšíření prohlížeče, která se ADW nelíbí. Zkuste je povypínat, nebo odinstalovat. Pokud ale neovlivňují nějak chod PC, asi bych je neřešil.

[laserd]

Dobrý den. Dnes jsem zjistil ze pocitac je znovu pomaly a nejde zadny prohlizec. Zrejme opet problem s proxy nebo dns. Jinak skype, aktualizace, vsechno jde.
Omlouvam se ale vlozil jsem to nekam spatne. Minuli rok jsme vse vyresili a ted je to zpet.

[Rudy]

Tak holt znovu. Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

[laserd]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-06-2016 02
Ran by Natálka (administrator) on NATALKA-PC (27-06-2016 19:36:44)
Running from C:\Users\Natálka\Desktop
Loaded Profiles: Natálka (Available Profiles: UpdatusUser & Natálka & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(© 2015 Microsoft Corporation) C:\Users\Natálka\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Spotify Ltd) C:\Users\Natálka\AppData\Roaming\Spotify\SpotifyWebHelper.exe
() C:\Windows\SysWOW64\Codecs\TrayMenu.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
() C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(ASUS) C:\Windows\AsScrPro.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Facebook Inc.) C:\Users\Natálka\AppData\Local\Facebook\Update\FacebookUpdate.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\Natálka\Desktop\FRSTLauncher.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\Setup\instup.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1419008 2016-06-09] (Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [617120 2011-03-13] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379552 2011-03-13] (Atheros Commnucations)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16418560 2016-06-09] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-05-02] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992 2010-08-17] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-07] (ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536 2010-09-24] ()
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6108752 2015-11-13] (AVAST Software)
HKLM-x32\...\Run: [ASUS Screen Saver Protector] => C:\Windows\AsScrPro.exe
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5889824 2015-07-28] (IObit)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [186640 2016-05-18] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [594992 2016-01-29] (Oracle Corporation)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2087264 2014-09-11] (Wondershare)
HKLM-x32\...\Run: [Codec Settings UAC Manager] => C:\Windows\SysWOW64\Codecs\CodecUACManager.exe [60416 2015-09-04] ()
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2016-04-05] (LogMeIn Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit)
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\Run: [GoogleChromeAutoLaunch_C9105BC79D5B215260CF3DEF3F985202] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [941720 2016-06-04] (Google Inc.)
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\Run: [BingSvc] => C:\Users\Natálka\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-12-01] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53123712 2016-05-17] (Skype Technologies S.A.)
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\Run: [C] => C:\Windows\system32\GroupPolicy\Machine\Registry.pol [750 2016-03-05] ()
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\Run: [Spotify Web Helper] => C:\Users\Natálka\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1525360 2016-04-15] (Spotify Ltd)
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\Run: [Spotify] => C:\Users\Natálka\AppData\Roaming\Spotify\Spotify.exe [6855280 2016-04-15] (Spotify Ltd)
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\MountPoints2: H - H:\PXRoute.exe
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\MountPoints2: I - I:\PXRoute.exe
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\MountPoints2: J - J:\PXRoute.exe
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\MountPoints2: K - K:\PXRoute.exe
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\MountPoints2: {1e6b85fd-e9cd-11e4-a34e-5404a6254a6b} - I:\PXRoute.exe
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\MountPoints2: {1e6b8600-e9cd-11e4-a34e-5404a6254a6b} - J:\PXRoute.exe
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\MountPoints2: {1e6b8603-e9cd-11e4-a34e-5404a6254a6b} - K:\PXRoute.exe
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\MountPoints2: {670658ef-e5f9-11e4-8e6a-5404a6254a6b} - H:\PXRoute.exe
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\MountPoints2: {6fca8da3-3305-11e1-bd51-5404a6254a6b} - F:\Install.exe
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\MountPoints2: {978bf2c8-15a8-11e5-a3d6-5404a6254a6b} - L:\autorun.exe
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\...\MountPoints2: {d8a6858b-1e40-11e5-81c2-5404a6254a6b} - M:\setup.exe
HKU\S-1-5-18\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-05-17] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-05-17] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-05-17] (Google)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-07-20] (AVAST Software)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackTrayMenu.lnk [2016-03-20]
ShortcutTarget: CodecPackTrayMenu.lnk -> C:\Windows\SysWOW64\Codecs\TrayMenu.exe ()
GroupPolicy: Restriction - Chrome <======= ATTENTION
GroupPolicy-x32: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-1906600563-3070068863-906702074-1002] => 172.16.1.142:8080
Tcpip\..\Interfaces\{9DC98FF8-CDC9-4EE0-8173-0BF04B5A7D3C}: [NameServer] 192.168.1.254 192.168.0.1
Tcpip\..\Interfaces\{9DC98FF8-CDC9-4EE0-8173-0BF04B5A7D3C}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://smartsputnik.ru/?ri=1&uid=85edab7e3a5ffe166d4c3220e891b7d2&q={searchTerms}
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=SK2M&ocid=SK2MDHP&osmkt=en-ww
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://www.google.com/?trackid=sp-006
HKU\S-1-5-21-1906600563-3070068863-906702074-1002\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://smartsputnik.ru/?ri=1&uid=85edab7e3a5ffe166d4c3220e891b7d2&q={searchTerms}
URLSearchHook: [S-1-5-21-1906600563-3070068863-906702074-1002] ATTENTION => Default URLSearchHook is missing
URLSearchHook: HKU\S-1-5-21-1906600563-3070068863-906702074-1002 - (No Name) - {0633EE93-D776-472f-A0FF-E1416B8B2E3D} - No File
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... lz=1I7ASUT
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-1906600563-3070068863-906702074-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3C} URL = hxxp://smartsputnik.ru/?ri=1&uid=85edab7e3a5ffe166d4c3220e891b7d2&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1906600563-3070068863-906702074-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=SK2MDF&PC=SK2M ... -SearchBox
SearchScopes: HKU\S-1-5-21-1906600563-3070068863-906702074-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3C} URL = hxxp://smartsputnik.ru/?ri=1&uid=85edab7e3a5ffe166d4c3220e891b7d2&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1906600563-3070068863-906702074-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3D} URL = hxxp://smartsputnik.ru/?ri=1&uid=85edab7e3a5ffe166d4c3220e891b7d2&q=
SearchScopes: HKU\S-1-5-21-1906600563-3070068863-906702074-1002 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-1906600563-3070068863-906702074-1002 -> {54928D73-7F8C-4BBD-8EB9-9105ACBBFFFB} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-1906600563-3070068863-906702074-1002 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-1906600563-3070068863-906702074-1002 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-20] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-02-07] (Oracle Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-03-13] (Atheros Commnucations)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-20] (AVAST Software)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-07] (Oracle Corporation)
DPF: HKLM-x32 {26CF0ECA-50B9-411D-BA37-86BD6AD53382} hxxps://www.starstable.com/plugin/PXStudioRuntimeAX.cab
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\4ojy3lw5.default-1441434506023
FF DefaultSearchEngine: Google
FF SelectedSearchEngine: Google
FF Homepage: about:blank
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-15] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-15] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1223183.dll [No File]
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-06-26] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-07] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nprotect.com/keycrypt -> C:\Windows\system32\npkfxmp.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2013-09-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1906600563-3070068863-906702074-1002: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Natálka\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-1906600563-3070068863-906702074-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Natálka\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-25] (Unity Technologies ApS)
FF Extension: Star Stable Online - C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\4ojy3lw5.default-1441434506023\Extensions\plugin@starstable.com [2015-09-05] [not signed]
FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-05-25]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-10]

Chrome:
=======
CHR HomePage: Default -> mysearch.avg.com/?rvt=1
CHR StartupUrls: Default -> "hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN","hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... seznam.cz/"
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-21]
CHR Extension: (Dokumenty Google) - C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-21]
CHR Extension: (Disk Google) - C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-21]
CHR Extension: (YouTube) - C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-21]
CHR Extension: (Adblock Plus) - C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-06-10]
CHR Extension: (AVG Secure Search) - C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2015-12-23]
CHR Extension: (Vyhledávání Google) - C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-21]
CHR Extension: (Tabulky Google) - C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-21]
CHR Extension: (Dokumenty Google offline) - C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (Avast Online Security) - C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-04-13]
CHR Extension: (Mapy Google) - C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2015-11-21]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2015-11-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Google Chrome to Phone Extension) - C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco [2015-12-09]
CHR Extension: (Gmail) - C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-21]
CHR HKU\S-1-5-21-1906600563-3070068863-906702074-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-20]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-05-25]
StartMenuInternet: Google Chrome.NIEBI6IFSULBCZDUVM7KEBW3G4 - C:\Users\Natálka\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AbAdminService; C:\Program Files (x86)\ToolbarTerminator\AbAdminService.exe [30984 2014-10-21] (Ascora GmbH)
R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [821024 2015-08-05] (IObit)
R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [138400 2011-03-13] (Atheros) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [74912 2011-03-13] (Atheros Commnucations) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-07-20] (AVAST Software)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1080592 2016-05-18] (AVG Technologies CZ, s.r.o.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1364096 2016-05-25] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Microsoft Corporation)
S3 Disc Soft Ultra Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [1378576 2014-12-09] (Disc Soft Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1165368 2016-05-02] (NVIDIA Corporation)
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [882464 2015-07-17] (IObit)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2934048 2015-10-09] (IObit)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2016-04-05] (LogMeIn, Inc.)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-05-02] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-05-02] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-05-02] (NVIDIA Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S4 wlcrasvc; C:\Program Files (x86)\Windows Live\Mesh\wlcrasvc.exe [57184 2010-09-22] (Microsoft Corporation)
S2 wlidsvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2286976 2010-09-21] (Microsoft Corp.)
S2 TuneUp.UtilitiesSvc; no ImagePath
S2 WtuSystemSupport; no ImagePath

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-07-20] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-07-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-07-20] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-07-20] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-13] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-13] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150160 2015-07-20] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-07-20] (AVAST Software)
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [310728 2016-03-05] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [279616 2011-12-30] (DT Soft Ltd)
R3 dtultrascsibus; C:\Windows\System32\DRIVERS\dtultrascsibus.sys [30352 2015-01-04] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2015-03-25] (IObit)
S3 HmseUsb; C:\Windows\System32\DRIVERS\HmseUsb.sys [40184 2010-07-23] (Renesas Technology Corp.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-01-07] (REALiX(tm))
S3 InputFilter_Hid_FlexDef2b; C:\Windows\System32\DRIVERS\InputFilter_FlexDef2b.sys [17920 2010-06-19] (Siliten)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [42696 2011-12-30] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-05-02] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2015-03-25] (IObit.com)
R3 RTSUER; C:\Windows\System32\Drivers\RtsUer.sys [413912 2016-06-09] (Realsil Semiconductor Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2013-04-29] () [File not signed]
S3 TuneUpUtilitiesDrv; no ImagePath
R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2015-03-25] (IObit.com)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-27 19:36 - 2016-06-27 19:40 - 00032829 _____ C:\Users\Natálka\Desktop\FRST.txt
2016-06-27 19:36 - 2016-06-27 19:36 - 00000000 ____D C:\FRST
2016-06-27 19:34 - 2016-06-27 19:34 - 00112640 _____ (forum.viry.cz) C:\Users\Natálka\Desktop\FRSTLauncher.exe
2016-06-27 19:30 - 2016-06-27 19:31 - 02389504 _____ (Farbar) C:\Users\Natálka\Desktop\FRST64.exe
2016-06-27 17:59 - 2016-06-27 17:59 - 00013640 _____ C:\Users\Natálka\Documents\cc_20160627_175909.reg
2016-06-14 18:35 - 2016-06-14 18:43 - 367869792 _____ C:\Users\Natálka\Downloads\Photoshop_12_LS1.zip.part
2016-06-14 16:47 - 2016-06-14 16:47 - 00374784 _____ C:\Users\Natálka\Downloads\Star Stable Hack Downloader.rar
2016-06-12 11:43 - 2016-06-12 12:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-06-11 16:46 - 2016-06-11 16:46 - 00001339 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-06-11 16:31 - 2016-06-11 16:31 - 00000000 ____D C:\Users\Natálka\AppData\Local\NVIDIA Corporation
2016-06-11 16:28 - 2016-06-11 16:54 - 00000000 ____D C:\Users\Natálka\AppData\Local\NVIDIA
2016-06-11 16:28 - 2016-06-11 16:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-06-11 16:28 - 2016-05-02 07:39 - 01377800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-06-11 16:28 - 2016-05-02 07:39 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-06-11 16:28 - 2016-05-02 07:38 - 01767944 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-06-11 16:28 - 2016-05-02 07:38 - 01756608 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-06-11 16:28 - 2016-05-02 07:38 - 00112032 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-06-11 16:25 - 2016-06-11 16:26 - 00000000 ____D C:\ProgramData\Package Cache
2016-06-11 16:22 - 2016-04-14 07:38 - 00113216 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-06-11 16:22 - 2016-04-14 07:38 - 00102976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-06-11 16:22 - 2016-04-14 07:38 - 00056384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-06-11 16:19 - 2016-06-11 16:20 - 45000176 _____ (NVIDIA Corporation) C:\Users\Natálka\Downloads\GeForce_Experience_v2.11.3.5(1).exe
2016-06-10 16:04 - 2016-06-10 16:04 - 00000000 ____D C:\Users\Natálka\AppData\Local\{5328FAD3-773C-4B4F-AA73-F65F1EABD972}
2016-06-10 13:49 - 2016-06-10 13:50 - 45000176 _____ (NVIDIA Corporation) C:\Users\Natálka\Downloads\GeForce_Experience_v2.11.3.5.exe
2016-06-09 18:11 - 2016-06-09 18:11 - 72203792 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2016-06-09 18:11 - 2016-06-09 18:11 - 14057256 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 13120760 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 12986528 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 07172920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 06343320 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV3apo.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 05777704 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 05576400 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-06-09 18:11 - 2016-06-09 18:11 - 05289952 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 04803840 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-06-09 18:11 - 2016-06-09 18:11 - 03299832 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 03283248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 03198720 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 03152591 _____ C:\Windows\system32\Drivers\rtkSSTsetting.dat
2016-06-09 18:11 - 2016-06-09 18:11 - 03081808 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 02894976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-06-09 18:11 - 2016-06-09 18:11 - 02714568 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 02190992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 02110600 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 02050184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 02049664 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 01943624 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 01435152 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 01382240 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 01356512 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 01334384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 01330072 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 01022872 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 01003864 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00998032 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00965032 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00931624 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00927424 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00923752 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00888480 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00873472 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00716104 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00689888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00677680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00596120 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00589080 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.DLL
2016-06-09 18:11 - 2016-06-09 18:11 - 00532384 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00467168 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00450128 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00447720 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00387320 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00381416 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00341160 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00341160 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00258504 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00231920 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00224264 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaemaxapo64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00221976 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00214840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00209536 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00192992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00172584 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00166208 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00158704 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00151792 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00134208 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00110984 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00090920 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00088328 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00084624 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00083632 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00075544 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2016-06-09 18:11 - 2016-06-09 18:11 - 00023704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-06-09 18:10 - 2016-06-09 18:11 - 02823280 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 10521552 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 07096192 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 06264640 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 05338936 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 03282032 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 02437144 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 01965816 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 01959608 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 01780624 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 01601952 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 01591064 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 01508936 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 01421104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 01211840 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 01186168 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 01164336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 01060504 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00743968 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00727440 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00708320 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00678192 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00618192 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00574760 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00514528 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00504312 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00500560 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00471336 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00445408 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00441272 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00428232 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00416512 _____ (Harman) C:\Windows\system32\HMUI.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00370840 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00366128 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00362056 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00360352 _____ (Harman) C:\Windows\system32\HMClariFi.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00330568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00327464 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00310424 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00272720 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00253904 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00253872 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00252880 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00203848 _____ (Harman) C:\Windows\system32\HMHVS.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00190944 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00190944 _____ (Harman) C:\Windows\system32\HMEQ.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00179608 _____ (Harman) C:\Windows\system32\HMLimiter.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00122328 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00118600 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00105312 _____ C:\Windows\system32\audioLibVc.dll
2016-06-09 18:10 - 2016-06-09 18:10 - 00065792 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
2016-06-09 18:08 - 2016-06-09 18:08 - 04330200 _____ (TODO: <Company name>) C:\Windows\RtCRU64.exe
2016-06-09 18:08 - 2016-06-09 18:08 - 01027840 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2016-06-09 18:08 - 2016-06-09 18:08 - 00413912 _____ (Realsil Semiconductor Corporation) C:\Windows\system32\Drivers\RtsUer.sys
2016-06-09 18:08 - 2016-06-09 18:08 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2016-06-09 18:04 - 2016-06-09 18:05 - 04162560 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys
2016-05-29 15:47 - 2016-05-29 15:47 - 00000857 _____ C:\Users\Natálka\AppData\Local\recently-used.xbel

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-27 19:40 - 2015-02-05 19:59 - 00000000 ____D C:\Users\Natálka\AppData\Roaming\Skype
2016-06-27 19:33 - 2009-07-14 06:45 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-27 19:33 - 2009-07-14 06:45 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-27 19:25 - 2013-04-24 16:55 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-06-27 19:04 - 2015-12-02 13:29 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-27 18:20 - 2012-06-14 15:49 - 00000000 ____D C:\Users\Natálka\AppData\Local\ElevatedDiagnostics
2016-06-27 18:20 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2016-06-27 18:02 - 2015-07-09 12:13 - 00660480 ___SH C:\Users\Natálka\Downloads\Thumbs.db
2016-06-27 18:02 - 2015-01-23 19:47 - 00170496 ___SH C:\Users\Natálka\Documents\Thumbs.db
2016-06-27 17:58 - 2011-12-30 20:03 - 00000000 ____D C:\Users\Natálka\AppData\Local\CrashDumps
2016-06-27 17:53 - 2015-09-25 13:24 - 00002143 _____ C:\Users\Public\Desktop\Advanced SystemCare 8.lnk
2016-06-27 17:52 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-06-27 17:51 - 2016-01-15 19:59 - 00000000 ____D C:\Users\Natálka\AppData\Local\LogMeIn Hamachi
2016-06-27 17:41 - 2015-12-02 13:29 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-27 17:34 - 2012-07-05 20:59 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-06-27 17:33 - 2015-10-06 15:02 - 00000000 ____D C:\Program Files (x86)\Opera
2016-06-15 16:45 - 2015-09-25 15:15 - 00000000 ____D C:\Users\Public\StarStableOnline
2016-06-14 14:02 - 2015-02-05 19:59 - 00000000 ____D C:\ProgramData\Skype
2016-06-14 14:01 - 2015-02-05 19:59 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-06-12 12:53 - 2013-07-17 07:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-06-12 08:40 - 2016-04-15 21:40 - 00000000 ____D C:\Users\Natálka\AppData\Roaming\Spotify
2016-06-12 08:40 - 2015-11-15 20:07 - 00003250 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
2016-06-12 08:40 - 2014-03-18 12:53 - 00002882 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Natálka)
2016-06-12 08:38 - 2016-04-15 21:41 - 00000000 ____D C:\Users\Natálka\AppData\Local\Spotify
2016-06-12 08:37 - 2011-10-24 17:25 - 00045056 _____ C:\Windows\system32\acovcnt.exe
2016-06-12 08:36 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-11 21:56 - 2013-06-02 17:28 - 00000000 ____D C:\Users\Natálka\AppData\Roaming\.minecraft
2016-06-11 16:54 - 2011-10-24 17:11 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-06-11 16:28 - 2011-10-24 17:11 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-06-11 16:28 - 2011-10-24 17:10 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-06-11 09:17 - 2014-01-15 07:40 - 00000000 ____D C:\ProgramData\ProductData
2016-06-10 13:58 - 2015-11-21 01:43 - 00002157 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-10 13:58 - 2015-11-21 01:43 - 00002145 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-09 18:33 - 2015-11-15 20:07 - 00002112 _____ C:\Users\Public\Desktop\Driver Booster 3.lnk
2016-06-09 18:23 - 2015-11-15 20:25 - 00003180 _____ C:\Windows\System32\Tasks\RtHDVBg_ListenToDevice
2016-06-09 18:23 - 2015-11-15 20:25 - 00003146 _____ C:\Windows\System32\Tasks\RTKCPL
2016-06-09 18:17 - 2015-11-15 20:24 - 00000000 ____D C:\Windows\system32\DAX2
2016-06-09 18:16 - 2011-10-24 17:14 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-06-09 18:08 - 2011-10-24 17:16 - 00116304 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2016-06-09 18:07 - 2011-02-19 07:36 - 00683820 _____ C:\Windows\system32\perfh005.dat
2016-06-09 18:07 - 2011-02-19 07:36 - 00146724 _____ C:\Windows\system32\perfc005.dat
2016-06-09 18:07 - 2009-07-14 07:13 - 01623998 _____ C:\Windows\system32\PerfStringBackup.INI
2016-06-05 17:21 - 2013-05-15 06:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2016-05-29 15:56 - 2015-10-20 16:31 - 00000000 ____D C:\Users\Natálka\.gimp-2.8
2016-05-29 15:47 - 2015-10-20 16:36 - 00000000 ____D C:\Users\Natálka\AppData\Local\gtk-2.0

==================== Files in the root of some directories =======

2015-04-14 18:28 - 2015-04-14 18:28 - 0004387 _____ () C:\Users\Natálka\AppData\Roaming\fakhrujepe4GONdL3WM
2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\Natálka\AppData\Roaming\yxeJBbd
2013-03-06 20:28 - 2016-04-28 15:08 - 0014336 _____ () C:\Users\Natálka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-05-29 15:47 - 2016-05-29 15:47 - 0000857 _____ () C:\Users\Natálka\AppData\Local\recently-used.xbel
2012-07-21 15:56 - 2013-12-26 17:48 - 0000040 ___SH () C:\ProgramData\.zreglib
2015-11-15 20:24 - 2015-11-15 20:24 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2011-04-01 11:21 - 2010-07-07 01:10 - 0131472 _____ () C:\ProgramData\FullRemove.exe
2015-10-06 15:02 - 2015-10-13 10:30 - 0000102 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2011-10-24 17:30 - 2011-10-24 17:30 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2011-10-24 17:29 - 2011-10-24 17:30 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log

Files to move or delete:
====================
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat


Some files in TEMP:
====================
C:\Users\Guest\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: IObit Malware Fighter (Enabled - Up to date) {A751AC20-3B48-5237-898A-78C4436BB78D}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Nat�lka\Desktop" je 2 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync
"C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate
"C:\Users\Nat�lka\AppData\Roaming\Seznam.cz\szninstall.exe" -c [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop
"C:\Users\Nat�lka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Ultra Agent
"C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe" -autorun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update
"C:\Users\Nat�lka\AppData\Local\Google\Update\GoogleUpdate.exe" /c [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OfficeSyncProcess
"C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE
C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce
"C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SonicMasterTray
C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateLBPShortCut
"C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateP2GoShortCut
"C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FancyStart daemon.lnk
C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe -d [x]


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

[Rudy]

Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[laserd]

# AdwCleaner v5.014 - Logfile created 21/10/2015 at 09:16:08
# Updated 18/10/2015 by Xplode
# Database : 2015-10-18.5 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Natálka - NATALKA-PC
# Running from : C:\Users\Natálka\Downloads\adwcleaner_5.014.exe
# Option : Cleaning
# Support : hxxp://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : winzipersvc
[-] Service Deleted : SSFK
[-] Service Deleted : WdsManPro
[-] Service Deleted : vToolbarUpdater18.8.0

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\WinZipper
[-] Folder Deleted : C:\Program Files (x86)\Prompt Downloader
[-] Folder Deleted : C:\Program Files (x86)\SFK
[-] Folder Deleted : C:\Program Files (x86)\CinemaP-1.9cV06.10
[-] Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
[-] Folder Deleted : C:\ProgramData\AVG Secure Search
[-] Folder Deleted : C:\ProgramData\AVG Security Toolbar
[-] Folder Deleted : C:\ProgramData\Partner
[-] Folder Deleted : C:\ProgramData\4WdsManPro4
[-] Folder Deleted : C:\ProgramData\SWdsManProS
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\apn
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\AVG Secure Search
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\globalUpdate
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Crossbrowse
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Prompt Downloader
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\10559
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbmegnmpleoagolcnjnejdacakedpcgd
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahcibalcdehlgcdnoppalnldhbhoklec
[!] Folder Not Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gopocncendemolgifaollkommlfpagmg
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgofoebonkgilehjhdbinahbhfmnpofn
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ledlhidaanehfgkncffffclodigipphl
[!] Folder Not Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi
[-] Folder Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\edfohacdfdemjkeejihknkmjkabndgkg
[-] Folder Deleted : C:\Users\Natálka\AppData\LocalLow\searchquband
[-] Folder Deleted : C:\Users\Natálka\AppData\Roaming\OpenCandy
[-] Folder Deleted : C:\Users\Natálka\AppData\Roaming\WinZipper
[-] Folder Deleted : C:\Users\Natálka\AppData\Roaming\RHEng
[-] Folder Deleted : C:\Users\Natálka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prompt Downloader
[-] Folder Deleted : C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\4ojy3lw5.default-1441434506023\Extensions\ascsurfingprotection@iobit.com
[!] Folder Not Deleted : C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\4ojy3lw5.default-1441434506023\Extensions\ascsurfingprotection@iobit.com
[!] Folder Not Deleted : C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\4ojy3lw5.default-1441434506023\Extensions\ascsurfingprotection@iobit.com
[-] Folder Deleted : C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\4ojy3lw5.default-1441434506023\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[!] Folder Not Deleted : C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\4ojy3lw5.default-1441434506023\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[-] Folder Deleted : C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\4ojy3lw5.default-1441434506023\Extensions\AVJYFVOD75109374@HCDE39471360.com
[-] Folder Deleted : C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\8j0wabur.default\Extensions\Avg@toolbar
[-] Folder Deleted : C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\8j0wabur.default\Extensions\ascsurfingprotection@iobit.com
[!] Folder Not Deleted : C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\8j0wabur.default\Extensions\ascsurfingprotection@iobit.com
[!] Folder Not Deleted : C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\8j0wabur.default\Extensions\ascsurfingprotection@iobit.com
[-] Folder Deleted : C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\rndbr9gj.default\Extensions\ascsurfingprotection@iobit.com
[!] Folder Not Deleted : C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\rndbr9gj.default\Extensions\ascsurfingprotection@iobit.com
[!] Folder Not Deleted : C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\rndbr9gj.default\Extensions\ascsurfingprotection@iobit.com
[-] Folder Deleted : C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\rndbr9gj.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[!] Folder Not Deleted : C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\rndbr9gj.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}

***** [ Files ] *****

[-] File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\delta-homes.xml
[-] File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\mystartsearch.xml
[-] File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml
[-] File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\omniboxes.xml
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chfdnecihphmhljaaejmgoiahnihplgn_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gcncagkkhfoombgbihckkccmkjemhohl_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lkadffjmnaiokkdncgdlecdegajoiemi_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lkadffjmnaiokkdncgdlecdegajoiemi_0.localstorage-journal
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_lkadffjmnaiokkdncgdlecdegajoiemi_0
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lkadffjmnaiokkdncgdlecdegajoiemi
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ahcibalcdehlgcdnoppalnldhbhoklec_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gcncagkkhfoombgbihckkccmkjemhohl_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gopocncendemolgifaollkommlfpagmg_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gopocncendemolgifaollkommlfpagmg_0.localstorage-journal
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kgofoebonkgilehjhdbinahbhfmnpofn_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ledlhidaanehfgkncffffclodigipphl_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lkadffjmnaiokkdncgdlecdegajoiemi_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lkadffjmnaiokkdncgdlecdegajoiemi_0.localstorage-journal
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_lkadffjmnaiokkdncgdlecdegajoiemi_0
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lkadffjmnaiokkdncgdlecdegajoiemi
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_edfohacdfdemjkeejihknkmjkabndgkg_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_edfohacdfdemjkeejihknkmjkabndgkg_0
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\edfohacdfdemjkeejihknkmjkabndgkg
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage-journal
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_hdapp1008-a.akamaihd.net_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_hdapp1008-a.akamaihd.net_0.localstorage-journal
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.webssearches.com_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.webssearches.com_0.localstorage-journal
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.webssearches.com_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.webssearches.com_0.localstorage-journal
[-] File Deleted : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.omniboxes.com_0.localstorage
[-] File Deleted : C:\Users\Natálka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\crossbrowse.lnk
[-] File Deleted : C:\Users\Natálka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\crossbrowse.lnk
[-] File Deleted : C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\8j0wabur.default\searchplugins\avg-secure-search.xml

***** [ DLLs ] *****


***** [ Shortcuts ] *****

[-] Shortcut Disinfected : C:\Users\Public\Desktop\Google Chrome.lnk
[-] Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[-] Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
[-] Shortcut Disinfected : C:\Users\Natálka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder\WarThunder.lnk
[-] Shortcut Disinfected : C:\Users\Natálka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
[-] Shortcut Disinfected : C:\Users\Natálka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[-] Shortcut Disinfected : C:\Users\Natálka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
[-] Shortcut Disinfected : C:\Users\Natálka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk
[-] Shortcut Disinfected : C:\Users\Guest\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk

***** [ Scheduled tasks ] *****

[-] Task Deleted : Crossbrowse
[-] Task Deleted : amiupdaterExd
[-] Task Deleted : amiupdaterExi
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-1-6
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-1-7
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-10_user
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-11
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-3
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-4
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-5
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-5_user
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-6
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-7
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-1-6
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-1-7
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-11
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-3
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-4
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-5
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-6
[-] Task Deleted : 71bbfa69-bede-4f0d-8e5d-9522cee90d29-7

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\SMBarBroker.EXE
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
[-] Key Deleted : HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\WinZipper
[-] Key Deleted : HKLM\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\WinZipper
[-] Key Deleted : HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\WinZipper
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Mediaplayer\Shiminclusionlist\crossbrowse.exe
[-] Key Deleted : HKLM\SOFTWARE\Classes\CRSBRWSHTML
[-] Key Deleted : HKLM\SOFTWARE\Clients\StartMenuInternet\Crossbrowse
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\crossbrowse.exe
[-] Value Deleted : HKLM\SOFTWARE\Classes\.htm\OpenWithProgids [CRSBRWSHTML]
[-] Value Deleted : HKLM\SOFTWARE\Classes\.html\OpenWithProgids [CRSBRWSHTML]
[-] Value Deleted : HKLM\SOFTWARE\RegisteredApplications [Crossbrowse]
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\globalupdate.exe
[-] Key Deleted : HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\WinZipper
[-] Value Deleted : HKLM\SOFTWARE\Classes\.xht\OpenWithProgIDs [CRSBRWSHTML]
[-] Value Deleted : HKLM\SOFTWARE\Classes\.webp\OpenWithProgIDs [CRSBRWSHTML]
[-] Value Deleted : HKLM\SOFTWARE\Classes\.shtml\OpenWithProgIDs [CRSBRWSHTML]
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WdsManPro
[-] Key Deleted : HKLM\SOFTWARE\2549e5e3-7fc0-4d66-bd48-f56528384304
[-] Key Deleted : HKLM\SOFTWARE\d700ad4e-b6e1-41dd-9e9a-01376cc1d95a
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.001
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.7z
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.arj
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.bz2
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.bzip2
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.cab
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.cpio
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.deb
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.dmg
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.fat
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.gz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.gzip
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.hfs
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.iso
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.lha
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.lzh
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.lzma
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.ntfs
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.rar
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.rpm
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.squashfs
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.swm
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tar
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.taz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tbz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tbz2
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tgz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tpz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.txz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.vhd
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.wim
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.xar
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.xz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.z
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.zip
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\nlpindoelpbbhemddgobhijndonccnge
[-] Key Deleted : HKCU\Software\Google\Chrome\Extensions\edfohacdfdemjkeejihknkmjkabndgkg
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\edfohacdfdemjkeejihknkmjkabndgkg
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3A188115-B81B-48F2-A958-F974C8F3F309}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
[-] Key Deleted : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
[-] Key Deleted : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4F622628-7632-4B28-B184-D7BA0CA3273B}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2421}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2421}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKU\.DEFAULT\Software\AVG Secure Search
[-] Key Deleted : HKU\.DEFAULT\Software\Avg Secure Update
[-] Key Deleted : HKU\.DEFAULT\Software\CinemaP-1.9cV06.10-nv
[-] Key Deleted : HKU\.DEFAULT\Software\CinemaP-1.9cV06.10-nv-ie
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[-] Key Deleted : HKCU\Software\Conduit
[-] Key Deleted : HKCU\Software\GlobalUpdate
[-] Key Deleted : HKCU\Software\IGearSettings
[-] Key Deleted : HKCU\Software\InstalledBrowserExtensions
[-] Key Deleted : HKCU\Software\SupHpUISoft
[-] Key Deleted : HKCU\Software\CrossBrowser
[-] Key Deleted : HKCU\Software\Crossbrowse
[-] Key Deleted : HKCU\Software\YorkNewCin
[-] Key Deleted : HKCU\Software\HighDefAction
[-] Key Deleted : HKCU\Software\ArenaHD
[-] Key Deleted : HKCU\Software\Avg Secure Update
[-] Key Deleted : HKCU\Software\Prompt Downloader
[-] Key Deleted : HKCU\Software\CinemaP-1.9cV06.10-nv
[-] Key Deleted : HKCU\Software\CinemaP-1.9cV06.10-nv-ie
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\AppDataLow\SOFTWARE\_CrossriderRegNamePlaceHolder_
[-] Key Deleted : HKLM\SOFTWARE\Conduit
[-] Key Deleted : HKLM\SOFTWARE\delta-homesSoftware
[-] Key Deleted : HKLM\SOFTWARE\GlobalUpdate
[-] Key Deleted : HKLM\SOFTWARE\hdcode
[-] Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Key Deleted : HKLM\SOFTWARE\SupDp
[-] Key Deleted : HKLM\SOFTWARE\SupTab
[-] Key Deleted : HKLM\SOFTWARE\supWPM
[-] Key Deleted : HKLM\SOFTWARE\V9
[-] Key Deleted : HKLM\SOFTWARE\winzipersvc
[-] Key Deleted : HKLM\SOFTWARE\omniboxesSoftware
[-] Key Deleted : HKLM\SOFTWARE\Crossbrowse
[-] Key Deleted : HKLM\SOFTWARE\YorkNewCin
[-] Key Deleted : HKLM\SOFTWARE\HighDefAction
[-] Key Deleted : HKLM\SOFTWARE\ArenaHD
[-] Key Deleted : HKLM\SOFTWARE\Prompt Downloader
[-] Key Deleted : HKLM\SOFTWARE\WdsManPro
[-] Key Deleted : HKLM\SOFTWARE\CinemaP-1.9cV06.10
[-] Key Deleted : HKLM\SOFTWARE\CinemaP-1.9cV06.10-nv
[-] Key Deleted : HKLM\SOFTWARE\CinemaP-1.9cV06.10-nv-ie
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\winzipper
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\omniboxes uninstall
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Crossbrowse
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Prompt Downloader
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CinemaP-1.9cV06.10
[!] Key Not Deleted : [x64] HKCU\Software\Conduit
[!] Key Not Deleted : [x64] HKCU\Software\GlobalUpdate
[!] Key Not Deleted : [x64] HKCU\Software\IGearSettings
[!] Key Not Deleted : [x64] HKCU\Software\InstalledBrowserExtensions
[!] Key Not Deleted : [x64] HKCU\Software\SupHpUISoft
[!] Key Not Deleted : [x64] HKCU\Software\CrossBrowser
[!] Key Not Deleted : [x64] HKCU\Software\Crossbrowse
[!] Key Not Deleted : [x64] HKCU\Software\YorkNewCin
[!] Key Not Deleted : [x64] HKCU\Software\HighDefAction
[!] Key Not Deleted : [x64] HKCU\Software\ArenaHD
[!] Key Not Deleted : [x64] HKCU\Software\Avg Secure Update
[!] Key Not Deleted : [x64] HKCU\Software\Prompt Downloader
[!] Key Not Deleted : [x64] HKCU\Software\CinemaP-1.9cV06.10-nv
[!] Key Not Deleted : [x64] HKCU\Software\CinemaP-1.9cV06.10-nv-ie
[-] Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Key Deleted : [x64] HKLM\SOFTWARE\YorkNewCin
[-] Key Deleted : [x64] HKLM\SOFTWARE\HighDefAction
[-] Key Deleted : [x64] HKLM\SOFTWARE\ArenaHD
[!] Key Not Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[!] Key Not Deleted : HKU\S-1-5-21-1906600563-3070068863-906702074-1002\Software\AppDataLow\Software\Crossrider
[!] Key Not Deleted : HKU\S-1-5-18\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GLOBALUPDATE.EXE
[!] Key Not Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2421}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2421}
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Data Restored : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2421}
[!] Key Not Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2421}
[!] Key Not Deleted : HKU\S-1-5-21-1906600563-3070068863-906702074-1002\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Data Restored : HKU\S-1-5-21-1906600563-3070068863-906702074-1002\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : HKU\S-1-5-21-1906600563-3070068863-906702074-1002\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2421}

***** [ Web browsers ] *****

[-] [C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\4ojy3lw5.default-1441434506023\prefs.js] [Preference] Deleted : user_pref("browser.newtab.url", "hxxp://www.delta-homes.com/newtab/?type=nt&ts= ... A5151A5151");
[-] [C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\4ojy3lw5.default-1441434506023\prefs.js] [Preference] Deleted : user_pref("browser.search.defaultenginename", "delta-homes");
[-] [C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\4ojy3lw5.default-1441434506023\prefs.js] [Preference] Deleted : user_pref("browser.search.selectedEngine", "delta-homes");
[-] [C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\4ojy3lw5.default-1441434506023\prefs.js] [Preference] Deleted : user_pref("extensions.aAVJYFVOD75109374HCDE39471360com72895.72895.internaldb.__ICM_LITE__blacklist_domain.value", "%7B%22SLIDERS%22%3A%5B%226pm.com%22%2C%22amazon.co.uk%22%2C%22amazon.com%22%2C%22anth[...]
[-] [C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\4ojy3lw5.default-1441434506023\prefs.js] [Preference] Deleted : user_pref("extensions.aAVJYFVOD75109374HCDE39471360com72895.72895.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%22%5D%7D%2C%22dealply_p%22%[...]
[-] [C:\Users\Natálka\AppData\Roaming\Mozilla\Firefox\Profiles\4ojy3lw5.default-1441434506023\prefs.js] [Preference] Deleted : user_pref("extensions.crossrider.bic", "1503d41d5f6368f9aed8e956f2910309");
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.omniboxes.com/?type=hp&ts=144413649 ... A5151A5151
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider] Deleted : hxxp://www.omniboxes.com/webfavicon.ico
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider_Data] Deleted : hxxp://www.omniboxes.com/web/?type=ds&ts=14441 ... earchTerms}
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ahcibalcdehlgcdnoppalnldhbhoklec
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : bbmegnmpleoagolcnjnejdacakedpcgd
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : chfdnecihphmhljaaejmgoiahnihplgn
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : edfohacdfdemjkeejihknkmjkabndgkg
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : fcfenmboojpjinhpgggodefccipikbpd
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : gcncagkkhfoombgbihckkccmkjemhohl
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : gcncagkkhfoombgbihckkccmkjemhohl
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : gopocncendemolgifaollkommlfpagmg
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : kgofoebonkgilehjhdbinahbhfmnpofn
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ledlhidaanehfgkncffffclodigipphl
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : lkadffjmnaiokkdncgdlecdegajoiemi
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : lkadffjmnaiokkdncgdlecdegajoiemi
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Deleted : hxxp://www.omniboxes.com/?type=hp&ts=144413649 ... A5151A5151

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [35389 bytes] ##########
# AdwCleaner v5.200 - Log vytvořen 28/06/2016 v 13:51:00
# Aktualizováno 14/06/2016 by ToolsLib
# Databáze : 2016-06-26.1 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : Natálka - NATALKA-PC
# Spuštěno z : C:\Users\Natálka\Desktop\adwcleaner_5.200.exe
# Nastavení : Čištění
# Podpora : https://toolslib.net/forum

***** [ Služby ] *****

[-] Služba Smazáno : WtuSystemSupport

***** [ Složky ] *****

[-] Složka Smazáno : C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\AVG Secure Search
[-] Složka Smazáno : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
[-] Složka Smazáno : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco
[-] Složka Smazáno : C:\extensions

***** [ Soubory ] *****

[-] Soubor Smazáno : C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
[!] Soubor Ne Smazáno : C:\ProgramData\Application Data\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
[-] Soubor Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackTrayMenu.lnk
[-] Soubor Smazáno : C:\Windows\SysWOW64\SearchProtectService.exe
[-] Soubor Smazáno : C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_oadboiipflhobonjjffjbfekfjcgkhco_0.localstorage

***** [ DLLs ] *****


***** [ WMI ] *****


***** [ Zástupci ] *****


***** [ Naplánované úlohy ] *****


***** [ Registry ] *****

[-] Klíč Smazáno : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
[-] Klíč Smazáno : HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\CRSBRWSHTML
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
[-] Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{0633EE93-D776-472F-A0FF-E1416B8B2E3D}]
[-] Klíč Smazáno : HKCU\Software\IM
[-] Klíč Smazáno : HKCU\Software\INSTALLPATH\STATUS
[-] Klíč Smazáno : HKLM\SOFTWARE\AVG Tuneup
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2AEF02C3-5159-4C81-A688-8D954F0DEE56}_NewSearch
[-] Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1906600563-3070068863-906702074-1002\Software\AVG Secure Search
[-] Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1906600563-3070068863-906702074-1002\Software\Complitly
[-] Data Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [CustomizeSearch]
[-] Data Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant]
[-] Data Obnoveno : HKU\S-1-5-21-1906600563-3070068863-906702074-1002\Software\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Obnoveno : HKU\S-1-5-21-1906600563-3070068863-906702074-1002\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3C}
[-] Data Obnoveno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3D}
[-] Data Obnoveno : HKU\S-1-5-21-1906600563-3070068863-906702074-1002\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Codec Settings UAC Manager]
[-] Klíč Smazáno : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\winzipersvc

***** [ Prohlížeče ] *****

[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Smazáno : delta-homes
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Smazáno : >
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Smazáno : maxikovy-hracky.cz
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Smazáno : hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... XX5TH0ETPN
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Smazáno : chfdnecihphmhljaaejmgoiahnihplgn
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Smazáno : dgpdioedihjhncjafcpgbbjdpbbkikmi
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Smazáno : fcfenmboojpjinhpgggodefccipikbpd
[-] [C:\Users\Natálka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Smazáno : oadboiipflhobonjjffjbfekfjcgkhco

*************************

:: "Tracing" klíče smazány
:: Nastavení Winsock vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [40792 bytů] - [21/10/2015 09:16:08]
C:\AdwCleaner\AdwCleaner[C2].txt - [1867 bytů] - [15/11/2015 18:30:11]
C:\AdwCleaner\AdwCleaner[C2]pores.txt - [1870 bytů] - [15/11/2015 18:42:17]
C:\AdwCleaner\AdwCleaner[C3].txt - [2005 bytů] - [16/11/2015 22:07:58]
C:\AdwCleaner\AdwCleaner[C4].txt - [1055 bytů] - [16/11/2015 23:52:23]
C:\AdwCleaner\AdwCleaner[C5].txt - [913 bytů] - [17/11/2015 14:26:45]
C:\AdwCleaner\AdwCleaner[C6].txt - [913 bytů] - [17/11/2015 22:52:27]
C:\AdwCleaner\AdwCleaner[C7].txt - [2506 bytů] - [27/11/2015 21:44:35]
C:\AdwCleaner\AdwCleaner[C8].txt - [2184 bytů] - [27/11/2015 21:56:45]
C:\AdwCleaner\AdwCleaner[C9].txt - [2304 bytů] - [28/11/2015 12:52:51]
C:\AdwCleaner\AdwCleaner[S10].txt - [816 bytů] - [17/11/2015 22:49:14]
C:\AdwCleaner\AdwCleaner[S11].txt - [815 bytů] - [20/11/2015 01:26:55]
C:\AdwCleaner\AdwCleaner[S12].txt - [676 bytů] - [21/11/2015 01:17:01]
C:\AdwCleaner\AdwCleaner[S13].txt - [676 bytů] - [21/11/2015 01:38:33]
C:\AdwCleaner\AdwCleaner[S14].txt - [2026 bytů] - [21/11/2015 20:12:10]
C:\AdwCleaner\AdwCleaner[S15].txt - [2349 bytů] - [27/11/2015 21:42:10]
C:\AdwCleaner\AdwCleaner[S16].txt - [2039 bytů] - [27/11/2015 21:53:28]
C:\AdwCleaner\AdwCleaner[S17].txt - [2153 bytů] - [28/11/2015 12:49:30]
C:\AdwCleaner\AdwCleaner[S18].txt - [2039 bytů] - [28/11/2015 13:45:01]
C:\AdwCleaner\AdwCleaner[S1].txt - [42813 bytů] - [21/10/2015 09:10:55]
C:\AdwCleaner\AdwCleaner[S2].txt - [1749 bytů] - [15/11/2015 18:24:36]
C:\AdwCleaner\AdwCleaner[S3].txt - [1391 bytů] - [15/11/2015 23:30:52]
C:\AdwCleaner\AdwCleaner[S4].txt - [1853 bytů] - [16/11/2015 22:05:26]
C:\AdwCleaner\AdwCleaner[S5].txt - [812 bytů] - [16/11/2015 22:15:30]
C:\AdwCleaner\AdwCleaner[S6].txt - [951 bytů] - [16/11/2015 23:48:34]
C:\AdwCleaner\AdwCleaner[S7].txt - [812 bytů] - [16/11/2015 23:55:53]
C:\AdwCleaner\AdwCleaner[S8].txt - [815 bytů] - [17/11/2015 14:24:13]
C:\AdwCleaner\AdwCleaner[S9].txt - [676 bytů] - [17/11/2015 14:30:34]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [42813 bytů] ##########

[Rudy]

Dejte nový log FRST.