VIRY.CZ

Zdravím, kedže som v tomto úplny amatér, tak Vás prosím či sa tu nájde niekto kto by mi v tomto asistoval.

Tak priložím i log z RSIT ako tu už každý dáva. Za prípadnú pomoc ďakujem.

Logfile of random's system information tool 1.08 (written by random/random)
Run by Tomáš at 2013-06-27 13:39:37
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 32 GB (13%) free of 250 GB
Total RAM: 4095 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:40:03, on 27. 6. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16611)
Boot mode: Normal

Running processes:
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
C:\Program Files (x86)\AVG Secure Search\vprot.exe
C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Program Files\trend micro\Tomáš.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://syb.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.splashtop.com/asusexpress ... pe%3DWEB01
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
R3 - URLSearchHook: uTorrentControl Toolbar - {e9df9360-97f8-4690-afe6-996c80790da4} - C:\Program Files (x86)\uTorrentControl\prxtbuTor.dll
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: 173.212.255.178 ad.garenanow.com
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocník pri prihlasovaní v sieti Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\15.2.0.5\AVG Secure Search_toolbar.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files (x86)\Softonic\softonic\1.5.11.5\bh\softonic.dll
O2 - BHO: uTorrentControl - {e9df9360-97f8-4690-afe6-996c80790da4} - C:\Program Files (x86)\uTorrentControl\prxtbuTor.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files (x86)\Softonic\softonic\1.5.11.5\softonicTlbr.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\15.2.0.5\AVG Secure Search_toolbar.dll
O3 - Toolbar: uTorrentControl Toolbar - {e9df9360-97f8-4690-afe6-996c80790da4} - C:\Program Files (x86)\uTorrentControl\prxtbuTor.dll
O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - (no file)
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [BCU] "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [RaidCall] C:\Program Files (x86)\RaidCall\raidcall.exe
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [GarenaPlus] "C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe" -autolaunch
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: GameRanger.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O9 - Extra button: Pridať do blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Pridať do blogu v programe Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\15.2.0\ViProtocol.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater15.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13740 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
C:\PROGRA~2\AVG\AVG2013\avgrsa.exe /boot
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe /pipeName=7fa9175a-2560-4d71-a527-876d7a45182a /coreSdkOptions=4382 /logConfFile="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\32e3dc2e-eb84-4b2b-8974-146a159d2725-178-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2013\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2013" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\"
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\AUDIODG.EXE 0x2e4
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\AVG\AVG2013\avgfws.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe"
"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe"
"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe"
taskeng.exe {26AEA61F-4C98-4DFD-9903-E45F27B35D96}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\SysWOW64\rundll32.exe "C:\Program Files (x86)\Garena Plus\ggspawn.dll",rundll_entry -p 0
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe" -b
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgemca.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-2bd90ef9-3587-4721-ad07-00e3788907e1 -SystemEventPortName:HostProcess-487a62b9-62f2-4ad6-a86c-0e5da310f335 -IoCancelEventPortName:HostProcess-327653a7-ee84-4575-b9d5-616446757aa3 -NonStateChangingEventPortName:HostProcess-b762554f-0d49-48be-9c30-e2b4f635dca3 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:299b34f0-d7ab-462e-9272-acd50e3ce0a7 -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
HydraDM64.exe -h:66028 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"
"C:\Program Files (x86)\AVG Secure Search\vprot.exe"
"C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe /pipeName=72dc785d-159c-4c77-a9a9-7c70f67e137a /coreSdkOptions=4114 /logConfFile="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\8623ce24-0a51-417c-a5f5-6c41ab522f49-e94-oopp.tmp" /loggerName=AVG.NS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2013\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2013" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Garena Plus\ggcode.dll",rundll_entry -p 3448
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=4980.9643300.264912896 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 4980 "\\.\pipe\gecko-crash-server-pipe.4980" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe" --proxy-stub-channel=Flash5220.650DBDE0.8911 --host-broker-channel=Flash5220.650DBDE0.11771 --host-pid=5220 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe" --channel=4684.0038F83C.400844065 --proxy-stub-channel=Flash5220.650DBDE0.8911 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll" --host-npapi-version=27 --type=renderer
"C:\Users\Tomáš\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job
C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\ROC_JAN2013_TB_rmv.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-05-14 6307960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-01-13 49440]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-03-26 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-03-29 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v sieti Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\15.2.0.5\AVG Secure Search_toolbar.dll [2013-05-21 1991344]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14 4531320]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-07-07 1152776]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-03-29 170912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}]
Softonic Helper Object - C:\Program Files (x86)\Softonic\softonic\1.5.11.5\bh\softonic.dll [2012-01-11 241872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e9df9360-97f8-4690-afe6-996c80790da4}]
uTorrentControl Toolbar - C:\Program Files (x86)\uTorrentControl\prxtbuTor.dll [2011-05-09 176936]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetPacks Browser Helper - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2012-01-15 1330480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]
Yontoo - C:\Program Files (x86)\Yontoo\YontooIEClient.dll [2012-03-27 792864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-07-07 1152776]
{5018CFD2-804D-4C99-9F81-25EAEA2769DE} - Softonic Toolbar - C:\Program Files (x86)\Softonic\softonic\1.5.11.5\softonicTlbr.dll [2012-01-11 250064]
{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\15.2.0.5\AVG Secure Search_toolbar.dll [2013-05-21 1991344]
{e9df9360-97f8-4690-afe6-996c80790da4} - uTorrentControl Toolbar - C:\Program Files (x86)\uTorrentControl\prxtbuTor.dll [2011-05-09 176936]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetPacks Toolbar for Internet Explorer - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2012-01-15 1330480]
{98889811-442D-49dd-99D7-DC866BE87DBC}

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-11-10 3514176]
"Steam"=C:\Program Files (x86)\Steam\Steam.exe [2013-06-07 1641896]
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2012-05-25 880496]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-06-03 19603048]
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2011-07-28 393216]
"GarenaPlus"=C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe [2013-05-09 9829680]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2010-05-24 2439072]
"BCU"=C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe [2010-03-05 411864]
"vProt"=C:\Program Files (x86)\AVG Secure Search\vprot.exe [2013-05-21 1226928]
"SweetIM"=C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [2012-01-19 114992]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2013\avgui.exe [2012-12-11 3147384]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-12-19 642808]
"RaidCall"=C:\Program Files (x86)\RaidCall\raidcall.exe [2013-05-27 3428024]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-05-15 2255184]

C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
GameRanger.lnk - C:\Users\Tomáš\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2013-06-27 13:39:37 ----D---- C:\rsit
2013-06-27 13:39:37 ----D---- C:\Program Files\trend micro
2013-06-26 16:45:37 ----D---- C:\Program Files (x86)\Dungeon Defenders
2013-06-15 03:00:38 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-06-15 03:00:38 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-06-15 03:00:38 ----A---- C:\Windows\system32\urlmon.dll
2013-06-15 03:00:37 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-06-15 03:00:37 ----A---- C:\Windows\system32\ieui.dll
2013-06-15 03:00:37 ----A---- C:\Windows\system32\iertutil.dll
2013-06-15 03:00:36 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-06-15 03:00:36 ----A---- C:\Windows\system32\ieframe.dll
2013-06-15 03:00:34 ----A---- C:\Windows\system32\mshtml.dll
2013-06-15 03:00:32 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-06-13 03:01:30 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-06-13 03:01:30 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-06-13 03:01:30 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-06-13 03:01:30 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-06-13 03:01:30 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-06-13 03:01:30 ----A---- C:\Windows\system32\iesysprep.dll
2013-06-13 03:01:30 ----A---- C:\Windows\system32\iesetup.dll
2013-06-13 03:01:30 ----A---- C:\Windows\system32\iernonce.dll
2013-06-13 03:01:30 ----A---- C:\Windows\system32\ie4uinit.exe
2013-06-13 03:01:29 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-06-13 03:01:29 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-06-13 03:01:29 ----A---- C:\Windows\system32\msfeeds.dll
2013-06-13 03:01:29 ----A---- C:\Windows\system32\jscript.dll
2013-06-13 03:01:28 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-06-13 03:01:28 ----A---- C:\Windows\system32\jscript9.dll
2013-06-13 03:01:26 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-06-13 03:01:26 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-06-13 03:01:26 ----A---- C:\Windows\system32\jsproxy.dll
2013-06-13 03:01:25 ----A---- C:\Windows\system32\wininet.dll
2013-06-12 18:56:25 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-06-12 18:56:23 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-06-12 18:56:23 ----A---- C:\Windows\system32\win32spl.dll
2013-06-12 18:56:16 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2013-06-12 18:56:16 ----A---- C:\Windows\system32\cryptdlg.dll
2013-06-12 18:56:14 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-06-12 18:56:14 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-06-12 18:56:11 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-06-12 18:56:11 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-06-12 18:56:11 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-06-12 18:56:11 ----A---- C:\Windows\SYSWOW64\certutil.exe
2013-06-12 18:56:11 ----A---- C:\Windows\SYSWOW64\certenc.dll
2013-06-12 18:56:11 ----A---- C:\Windows\system32\cryptsvc.dll
2013-06-12 18:56:11 ----A---- C:\Windows\system32\cryptnet.dll
2013-06-12 18:56:11 ----A---- C:\Windows\system32\crypt32.dll
2013-06-12 18:56:11 ----A---- C:\Windows\system32\certutil.exe
2013-06-12 18:56:11 ----A---- C:\Windows\system32\certenc.dll
2013-06-12 18:56:03 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-06-12 18:56:03 ----A---- C:\Windows\system32\d3d11.dll
2013-06-07 16:14:11 ----D---- C:\ProgramData\RELOADED
2013-06-07 14:22:45 ----D---- C:\Program Files (x86)\Metro Last Light
2013-06-07 03:34:42 ----D---- C:\Users\Tomáš\AppData\Roaming\ParetoLogic
2013-06-07 03:34:42 ----D---- C:\Users\Tomáš\AppData\Roaming\DriverCure
2013-06-07 03:34:34 ----D---- C:\ProgramData\ParetoLogic
2013-05-26 15:27:21 ----D---- C:\Program Files (x86)\Amnesia - The Dark Descent
2013-05-22 13:14:31 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2013-05-22 02:04:52 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-05-15 11:37:17 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-05-15 11:37:17 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-05-15 11:37:17 ----A---- C:\Windows\system32\cdd.dll
2013-05-15 11:37:08 ----A---- C:\Windows\system32\shell32.dll
2013-05-15 11:37:07 ----A---- C:\Windows\system32\shdocvw.dll
2013-05-15 11:37:07 ----A---- C:\Windows\system32\authui.dll
2013-05-15 11:37:06 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-05-15 11:37:06 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-05-15 11:37:06 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-05-15 11:37:06 ----A---- C:\Windows\system32\consent.exe
2013-05-15 11:37:06 ----A---- C:\Windows\system32\appinfo.dll
2013-05-15 11:36:55 ----A---- C:\Windows\system32\wwansvc.dll
2013-05-15 11:36:55 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-05-15 11:36:54 ----A---- C:\Windows\system32\win32k.sys
2013-05-07 09:45:13 ----SHD---- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-05-03 15:34:27 ----D---- C:\Program Files (x86)\Gophoto.it
2013-05-03 15:34:09 ----D---- C:\Program Files (x86)\hdvidcodec.com
2013-04-24 13:40:25 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-04-22 14:37:47 ----D---- C:\Users\Tomáš\AppData\Roaming\raidcall
2013-04-22 14:37:41 ----D---- C:\Program Files (x86)\RaidCall
2013-04-17 20:38:32 ----D---- C:\GarenaMaster II - v2.16
2013-04-10 15:09:04 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-04-10 15:09:04 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-04-10 15:09:04 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-04-10 15:09:04 ----A---- C:\Windows\system32\tsgqec.dll
2013-04-10 15:09:04 ----A---- C:\Windows\system32\mstscax.dll
2013-04-10 15:09:04 ----A---- C:\Windows\system32\aaclient.dll
2013-04-10 15:08:55 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-04-10 15:08:53 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-04-10 15:08:52 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-04-10 15:08:52 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-04-10 15:08:51 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-04-10 15:08:51 ----A---- C:\Windows\system32\smss.exe
2013-04-10 15:08:51 ----A---- C:\Windows\system32\csrsrv.dll
2013-04-09 16:58:05 ----D---- C:\Program Files (x86)\DirectX
2013-04-08 17:02:53 ----D---- C:\ProgramData\SplitMediaLabs
2013-04-08 17:02:53 ----D---- C:\Program Files (x86)\SplitMediaLabs
2013-04-08 17:02:13 ----D---- C:\Users\Tomáš\AppData\Roaming\SplitMediaLabs
2013-03-30 04:02:22 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-03-30 04:02:22 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-03-30 04:02:22 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-03-30 04:02:22 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-03-30 04:02:22 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-03-30 04:02:22 ----A---- C:\Windows\system32\elshyph.dll
2013-03-30 04:02:21 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-03-30 04:02:21 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-03-30 04:02:21 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-03-30 04:02:21 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-03-30 04:02:20 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-03-30 04:02:20 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-03-30 04:02:20 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-03-30 04:02:20 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-03-30 04:02:20 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-03-30 04:02:19 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-03-30 04:02:19 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-03-30 04:02:19 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-03-30 04:02:19 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-03-30 04:02:19 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-03-30 04:02:19 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-03-30 04:02:18 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-03-30 04:02:18 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-03-30 04:02:17 ----A---- C:\Windows\SYSWOW64\url.dll
2013-03-30 04:02:17 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-03-30 04:02:17 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-03-30 04:02:17 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-03-30 04:02:17 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-03-30 04:02:17 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-03-30 04:02:17 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-03-30 04:02:16 ----A---- C:\Windows\system32\msrating.dll
2013-03-30 04:02:16 ----A---- C:\Windows\system32\msls31.dll
2013-03-30 04:02:15 ----A---- C:\Windows\system32\url.dll
2013-03-30 04:02:15 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-03-30 04:02:15 ----A---- C:\Windows\system32\iedkcs32.dll
2013-03-30 04:02:15 ----A---- C:\Windows\system32\ieapfltr.dll
2013-03-30 04:02:15 ----A---- C:\Windows\system32\icardie.dll
2013-03-30 04:02:15 ----A---- C:\Windows\system32\dxtrans.dll
2013-03-30 04:02:15 ----A---- C:\Windows\system32\dxtmsft.dll
2013-03-30 04:02:14 ----A---- C:\Windows\system32\webcheck.dll
2013-03-30 04:02:14 ----A---- C:\Windows\system32\mshtmled.dll
2013-03-30 04:02:14 ----A---- C:\Windows\system32\licmgr10.dll
2013-03-30 04:02:14 ----A---- C:\Windows\system32\inseng.dll
2013-03-30 04:02:13 ----A---- C:\Windows\system32\wextract.exe
2013-03-30 04:02:13 ----A---- C:\Windows\system32\vbscript.dll
2013-03-30 04:02:13 ----A---- C:\Windows\system32\iexpress.exe
2013-03-30 04:02:13 ----A---- C:\Windows\system32\ieUnatt.exe
2013-03-30 04:02:12 ----A---- C:\Windows\system32\pngfilt.dll
2013-03-30 04:02:12 ----A---- C:\Windows\system32\occache.dll
2013-03-30 04:02:12 ----A---- C:\Windows\system32\mshta.exe
2013-03-30 04:02:12 ----A---- C:\Windows\system32\imgutil.dll
2013-03-30 04:02:12 ----A---- C:\Windows\system32\iepeers.dll
2013-03-30 04:02:11 ----A---- C:\Windows\system32\msfeedssync.exe
2013-03-30 04:02:11 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-03-30 04:02:11 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-03-30 04:02:10 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-03-30 04:02:10 ----A---- C:\Windows\system32\mshtmler.dll
2013-03-29 11:11:38 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll

======List of files/folders modified in the last 3 months======

2013-06-27 13:39:53 ----D---- C:\Windows\Temp
2013-06-27 13:39:37 ----RD---- C:\Program Files
2013-06-27 13:38:28 ----D---- C:\Program Files (x86)\Steam
2013-06-27 13:19:22 ----D---- C:\Users\Tomáš\AppData\Roaming\Skype
2013-06-27 13:05:57 ----RD---- C:\Program Files (x86)
2013-06-27 12:58:10 ----D---- C:\ProgramData\MFAData
2013-06-27 12:55:58 ----D---- C:\ProgramData\GarenaMessenger
2013-06-27 12:55:57 ----D---- C:\Users\Tomáš\AppData\Roaming\GarenaPlus
2013-06-27 12:52:27 ----D---- C:\Users\Tomáš\AppData\Roaming\uTorrent
2013-06-27 12:51:49 ----D---- C:\Windows\system32\Tasks
2013-06-27 12:50:38 ----D---- C:\Windows\system32\config
2013-06-27 12:39:53 ----D---- C:\Windows\Prefetch
2013-06-27 12:30:24 ----D---- C:\Windows\system32\LogFiles
2013-06-27 12:30:24 ----D---- C:\Windows\inf
2013-06-27 12:30:22 ----D---- C:\Windows
2013-06-27 12:30:02 ----D---- C:\Windows\System32
2013-06-27 04:18:42 ----D---- C:\Users\Tomáš\AppData\Roaming\DAEMON Tools Lite
2013-06-27 04:18:34 ----D---- C:\Windows\Logs
2013-06-26 18:03:42 ----SHD---- C:\System Volume Information
2013-06-26 18:03:24 ----SHD---- C:\Windows\Installer
2013-06-26 17:55:30 ----D---- C:\ProgramData\PMB Files
2013-06-26 13:25:52 ----D---- C:\Windows\system32\NDF
2013-06-25 22:36:00 ----D---- C:\Users\Tomáš\AppData\Roaming\Applian FLV and Media Player
2013-06-23 23:40:41 ----D---- C:\Windows\Panther
2013-06-23 23:40:41 ----D---- C:\Windows\debug
2013-06-23 23:39:17 ----D---- C:\Program Files\CCleaner
2013-06-15 03:17:58 ----D---- C:\Windows\winsxs
2013-06-15 03:16:31 ----D---- C:\Windows\SysWOW64
2013-06-15 03:16:31 ----D---- C:\Program Files\Internet Explorer
2013-06-15 03:16:31 ----D---- C:\Program Files (x86)\Internet Explorer
2013-06-15 03:00:53 ----D---- C:\Windows\system32\catroot2
2013-06-15 03:00:53 ----D---- C:\Windows\system32\catroot
2013-06-13 11:47:01 ----D---- C:\Windows\rescache
2013-06-13 03:23:23 ----D---- C:\Windows\system32\drivers
2013-06-13 03:23:22 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-06-13 03:23:22 ----D---- C:\Windows\SYSWOW64\en-US
2013-06-13 03:23:22 ----D---- C:\Windows\system32\sk-SK
2013-06-13 03:23:22 ----D---- C:\Windows\system32\en-US
2013-06-13 03:02:04 ----A---- C:\Windows\system32\MRT.exe
2013-06-12 12:56:30 ----D---- C:\ProgramData\Skype
2013-06-12 12:56:28 ----RD---- C:\Program Files (x86)\Skype
2013-06-11 22:44:28 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-06-09 12:28:26 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-06-09 12:28:25 ----D---- C:\Program Files (x86)\EA GAMES
2013-06-08 02:33:15 ----D---- C:\Windows\Tasks
2013-06-08 02:33:14 ----D---- C:\Program Files (x86)\AVG Secure Search
2013-06-07 16:14:11 ----HD---- C:\ProgramData
2013-06-07 03:55:30 ----D---- C:\Users\Tomáš\AppData\Roaming\BrowserCompanion
2013-06-07 03:53:30 ----D---- C:\Program Files (x86)\Common Files
2013-06-04 21:18:16 ----RSD---- C:\Windows\Fonts
2013-05-29 22:19:57 ----D---- C:\Games
2013-05-23 10:25:35 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-05-21 17:41:51 ----D---- C:\Users\Tomáš\AppData\Roaming\TeamViewer
2013-05-21 17:41:23 ----D---- C:\Program Files (x86)\TeamViewer
2013-05-21 17:30:05 ----D---- C:\Program Files (x86)\Garena Plus
2013-05-17 03:56:16 ----RSD---- C:\Windows\assembly
2013-05-17 03:56:16 ----D---- C:\Windows\Microsoft.NET
2013-05-16 12:51:23 ----D---- C:\Windows\AppPatch
2013-05-16 11:15:00 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-05-16 01:02:53 ----D---- C:\Users\Tomáš\AppData\Roaming\vlc
2013-05-07 10:00:00 ----D---- C:\Program Files (x86)\Windows Live
2013-05-07 09:59:22 ----D---- C:\ProgramData\DriverGenius
2013-05-07 09:59:21 ----SHD---- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2013-05-07 09:46:07 ----D---- C:\ProgramData\TuneUp Software
2013-05-07 09:46:06 ----D---- C:\Users\Tomáš\AppData\Roaming\TuneUp Software
2013-05-01 22:33:57 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2013-05-01 22:33:09 ----D---- C:\Program Files (x86)\YourFileDownloader
2013-04-29 20:45:45 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-04-09 16:53:59 ----D---- C:\Users\Tomáš\AppData\Roaming\DivX
2013-04-07 13:16:06 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2013-04-06 16:00:02 ----D---- C:\Program Files (x86)\Origin
2013-03-30 04:21:32 ----D---- C:\Windows\SYSWOW64\migration
2013-03-30 04:21:31 ----D---- C:\Windows\system32\migration
2013-03-30 04:21:31 ----D---- C:\Windows\PolicyDefinitions
2013-03-29 11:11:34 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-03-29 11:11:34 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-03-29 11:11:34 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-03-29 11:11:34 ----A---- C:\Windows\SYSWOW64\java.exe
2013-03-29 11:11:34 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-03-29 11:11:33 ----D---- C:\Program Files (x86)\Java

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2012-10-15 63328]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2012-09-21 225120]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2012-11-16 111968]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2012-09-14 40800]
R0 nvstor64;nvstor64; C:\Windows\system32\DRIVERS\nvstor64.sys [2010-04-08 244328]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2009-08-04 13440]
R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6a.sys [2012-09-04 50296]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2012-10-22 154464]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2012-10-02 185696]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2012-09-21 200032]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2013-05-21 45856]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-12-13 279616]
R2 AODDriver4.01;AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-12-19 11278336]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-12-19 552960]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-11-06 96256]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 15416]
R3 NVNET;NVIDIA nForce Ethernet Driver; C:\Windows\system32\DRIVERS\nvmf6264.sys [2010-08-12 350952]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2010-05-15 1327520]
S2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
S3 1394hub;1394 Enabled Hub; C:\Windows\syswow64\svchost.exe [2009-07-14 20992]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328]
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Users\Tomáš\Desktop\programy\Garena\safedrv.sys []
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-12-19 240640]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-12-19 361984]
R2 avgfws;AVG Firewall; C:\Program Files (x86)\AVG\AVG2013\avgfws.exe [2012-12-10 1342024]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2012-11-16 5814904]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-10-22 196664]
R2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-06-15 249648]
R2 BCUService;Browser Configuration Utility Service; C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2010-03-05 235752]
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [2010-01-21 496232]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2013-05-15 2467664]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [2010-01-21 209000]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-05-20 76888]
R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-04-23 3574624]
R2 vToolbarUpdater15.2.0;vToolbarUpdater15.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe [2013-05-21 1015984]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-17 135664]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-06-03 162408]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-11 256904]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-07-07 195336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-17 135664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-05-22 117144]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-06-07 543656]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-12-11 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Zdravim

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

Ulozte nejlepe na plochu
Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
Probehne vytvoreni zalohy a nasledne prohledavani
Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Kliknete na Prohledat
Probehne skenovani a pak se objevi log, pripadne bude ulozen na systemovem disku jako AdwCleaner[R?].txt, ten sem vlozte

Tak ako prvý log prikladám JRT. Po tomto programe si na spodnej lište zmizla taká šipka hore, ktorá po klinutí ukazovala mini ikony pustených programov. Reštartom sa to snaď potom vyrieši.

A tu je ten log.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by Tom ç on çt 27. 06. 2013 at 14:04:26,74
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\sweetim
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC}
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-1588890109-3522761576-2135906086-1001\Software\Microsoft\Internet Explorer\Main\\Start Page

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\1clickdownload
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\babylon
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\babylontoolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\blabbers
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\datamngr
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\datamngr
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\freeze.com
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\iminent
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonic
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\softonic
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\systweak
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\yourfiledownloader
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\yourfiledownloader
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\Software\conduitsearchscopes
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\toolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\scripthelper.exe
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\smbarbroker.exe
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\viprotocol.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\yontooieclient.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\mediaplayer.graphicsutils
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\mediaplayer.graphicsutils.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\mgmediaplayer.gifanimator
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\mgmediaplayer.gifanimator.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\protocols\handler\viprotocol
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\s
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\scripthelper.scripthelperapi
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\scripthelper.scripthelperapi.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\sim-packages
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\softonic.dskbnd
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\softonic.dskbnd.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\softonic.softonichlpr
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\softonic.softonichlpr.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\softonicapp.appcore
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\softonicapp.appcore.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\srv.softonicsrvc
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\srv.softonicsrvc.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\sweetie.ietoolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\sweetie.ietoolbar.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\toolbar3.sweetie
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\toolbar3.sweetie.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\viprotocol.viprotocolole
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\viprotocol.viprotocolole.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\yontooieclient.api
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\yontooieclient.api.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\yontooieclient.layers
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\yontooieclient.layers.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\mybabylontb_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\mybabylontb_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\softonic_ggl_1_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\softonic_ggl_1_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\sweetim_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\sweetim_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\windows\currentversion\app paths\sweetim.exe
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\datamngr
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\classes\Toolbar.CT3072254
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{3619EFAE-04A1-42D0-A6D6-16B5AD094684}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\babylon"
Successfully deleted: [Folder] "C:\ProgramData\sweetim"
Successfully deleted: [Folder] "C:\ProgramData\tarma installer"
Successfully deleted: [Folder] "C:\Users\Tom ç\AppData\Roaming\babylon"
Successfully deleted: [Folder] "C:\Users\Tom ç\AppData\Roaming\browsercompanion"
Successfully deleted: [Folder] "C:\Users\Tom ç\AppData\Roaming\drivercure"
Successfully deleted: [Folder] "C:\Users\Tom ç\AppData\Roaming\opencandy"
Successfully deleted: [Folder] "C:\Users\Tom ç\AppData\Roaming\yourfiledownloader"
Successfully deleted: [Folder] "C:\Users\Tom ç\appdata\local\conduit"
Successfully deleted: [Folder] "C:\Users\Tom ç\appdata\locallow\boost_interprocess"
Successfully deleted: [Folder] "C:\Users\Tom ç\appdata\locallow\conduit"
Successfully deleted: [Folder] "C:\Users\Tom ç\appdata\locallow\softonic"
Successfully deleted: [Folder] "C:\Users\Tom ç\appdata\locallow\sweetim"
Successfully deleted: [Folder] "C:\Program Files (x86)\conduit"
Successfully deleted: [Folder] "C:\Program Files (x86)\fbphotozoom"
Successfully deleted: [Folder] "C:\Program Files (x86)\smartdl"
Successfully deleted: [Folder] "C:\Program Files (x86)\softonic"
Failed to delete: [Folder] "C:\Program Files (x86)\sweetim"
Successfully deleted: [Folder] "C:\Program Files (x86)\yontoo"
Successfully deleted: [Folder] "C:\Program Files (x86)\yourfiledownloader"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"

~~~ FireFox

Successfully deleted: [File] C:\user.js
Successfully deleted: [File] "C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml"
Successfully deleted: [File] C:\Users\Tom ç\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\user.js
Successfully deleted: [File] C:\Users\Tom ç\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\invalidprefs.js
Successfully deleted: [File] C:\Users\Tom ç\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\extensions\{eee6c361-6118-11dc-9c72-001320c79847}.xpi
Successfully deleted: [File] C:\Users\Tom ç\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\searchplugins\askcom.xml
Successfully deleted: [File] C:\Users\Tom ç\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\searchplugins\babylon.xml
Successfully deleted: [File] C:\Users\Tom ç\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\searchplugins\browserprotect.xml
Successfully deleted: [File] C:\Users\Tom ç\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\searchplugins\conduit.xml
Successfully deleted: [File] C:\Users\Tom ç\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\searchplugins\delta.xml
Successfully deleted: [File] C:\Users\Tom ç\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\searchplugins\softonic.xml
Successfully deleted: [File] C:\Users\Tom ç\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\searchplugins\sweetim.xml
Successfully deleted: [Folder] C:\Users\Tom ç\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\conduitcommon
Successfully deleted: [Folder] C:\Users\Tom ç\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\jetpack
Successfully deleted: [Folder] C:\Users\Tom ç\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\extensions\ffxtlbra@softonic.com
Successfully deleted: [Folder] C:\Users\Tom ç\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\extensions\bbrs_002@blabbers.com
Successfully deleted the following from C:\Users\Tom ç\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\prefs.js

user_pref("CT3072254..clientLogIsEnabled", true);
user_pref("CT3072254..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
user_pref("CT3072254..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
user_pref("CT3072254.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
user_pref("CT3072254.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
user_pref("CT3072254.BrowserCompStateIsOpen_129572934028070084", true);
user_pref("CT3072254.BrowserCompStateIsOpen_129573914344030086", true);
user_pref("CT3072254.CTID", "CT3072254");
user_pref("CT3072254.CurrentServerDate", "19-3-2012");
user_pref("CT3072254.DSInstall", true);
user_pref("CT3072254.DialogsAlignMode", "LTR");
user_pref("CT3072254.DialogsGetterLastCheckTime", "Fri Mar 16 2012 17:56:43 GMT+0100");
user_pref("CT3072254.DownloadReferralCookieData", "");
user_pref("CT3072254.FirstServerDate", "16-3-2012");
user_pref("CT3072254.FirstTime", true);
user_pref("CT3072254.FirstTimeFF3", true);
user_pref("CT3072254.FixPageNotFoundErrors", true);
user_pref("CT3072254.GroupingServerCheckInterval", 1440);
user_pref("CT3072254.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
user_pref("CT3072254.HPInstall", true);
user_pref("CT3072254.HasUserGlobalKeys", true);
user_pref("CT3072254.HomePageProtectorEnabled", true);
user_pref("CT3072254.HomepageBeforeUnload", "hxxp://search.conduit.com/?ctid=CT3072254&SearchSource=13");
user_pref("CT3072254.Initialize", true);
user_pref("CT3072254.InitializeCommonPrefs", true);
user_pref("CT3072254.InstallationAndCookieDataSentCount", 3);
user_pref("CT3072254.InstallationId", "ConduitXPEIntegration");
user_pref("CT3072254.InstallationType", "ConduitXPEIntegration");
user_pref("CT3072254.InstalledDate", "Fri Mar 16 2012 17:56:37 GMT+0100");
user_pref("CT3072254.IsAlertDBUpdated", true);
user_pref("CT3072254.IsGrouping", false);
user_pref("CT3072254.IsInitSetupIni", true);
user_pref("CT3072254.IsMulticommunity", false);
user_pref("CT3072254.IsOpenThankYouPage", true);
user_pref("CT3072254.IsOpenUninstallPage", false);
user_pref("CT3072254.IsProtectorsInit", true);
user_pref("CT3072254.LanguagePackLastCheckTime", "Sun Mar 18 2012 17:56:38 GMT+0100");
user_pref("CT3072254.LanguagePackReloadIntervalMM", 1440);
user_pref("CT3072254.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
user_pref("CT3072254.LastLogin_3.10.0.1", "Mon Mar 19 2012 14:26:11 GMT+0100");
user_pref("CT3072254.LatestVersion", "3.10.0.1");
user_pref("CT3072254.Locale", "en");
user_pref("CT3072254.MCDetectTooltipHeight", "83");
user_pref("CT3072254.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
user_pref("CT3072254.MCDetectTooltipWidth", "295");
user_pref("CT3072254.MyStuffEnabledAtInstallation", true);
user_pref("CT3072254.OriginalFirstVersion", "3.10.0.1");
user_pref("CT3072254.SavedHomepage", "hxxp://www.google.sk/");
user_pref("CT3072254.SearchCaption", "uTorrentControl Customized Web Search");
user_pref("CT3072254.SearchEngineBeforeUnload", "uTorrentControl Customized Web Search");
user_pref("CT3072254.SearchFromAddressBarIsInit", true);
user_pref("CT3072254.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072254&SearchSource=2&q=");
user_pref("CT3072254.SearchInNewTabEnabled", true);
user_pref("CT3072254.SearchInNewTabIntervalMM", 1440);
user_pref("CT3072254.SearchInNewTabLastCheckTime", "Sun Mar 18 2012 17:56:38 GMT+0100");
user_pref("CT3072254.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
user_pref("CT3072254.SearchProtectorEnabled", true);
user_pref("CT3072254.SearchProtectorToolbarDisabled", false);
user_pref("CT3072254.SendProtectorDataViaLogin", true);
user_pref("CT3072254.ServiceMapLastCheckTime", "Sun Mar 18 2012 17:56:37 GMT+0100");
user_pref("CT3072254.SettingsLastCheckTime", "Mon Mar 19 2012 14:26:10 GMT+0100");
user_pref("CT3072254.SettingsLastUpdate", "1331834925");
user_pref("CT3072254.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT3072254&SearchSource=13");
user_pref("CT3072254.ThirdPartyComponentsInterval", 504);
user_pref("CT3072254.ThirdPartyComponentsLastCheck", "Fri Mar 16 2012 17:56:37 GMT+0100");
user_pref("CT3072254.ThirdPartyComponentsLastUpdate", "1312887586");
user_pref("CT3072254.ToolbarShrinkedFromSetup", false);
user_pref("CT3072254.TrusteLinkUrl", "hxxp://trust.conduit.com/CT3072254");
user_pref("CT3072254.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com
user_pref("CT3072254.UserID", "UN30381705223210664");
user_pref("CT3072254.ValidationData_Search", 1);
user_pref("CT3072254.ValidationData_Toolbar", 2);
user_pref("CT3072254.alertChannelId", "1463703");
user_pref("CT3072254.autoDisableScopes", -1);
user_pref("CT3072254.backendstorage.cbfirsttime", "467269204D617220313620323031322031373A35363A343020474D542B30313030");
user_pref("CT3072254.backendstorage.saved_clients", "7B2244373638303234443132363533374436443442443233443830453932423643354136413041394538223A7B2270616972696E675F706F7274223A31
user_pref("CT3072254.backendstorage.toolbar_prefs", "7B22636F6E6E5F74797065223A226C6F63616C227D");
user_pref("CT3072254.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlP
user_pref("CT3072254.globalFirstTimeInfoLastCheckTime", "Fri Mar 16 2012 17:56:38 GMT+0100");
user_pref("CT3072254.homepageProtectorEnableByLogin", true);
user_pref("CT3072254.initDone", true);
user_pref("CT3072254.isAppTrackingManagerOn", true);
user_pref("CT3072254.myStuffEnabled", true);
user_pref("CT3072254.myStuffPublihserMinWidth", 400);
user_pref("CT3072254.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
user_pref("CT3072254.myStuffServiceIntervalMM", 1440);
user_pref("CT3072254.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
user_pref("CT3072254.navigateToUrlOnSearch", false);
user_pref("CT3072254.revertSettingsEnabled", true);
user_pref("CT3072254.searchProtectorDialogDelayInSec", 10);
user_pref("CT3072254.searchProtectorEnableByLogin", true);
user_pref("CT3072254.testingCtid", "");
user_pref("CT3072254.toolbarAppMetaDataLastCheckTime", "Sun Mar 18 2012 17:56:38 GMT+0100");
user_pref("CT3072254.toolbarContextMenuLastCheckTime", "Fri Mar 16 2012 17:56:38 GMT+0100");
user_pref("CT3072254.usagesFlag", 2);
user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT3072254&SearchSource=13");
user_pref("CommunityToolbar.ConduitSearchList", "uTorrentControl Customized Web Search");
user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3072254/CT3072254", "\"83d602a522da53253980da63ccbc77351\"");
user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3072254", "\"1312917834\"");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=en", "wVmmvqqOMqrv5xct1cJIHg==");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=en", "B8Px/Te74hi98N2hb9yOAQ==");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=en", "Dclc8oo4TTv7+mAkSlUSWg==");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=en", "cTVrc75U9YwdI74PAhUYFw==");
user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.10.0.1", "\"801a319dd78ccc1:0\"");
user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3072254", "\"7f2731e440c8546ef9b9379ba5bbe091\"");
user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"15c6875f0df8cf57859fb5c237274efb\"");
user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Tomáa\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\bnan144h.default\\conduitCommon\\modules\\3.10.0.1");
user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.10.0.1");
user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://isearch.avg.com/search?cid=%7Bb5be12e4-d516-43e2-bc8a-97b4e876cf7c%7D&mid=6ee886007b2247d1adc1c593af8ff9b2-c
user_pref("CommunityToolbar.ToolbarsList", "CT3072254");
user_pref("CommunityToolbar.ToolbarsList2", "CT3072254");
user_pref("CommunityToolbar.ToolbarsList4", "CT3072254");
user_pref("CommunityToolbar.globalUserId", "1d8818f5-df9d-4193-9a43-8f9c6407844b");
user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT3072254");
user_pref("CommunityToolbar.originalHomepage", "hxxp://www.google.sk/");
user_pref("CommunityToolbar.originalSearchEngine", "Search the web (Softonic)");
user_pref("avg.install.userHPSettings", "hxxp://search.softonic.com/MON00005/tb_v1?SearchSource=13&cc=");
user_pref("avg.install.userSPSettings", "Search the web (Softonic)");
user_pref("browser.search.defaultengine", "Ask.com");
user_pref("browser.search.defaultthis.engineName", "uTorrentControl Customized Web Search");
user_pref("extensions.BabylonToolbar.admin", false);
user_pref("extensions.BabylonToolbar.aflt", "babsst");
user_pref("extensions.BabylonToolbar.appId", "{BDB69379-802F-4eaf-B541-F8DE92DD98DB}");
user_pref("extensions.BabylonToolbar.dfltLng", "en");
user_pref("extensions.BabylonToolbar.excTlbr", false);
user_pref("extensions.BabylonToolbar.id", "a4a3acad00000000000014dae96b1041");
user_pref("extensions.BabylonToolbar.instlDay", "15675");
user_pref("extensions.BabylonToolbar.instlRef", "sst");
user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
user_pref("extensions.BabylonToolbar.tlbrId", "irhnew");
user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "hxxp://search.babylon.com/?babsrc=TB_def&mntrId=a4a3acad00000000000014dae96b1041&q=");
user_pref("extensions.BabylonToolbar.vrsn", "1.8.3.8");
user_pref("extensions.BabylonToolbar.vrsni", "1.8.3.8");
user_pref("extensions.BabylonToolbar_i.newTab", true);
user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?affID=112553&tt=4812_1&babsrc=NT_ss&mntrId=a4a3acad00000000000014dae96b1041");
user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.8.3.813:39:52");
user_pref("extensions.delta.admin", false);
user_pref("extensions.delta.aflt", "babsst");
user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
user_pref("extensions.delta.autoRvrt", "false");
user_pref("extensions.delta.dfltLng", "en");
user_pref("extensions.delta.excTlbr", false);
user_pref("extensions.delta.ffxUnstlRst", true);
user_pref("extensions.delta.id", "a4a3acad00000000000014dae96b1041");
user_pref("extensions.delta.instlDay", "15828");
user_pref("extensions.delta.instlRef", "sst");
user_pref("extensions.delta.newTab", false);
user_pref("extensions.delta.prdct", "delta");
user_pref("extensions.delta.prtnrId", "delta");
user_pref("extensions.delta.rvrt", "false");
user_pref("extensions.delta.smplGrp", "none");
user_pref("extensions.delta.tlbrId", "base");
user_pref("extensions.delta.tlbrSrchUrl", "");
user_pref("extensions.delta.vrsn", "1.8.16.16");
user_pref("extensions.delta.vrsnTs", "1.8.16.1615:34:40");
user_pref("extensions.delta.vrsni", "1.8.16.16");
user_pref("extensions.softonic.admin", false);
user_pref("extensions.softonic.aflt", "SD");
user_pref("extensions.softonic.dfltLng", "");
user_pref("extensions.softonic.dfltSrch", true);
user_pref("extensions.softonic.excTlbr", false);
user_pref("extensions.softonic.hmpg", true);
user_pref("extensions.softonic.id", "a4a3acad00000000000014dae96b1041");
user_pref("extensions.softonic.instlDay", "15360");
user_pref("extensions.softonic.instlRef", "MON00005");
user_pref("extensions.softonic.keyWordUrl", "hxxp://search.softonic.com/MON00005/tb_v1?SearchSource=2&cc=&q=");
user_pref("extensions.softonic.lastVrsnTs", "1.5.11.522:37:21");
user_pref("extensions.softonic.newTab", true);
user_pref("extensions.softonic.newTabUrl", "hxxp://search.softonic.com/MON00005/tb_v1?SearchSource=15&cc=");
user_pref("extensions.softonic.noFFXTlbr", false);
user_pref("extensions.softonic.prdct", "softonic");
user_pref("extensions.softonic.prtnrId", "softonic");
user_pref("extensions.softonic.smplGrp", "eng7");
user_pref("extensions.softonic.srchPrvdr", "Search the web (Softonic)");
user_pref("extensions.softonic.tlbrId", "en11DECdefault");
user_pref("extensions.softonic.tlbrSrchUrl", "hxxp://search.softonic.com/MON00005/tb_v1?SearchSource=1&cc=&q=");
user_pref("extensions.softonic.vrsn", "1.5.11.5");
user_pref("extensions.softonic.vrsnTs", "1.5.11.522:37:21");
user_pref("extensions.softonic.vrsni", "1.5.11.5");
user_pref("extensions.softonic_i.aflt", "SD");
user_pref("extensions.softonic_i.dfltLng", "");
user_pref("extensions.softonic_i.dfltSrch", true);
user_pref("extensions.softonic_i.dnsErr", true);
user_pref("extensions.softonic_i.excTlbr", false);
user_pref("extensions.softonic_i.hmpg", true);
user_pref("extensions.softonic_i.hmpgUrl", "hxxp://search.softonic.com/MON00005/tb_v1?SearchSource=13&cc=");
user_pref("extensions.softonic_i.id", "a4a3acad00000000000014dae96b1041");
user_pref("extensions.softonic_i.instlDay", "15360");
user_pref("extensions.softonic_i.instlRef", "MON00005");
user_pref("extensions.softonic_i.keyWordUrl", "hxxp://search.softonic.com/MON00005/tb_v1?SearchSource=2&cc=&q=");
user_pref("extensions.softonic_i.newTab", true);
user_pref("extensions.softonic_i.newTabUrl", "hxxp://search.softonic.com/MON00005/tb_v1?SearchSource=15&cc=");
user_pref("extensions.softonic_i.prdct", "softonic");
user_pref("extensions.softonic_i.prtnrId", "softonic");
user_pref("extensions.softonic_i.smplGrp", "eng7");
user_pref("extensions.softonic_i.srchPrvdr", "Search the web (Softonic)");
user_pref("extensions.softonic_i.tlbrId", "en11DECdefault");
user_pref("extensions.softonic_i.tlbrSrchUrl", "hxxp://search.softonic.com/MON00005/tb_v1?SearchSource=1&cc=&q=");
user_pref("extensions.softonic_i.vrsn", "1.5.11.5");
user_pref("extensions.softonic_i.vrsnTs", "1.5.11.522:37:21");
user_pref("extensions.softonic_i.vrsni", "1.5.11.5");
user_pref("extentions.y2layers.defaultEnableAppsList", "twittube,ezLooker,pagerage,buzzdock,toprelatedtopics");
user_pref("extentions.y2layers.installId", "3dd5fdbb-0044-4fbe-a7b7-043a8ed17249");
user_pref("extentions.y2layers.lastDnsTest", 371813);
user_pref("sweetim.toolbar.previous.browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072254&SearchSource=3&q={searchTerms}");
user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "Ask.com");
user_pref("sweetim.toolbar.previous.browser.startup.homepage", "hxxp://eu.ask.com/?l=dis&o=41648005&gct=hp");
user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com/?crg=3.1010000&st=18&barid={3AC92260-7837-11E1-B97D-14DAE96B1041}");
Emptied folder: C:\Users\Tom ç\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\minidumps [173 files]

~~~ Chrome

Successfully deleted: [Folder] C:\Users\Tom ç\appdata\local\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on çt 27. 06. 2013 at 14:08:40,90
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Do druhého postu dávam log AdwCleaner. P.S. zabudol som dodať že mám windows 7 64. bit. verziu, snaď to nebude problém.

Tu je log.

# AdwCleaner v2.303 - Log vytvorený 27/06/2013 o 14:10:37
# Aktualizované 08/06/2013 Xplode
# Operaený systém : Windows 7 Home Premium Service Pack 1 (64 bits)
# Uživateľ : Tomáš - TOMÁŠ-PC
# Spustený systém : Normálny
# Spustené z : C:\Users\Tomáš\Desktop\adwcleaner.exe
# Voľba [Prehľada?]

***** [Služby] *****

Nájdené : BCUService

***** [Súbory / Adresáre] *****

Adresár Nájdené : C:\Program Files (x86)\1ClickDownload
Adresár Nájdené : C:\Program Files (x86)\AVG Secure Search
Adresár Nájdené : C:\Program Files (x86)\Common Files\AVG Secure Search
Adresár Nájdené : C:\Program Files (x86)\DeviceVM
Adresár Nájdené : C:\Program Files (x86)\Gophoto.it
Adresár Nájdené : C:\Program Files (x86)\HDvidCodec.com
Adresár Nájdené : C:\Program Files (x86)\SweetIM
Adresár Nájdené : C:\Program Files (x86)\uTorrentControl
Adresár Nájdené : C:\ProgramData\AVG Secure Search
Adresár Nájdené : C:\ProgramData\DeviceVM
Adresár Nájdené : C:\ProgramData\ParetoLogic
Adresár Nájdené : C:\Users\Tomáš\AppData\Local\APN
Adresár Nájdené : C:\Users\Tomáš\AppData\Local\AVG Secure Search
Adresár Nájdené : C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Adresár Nájdené : C:\Users\Tomáš\AppData\LocalLow\AVG Secure Search
Adresár Nájdené : C:\Users\Tomáš\AppData\LocalLow\uTorrentControl
Adresár Nájdené : C:\Users\Tomáš\AppData\Roaming\DeviceVM
Adresár Nájdené : C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HDvidCodec.com
Adresár Nájdené : C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\bnan144h.default\CT3072254
Adresár Nájdené : C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\bnan144h.default\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}
Adresár Nájdené : C:\Users\Tomáš\AppData\Roaming\ParetoLogic
Adresár Nájdené : C:\Windows\Installer\{B85C4CB2-B352-4BD8-818C-BCE353599107}
Súbor Nájdené : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
Súbor Nájdené : C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\bnan144h.default\extensions\gophoto@gophoto.it.xpi
Súbor Nájdené : C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\bnan144h.default\extensions\plugin@yontoo.com.xpi

***** [Registre] *****

Hodnota Nájdené : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Hodnota Nájdené : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E9DF9360-97F8-4690-AFE6-996C80790DA4}]
Hodnota Nájdené : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Hodnota Nájdené : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}]
Hodnota Nájdené : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{E9DF9360-97F8-4690-AFE6-996C80790DA4}]
Hodnota Nájdené : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{EEE6C35D-6118-11DC-9C72-001320C79847}]
Hodnota Nájdené : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{E9DF9360-97F8-4690-AFE6-996C80790DA4}]
Hodnota Nájdené : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [BCU]
Hodnota Nájdené : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Hodnota Nájdené : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Hodnota Nájdené : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
Hodnota Nájdené : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Hodnota Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Hodnota Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{E9DF9360-97F8-4690-AFE6-996C80790DA4}]
Hodnota Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Kľúe Nájdené : HKCU\Software\AppDataLow\Software\uTorrentControl
Kľúe Nájdené : HKCU\Software\AVG Secure Search
Kľúe Nájdené : HKCU\Software\DataMngr
Kľúe Nájdené : HKCU\Software\delta LTD
Kľúe Nájdené : HKCU\Software\DeviceVM
Kľúe Nájdené : HKCU\Software\Headlight
Kľúe Nájdené : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7A89A7E3-6ADD-4EF9-8EE7-A3C3B7D83BB0}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{00CBB66B-1D3B-46D3-9577-323A336ACB50}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{963B125B-8B21-49A2-A3A8-E37092276531}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E9DF9360-97F8-4690-AFE6-996C80790DA4}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00CBB66B-1D3B-46D3-9577-323A336ACB50}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{963B125B-8B21-49A2-A3A8-E37092276531}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E9DF9360-97F8-4690-AFE6-996C80790DA4}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Kľúe Nájdené : HKCU\Software\a28fdae56fbd15
Kľúe Nájdené : HKLM\Software\AVG Secure Search
Kľúe Nájdené : HKLM\Software\AVG Security Toolbar
Kľúe Nájdené : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\AppID\{3A188115-B81B-48F2-A958-F974C8F3F309}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\AppID\{B15F118E-AF21-45E8-A809-29FDD7362565}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Kľúe Nájdené : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Kľúe Nájdené : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Kľúe Nájdené : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Kľúe Nájdené : HKLM\Software\Classes\Installer\Features\2BC4C58B253B8DB418C8CB3E35951970
Kľúe Nájdené : HKLM\Software\Classes\Installer\Features\54A306F2659DB694185B057D28249467
Kľúe Nájdené : HKLM\Software\Classes\Installer\Products\2BC4C58B253B8DB418C8CB3E35951970
Kľúe Nájdené : HKLM\Software\Classes\Installer\Products\54A306F2659DB694185B057D28249467
Kľúe Nájdené : HKLM\SOFTWARE\Classes\TypeLib\{11D9E165-B8C1-4734-A56C-BC4FCACA966B}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\TypeLib\{77AA6435-2488-4A94-9FE5-49519DD2ED9B}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\TypeLib\{B15F118E-AF21-45E8-A809-29FDD7362565}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Kľúe Nájdené : HKLM\Software\DataMngr
Kľúe Nájdené : HKLM\Software\DeviceVM
Kľúe Nájdené : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Kľúe Nájdené : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Kľúe Nájdené : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5716B037-6714-4930-8DF2-BFCDFB18A78A}
Kľúe Nájdené : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Kľúe Nájdené : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Kľúe Nájdené : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Kľúe Nájdené : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Kľúe Nájdené : HKLM\Software\uTorrentControl
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{44B50C01-4993-48E2-ADEE-D812BAE2E9A2}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5716B037-6714-4930-8DF2-BFCDFB18A78A}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A3E2F089-DDBB-4CBF-B06C-5D44DA316ED3}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A5679AB0-C59E-49E7-83C4-5289F844A6E0}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CA0167C2-6295-41B8-9BDA-704B2F5E4CD9}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E9DF9360-97F8-4690-AFE6-996C80790DA4}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8CDBF0F0-B1BE-4DB6-A2FC-62EAB9A7E59F}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9CF034EA-7B46-48D3-8895-8A14B32AE445}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E5EB8CA8-A374-4179-A263-27EF6E64B9DA}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E9DF9360-97F8-4690-AFE6-996C80790DA4}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2F603A45-D956-496B-81B5-50D782424976}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B85C4CB2-B352-4BD8-818C-BCE353599107}
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IM
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Softonic
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\uTorrentControl Toolbar
Kľúe Nájdené : HKLM\SOFTWARE\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{78CE34FD-F6D4-4866-B79C-A37268D06A04}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Kľúe Nájdené : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Kľúe Nájdené : HKLM\SOFTWARE\Tarma Installer

***** [Internetové prehliadaee] *****

-\\ Internet Explorer v10.0.9200.16611

[OK] Registre sú eisté.

-\\ Mozilla Firefox v21.0 (cs)

Súbor : C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\bnan144h.default\prefs.js

Nájdené : user_pref("CT3072254.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Nájdené : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3072254/CT3072254[...]
Nájdené : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3072254", [...]
Nájdené : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.10[...]
Nájdené : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3072254",[...]
Nájdené : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"15c[...]
Nájdené : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Tomáa\\AppData\\Roaming\\Mozilla\\F[...]
Nájdené : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\10.2.0.3");

-\\ Google Chrome v27.0.1453.116

Súbor : C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Súbor je eistý.

*************************

AdwCleaner[R1].txt - [21800 octets] - [27/06/2013 14:10:37]

########## EOF - C:\AdwCleaner[R1].txt - [21861 octets] ##########

Spustte znovu AdwCleaner

Pokud pouzivate Win Vista ci W7, kliknete na AdwCleaner pravym a dejte Run As Administrator ci Spustit jako spravce
Kliknete na Smazat
PC provede opravu, restartuje se a da Vam log (C:\AdwCleaner [S1].txt) , jeho obsah vlozte sem

Tak prikladám log po reštarte.

# AdwCleaner v2.303 - Log vytvorený 27/06/2013 o 15:06:46
# Aktualizované 08/06/2013 Xplode
# Operaený systém : Windows 7 Home Premium Service Pack 1 (64 bits)
# Uživateľ : Tomáš - TOMÁŠ-PC
# Spustený systém : Normálny
# Spustené z : C:\Users\Tomáš\Desktop\adwcleaner.exe
# Voľba [Vymaza?]

***** [Služby] *****

Zastavené & vymazané : BCUService

***** [Súbory / Adresáre] *****

Adresár Vymazané : C:\Program Files (x86)\1ClickDownload
Adresár Vymazané : C:\Program Files (x86)\AVG Secure Search
Adresár Vymazané : C:\Program Files (x86)\DeviceVM
Adresár Vymazané : C:\Program Files (x86)\Gophoto.it
Adresár Vymazané : C:\Program Files (x86)\HDvidCodec.com
Adresár Vymazané : C:\Program Files (x86)\SweetIM
Adresár Vymazané : C:\Program Files (x86)\uTorrentControl
Adresár Vymazané : C:\ProgramData\AVG Secure Search
Adresár Vymazané : C:\ProgramData\DeviceVM
Adresár Vymazané : C:\ProgramData\ParetoLogic
Adresár Vymazané : C:\Users\Tomáš\AppData\Local\APN
Adresár Vymazané : C:\Users\Tomáš\AppData\Local\AVG Secure Search
Adresár Vymazané : C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Adresár Vymazané : C:\Users\Tomáš\AppData\LocalLow\AVG Secure Search
Adresár Vymazané : C:\Users\Tomáš\AppData\LocalLow\uTorrentControl
Adresár Vymazané : C:\Users\Tomáš\AppData\Roaming\DeviceVM
Adresár Vymazané : C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HDvidCodec.com
Adresár Vymazané : C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\bnan144h.default\CT3072254
Adresár Vymazané : C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\bnan144h.default\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}
Adresár Vymazané : C:\Users\Tomáš\AppData\Roaming\ParetoLogic
Adresár Vymazané : C:\Windows\Installer\{B85C4CB2-B352-4BD8-818C-BCE353599107}
Súbor Vymazané : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
Súbor Vymazané : C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\bnan144h.default\extensions\gophoto@gophoto.it.xpi
Súbor Vymazané : C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\bnan144h.default\extensions\plugin@yontoo.com.xpi
Vymazané pri reštarte : C:\Program Files (x86)\Common Files\AVG Secure Search

***** [Registre] *****

Hodnota Vymazané : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Hodnota Vymazané : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E9DF9360-97F8-4690-AFE6-996C80790DA4}]
Hodnota Vymazané : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Hodnota Vymazané : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}]
Hodnota Vymazané : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{E9DF9360-97F8-4690-AFE6-996C80790DA4}]
Hodnota Vymazané : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{EEE6C35D-6118-11DC-9C72-001320C79847}]
Hodnota Vymazané : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{E9DF9360-97F8-4690-AFE6-996C80790DA4}]
Hodnota Vymazané : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [BCU]
Hodnota Vymazané : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Hodnota Vymazané : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Hodnota Vymazané : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
Hodnota Vymazané : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Hodnota Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Hodnota Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{E9DF9360-97F8-4690-AFE6-996C80790DA4}]
Hodnota Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Kľúe Vymazané : HKCU\Software\AppDataLow\Software\uTorrentControl
Kľúe Vymazané : HKCU\Software\AVG Secure Search
Kľúe Vymazané : HKCU\Software\DataMngr
Kľúe Vymazané : HKCU\Software\delta LTD
Kľúe Vymazané : HKCU\Software\DeviceVM
Kľúe Vymazané : HKCU\Software\Headlight
Kľúe Vymazané : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7A89A7E3-6ADD-4EF9-8EE7-A3C3B7D83BB0}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{00CBB66B-1D3B-46D3-9577-323A336ACB50}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{963B125B-8B21-49A2-A3A8-E37092276531}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E9DF9360-97F8-4690-AFE6-996C80790DA4}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00CBB66B-1D3B-46D3-9577-323A336ACB50}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{963B125B-8B21-49A2-A3A8-E37092276531}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E9DF9360-97F8-4690-AFE6-996C80790DA4}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Kľúe Vymazané : HKCU\Software\a28fdae56fbd15
Kľúe Vymazané : HKLM\Software\AVG Secure Search
Kľúe Vymazané : HKLM\Software\AVG Security Toolbar
Kľúe Vymazané : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\AppID\{3A188115-B81B-48F2-A958-F974C8F3F309}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\AppID\{B15F118E-AF21-45E8-A809-29FDD7362565}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Kľúe Vymazané : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Kľúe Vymazané : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Kľúe Vymazané : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Kľúe Vymazané : HKLM\Software\Classes\Installer\Features\2BC4C58B253B8DB418C8CB3E35951970
Kľúe Vymazané : HKLM\Software\Classes\Installer\Features\54A306F2659DB694185B057D28249467
Kľúe Vymazané : HKLM\Software\Classes\Installer\Products\2BC4C58B253B8DB418C8CB3E35951970
Kľúe Vymazané : HKLM\Software\Classes\Installer\Products\54A306F2659DB694185B057D28249467
Kľúe Vymazané : HKLM\SOFTWARE\Classes\TypeLib\{11D9E165-B8C1-4734-A56C-BC4FCACA966B}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\TypeLib\{77AA6435-2488-4A94-9FE5-49519DD2ED9B}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\TypeLib\{B15F118E-AF21-45E8-A809-29FDD7362565}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Kľúe Vymazané : HKLM\Software\DataMngr
Kľúe Vymazané : HKLM\Software\DeviceVM
Kľúe Vymazané : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Kľúe Vymazané : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Kľúe Vymazané : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5716B037-6714-4930-8DF2-BFCDFB18A78A}
Kľúe Vymazané : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Kľúe Vymazané : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Kľúe Vymazané : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Kľúe Vymazané : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Kľúe Vymazané : HKLM\Software\uTorrentControl
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{44B50C01-4993-48E2-ADEE-D812BAE2E9A2}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5716B037-6714-4930-8DF2-BFCDFB18A78A}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A3E2F089-DDBB-4CBF-B06C-5D44DA316ED3}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A5679AB0-C59E-49E7-83C4-5289F844A6E0}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CA0167C2-6295-41B8-9BDA-704B2F5E4CD9}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E9DF9360-97F8-4690-AFE6-996C80790DA4}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8CDBF0F0-B1BE-4DB6-A2FC-62EAB9A7E59F}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9CF034EA-7B46-48D3-8895-8A14B32AE445}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E5EB8CA8-A374-4179-A263-27EF6E64B9DA}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E9DF9360-97F8-4690-AFE6-996C80790DA4}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2F603A45-D956-496B-81B5-50D782424976}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B85C4CB2-B352-4BD8-818C-BCE353599107}
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IM
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Softonic
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\uTorrentControl Toolbar
Kľúe Vymazané : HKLM\SOFTWARE\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{78CE34FD-F6D4-4866-B79C-A37268D06A04}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Kľúe Vymazané : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Kľúe Vymazané : HKLM\SOFTWARE\Tarma Installer

***** [Internetové prehliadaee] *****

-\\ Internet Explorer v10.0.9200.16611

[OK] Registre sú eisté.

-\\ Mozilla Firefox v21.0 (cs)

Súbor : C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\bnan144h.default\prefs.js

Vymazané : user_pref("CT3072254.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Vymazané : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3072254/CT3072254[...]
Vymazané : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3072254", [...]
Vymazané : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.10[...]
Vymazané : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3072254",[...]
Vymazané : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"15c[...]
Vymazané : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Tomáa\\AppData\\Roaming\\Mozilla\\F[...]
Vymazané : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\10.2.0.3");

-\\ Google Chrome v27.0.1453.116

*************************

AdwCleaner[R1].txt - [21877 octets] - [27/06/2013 14:10:37]
AdwCleaner[S1].txt - [21990 octets] - [27/06/2013 15:06:46]

########## EOF - C:\AdwCleaner[S1].txt - [22051 octets] ##########

Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) http://forum.viry.cz/viewtopic.php?f=29&t=115222

Provedte aktualizaci
Provedte uplny sken - nic nemazte
MBAM miva obcas falesne detekce, proto vlozte log do prispevku a pockejte na posouzeni

Tak tu je ten log.

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verzia databázy: v2013.06.27.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16618
Tomáš :: TOMÁŠ-PC [administrátor]

27. 6. 2013 17:23:37
mbam-log-2013-06-27 (17-23-37).txt

Typ kontroly: Úplná kontrola (C:\|D:\|)
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM
Možnosti kontroly vypnuté: P2P
Objektov kontrolovaných: 373209
Uplynutý čas: 44 min, 8 sek

Detegované služby pamäte: 0
(Škodlivé položky neboli zistené)

Detegované moduly pamäte: 0
(Škodlivé položky neboli zistené)

Detegované registračné kľúče: 0
(Škodlivé položky neboli zistené)

Detegované registračné hodnoty: 0
(Škodlivé položky neboli zistené)

Detegované položky registračných dát: 0
(Škodlivé položky neboli zistené)

Detegované priečinky: 0
(Škodlivé položky neboli zistené)

Detegované súbory: 0
(Škodlivé položky neboli zistené)

(koniec)

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
Zaskrtnete okenko Pro vsechny uzivatele
Zaskrtnete okenko Kontrola na havet "LOP"
Zaskrtnete okenko Kontrola na havet "Purity"
Stari souboru zmente z 30 dnu na 7 dnu
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5 

*crack* /s
*keygen* /s
*loader* /s

Kliknete na tlacitko Prohledat
Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku

Tak začnem pridávať ten OTL log.
1.časť

OTL logfile created on: 27. 6. 2013 18:32:56 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Tomáš\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16614)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

4,00 Gb Total Physical Memory | 1,75 Gb Available Physical Memory | 43,74% Memory free
8,00 Gb Paging File | 4,60 Gb Available in Paging File | 57,58% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 244,04 Gb Total Space | 30,74 Gb Free Space | 12,60% Space Free | Partition Type: NTFS
Drive D: | 221,62 Gb Total Space | 221,51 Gb Free Space | 99,95% Space Free | Partition Type: NTFS

Computer Name: TOMÁŠ-PC | User Name: Tomáš | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2013/06/27 18:30:12 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Tomáš\Desktop\OTL.exe
PRC - [2013/06/27 13:52:33 | 001,598,128 | ---- | M] (AVG Secure Search) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.3.0\ToolbarUpdater.exe
PRC - [2013/06/11 22:44:28 | 001,855,880 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
PRC - [2013/06/03 14:14:40 | 001,106,432 | ---- | M] () -- C:\Users\Tomáš\Desktop\Metin2 Anubis official\Anubis.bin
PRC - [2013/05/22 02:05:02 | 000,920,472 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2013/04/23 09:48:17 | 003,574,624 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
PRC - [2012/12/11 04:52:44 | 003,147,384 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe
PRC - [2012/12/10 12:11:44 | 001,342,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
PRC - [2012/11/16 00:34:30 | 005,814,904 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
PRC - [2012/10/22 14:05:08 | 000,196,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
PRC - [2012/05/20 10:33:00 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2011/07/28 18:12:10 | 000,393,216 | ---- | M] (AMD) -- C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
PRC - [2011/06/15 18:33:20 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
PRC - [2010/02/03 17:17:18 | 005,756,544 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe

========== Modules (No Company Name) ==========

MOD - [2013/06/11 22:44:27 | 016,033,160 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll
MOD - [2013/06/03 14:14:40 | 001,106,432 | ---- | M] () -- C:\Users\Tomáš\Desktop\Metin2 Anubis official\Anubis.bin
MOD - [2013/05/22 02:05:02 | 003,128,728 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2013/04/25 13:30:43 | 000,191,280 | ---- | M] () -- C:\Program Files (x86)\Garena Plus\ggspawn.dll
MOD - [2012/04/30 09:55:48 | 000,026,112 | ---- | M] () -- C:\Program Files (x86)\SplitMediaLabs\XSplit\swresample-0.dll
MOD - [2012/04/30 09:55:45 | 008,358,400 | ---- | M] () -- C:\Program Files (x86)\SplitMediaLabs\XSplit\avcodec-54.dll
MOD - [2012/04/30 09:55:45 | 001,152,512 | ---- | M] () -- C:\Program Files (x86)\SplitMediaLabs\XSplit\avformat-54.dll
MOD - [2012/04/30 09:55:45 | 000,333,824 | ---- | M] () -- C:\Program Files (x86)\SplitMediaLabs\XSplit\swscale-2.dll
MOD - [2012/04/30 09:55:45 | 000,151,040 | ---- | M] () -- C:\Program Files (x86)\SplitMediaLabs\XSplit\avutil-51.dll
MOD - [2012/02/22 10:52:16 | 000,122,136 | ---- | M] () -- C:\Program Files (x86)\Garena Plus\ggcode.dll
MOD - [2011/11/10 15:25:31 | 001,806,336 | ---- | M] () -- C:\Users\Tomáš\Desktop\Metin2 Anubis official\SpeedTreeRT.dll
MOD - [2011/11/10 15:25:31 | 000,349,696 | ---- | M] () -- C:\Users\Tomáš\Desktop\Metin2 Anubis official\mss32.dll
MOD - [2011/11/10 15:22:16 | 000,197,120 | ---- | M] () -- C:\Users\Tomáš\Desktop\Metin2 Anubis official\miles\mssvoice.asi
MOD - [2011/11/10 15:22:16 | 000,125,952 | ---- | M] () -- C:\Users\Tomáš\Desktop\Metin2 Anubis official\miles\mssmp3.asi
MOD - [2011/11/10 15:22:16 | 000,093,696 | ---- | M] () -- C:\Users\Tomáš\Desktop\Metin2 Anubis official\miles\mssdsp.flt
MOD - [2011/11/10 15:22:16 | 000,083,456 | ---- | M] () -- C:\Users\Tomáš\Desktop\Metin2 Anubis official\miles\mssa3d.m3d
MOD - [2011/11/10 15:22:16 | 000,080,896 | ---- | M] () -- C:\Users\Tomáš\Desktop\Metin2 Anubis official\miles\mssdx7.m3d
MOD - [2011/11/10 15:22:15 | 000,354,816 | ---- | M] () -- C:\Users\Tomáš\Desktop\Metin2 Anubis official\miles\mssrsx.m3d
MOD - [2011/11/10 15:22:15 | 000,103,424 | ---- | M] () -- C:\Users\Tomáš\Desktop\Metin2 Anubis official\miles\msseax.m3d
MOD - [2011/11/10 15:22:15 | 000,070,656 | ---- | M] () -- C:\Users\Tomáš\Desktop\Metin2 Anubis official\miles\mssds3d.m3d
MOD - [2011/11/10 15:22:14 | 000,067,072 | ---- | M] () -- C:\Users\Tomáš\Desktop\Metin2 Anubis official\miles\msssoft.m3d
MOD - [2011/07/28 18:11:28 | 000,090,112 | ---- | M] () -- C:\Program Files (x86)\ATI Technologies\HydraVision\hydracsy.dll
MOD - [2009/09/30 05:33:08 | 000,024,576 | R--- | M] () -- C:\Windows\SysWOW64\AsIO.dll
MOD - [2009/03/19 23:35:52 | 000,208,896 | ---- | M] () -- C:\Program Files (x86)\ASUS\EPU-4 Engine\AiNap.dll
MOD - [2009/03/19 23:35:50 | 000,008,704 | ---- | M] () -- C:\Program Files (x86)\ASUS\EPU-4 Engine\vvc.dll
MOD - [2009/01/15 15:55:10 | 000,565,248 | ---- | M] () -- C:\Program Files (x86)\ASUS\EPU-4 Engine\pngio.dll

========== Services (SafeList) ==========

SRV:64bit: - [2012/12/19 21:56:00 | 000,240,640 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2012/12/19 16:32:12 | 000,361,984 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64bit: - [2010/01/21 02:53:42 | 000,496,232 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe -- (ForceWare Intelligent Application Manager (IAM)
SRV:64bit: - [2010/01/21 02:53:42 | 000,209,000 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe -- (nSvcIp)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013/06/27 13:52:33 | 001,598,128 | ---- | M] (AVG Secure Search) [Auto | Running] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.3.0\ToolbarUpdater.exe -- (vToolbarUpdater15.3.0)
SRV - [2013/06/11 22:44:28 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/06/07 00:06:24 | 000,543,656 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013/06/03 16:21:54 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/05/22 02:05:02 | 000,117,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/05/15 12:08:44 | 002,467,664 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2013/04/23 09:48:17 | 003,574,624 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8)
SRV - [2012/12/10 12:11:44 | 001,342,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgfws.exe -- (avgfws)
SRV - [2012/11/16 00:34:30 | 005,814,904 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012/10/22 14:05:08 | 000,196,664 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe -- (avgwd)
SRV - [2012/05/20 10:33:00 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2011/07/07 20:31:08 | 000,195,336 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/06/15 18:33:20 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (BBUpdate)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/06/27 13:52:33 | 000,045,856 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
DRV:64bit: - [2012/12/19 22:48:48 | 011,278,336 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2012/12/19 21:32:54 | 000,552,960 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2012/11/16 00:33:24 | 000,111,968 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
DRV:64bit: - [2012/11/06 13:11:52 | 000,096,256 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2012/10/22 14:02:44 | 000,154,464 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgidsdrivera.sys -- (AVGIDSDriver)
DRV:64bit: - [2012/10/15 04:48:50 | 000,063,328 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
DRV:64bit: - [2012/10/02 04:30:38 | 000,185,696 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
DRV:64bit: - [2012/09/21 04:46:04 | 000,200,032 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (Avgtdia)
DRV:64bit: - [2012/09/21 04:46:00 | 000,225,120 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\avgloga.sys -- (Avgloga)
DRV:64bit: - [2012/09/14 04:05:18 | 000,040,800 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
DRV:64bit: - [2012/09/04 11:39:32 | 000,050,296 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgfwd6a.sys -- (Avgfwfd)
DRV:64bit: - [2012/04/09 10:13:58 | 000,057,472 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Stopped] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.2)
DRV:64bit: - [2012/04/09 10:13:58 | 000,057,472 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.01)
DRV:64bit: - [2012/03/01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/12/13 06:12:31 | 000,279,616 | ---- | M] (DT Soft Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2011/05/13 03:21:04 | 000,177,640 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdm.sys -- (ssadmdm)
DRV:64bit: - [2011/05/13 03:21:04 | 000,146,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadserd.sys -- (ssadserd)
DRV:64bit: - [2011/05/13 03:21:02 | 000,157,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadbus.sys -- (ssadbus)
DRV:64bit: - [2011/05/13 03:21:02 | 000,036,328 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadadb.sys -- (androidusb)
DRV:64bit: - [2011/05/13 03:21:02 | 000,016,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdfl.sys -- (ssadmdfl)
DRV:64bit: - [2011/03/11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/21 05:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/21 05:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/08/12 12:07:50 | 000,350,952 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvmf6264.sys -- (NVNET)
DRV:64bit: - [2010/05/15 13:11:48 | 001,327,520 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV:64bit: - [2010/02/18 10:18:24 | 000,046,136 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64)
DRV:64bit: - [2009/07/16 05:38:40 | 000,015,416 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (1394hub)
DRV:64bit: - [2009/06/10 22:35:35 | 000,408,960 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvm62x64.sys -- (NVENETFD)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/03/18 18:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV - [2009/07/14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{3DE1C549-8AA3-4E2D-A71A-4CEBDA13FE3D}: "URL" = http://www.bing.com/search?q={searchTer ... -SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{89931546-F838-4D15-8CA3-9C56EE442D63}: "URL" = http://www.bing.com/search?q={searchTer ... -SearchBox

IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://syb.msn.com
IE - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\..\SearchScopes\{858CF569-AB4E-441d-A698-C2D43433AA7D}: "URL" = http://search.yahoo.com/search?p={searc ... &type=EGMB
IE - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\..\SearchScopes\{EEE805AB-37D3-4510-A3BC-0DA2ABF7D27F}: "URL" = http://www.google.com/custom?client=pub ... earchTerms}
IE - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.startup.homepage: "http://www.google.sk/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:21.0
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.110.0: C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll File not found
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.122.0: C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll File not found
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.1.3: C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\ProgramData\NexonEU\NGM\npNxGameeu.dll File not found
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@raidcall.en/RCplugin: C:\Users\Tomáš\AppData\Roaming\raidcall\plugins\nprcplugin.dll (Raidcall)
FF - HKLM\Software\MozillaPlugins\@t.garena.com/garenatalk: C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll ( Garena)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Tomáš\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET NOD32 ANTIVIRUS\MOZILLA THUNDERBIRD
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011/12/17 11:53:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\fbphotozoom@installdaddy.com: C:\Program Files (x86)\fbphotozoom\fbphotozoom15.xpi
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/05/22 02:04:56 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/05/22 02:04:56 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Tomáš\AppData\Roaming\IDM\idmmzcc5

[2011/12/10 13:06:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tomáš\AppData\Roaming\mozilla\Extensions
[2013/06/27 15:07:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tomáš\AppData\Roaming\mozilla\Firefox\Profiles\bnan144h.default\extensions
[2013/05/29 20:16:13 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Tomáš\AppData\Roaming\mozilla\Firefox\Profiles\bnan144h.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2012/01/09 20:04:14 | 000,164,858 | ---- | M] () (No name found) -- C:\Users\Tomáš\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}.xpi
[2012/06/15 16:49:29 | 000,033,590 | ---- | M] () (No name found) -- C:\Users\Tomáš\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\extensions\{7CBBC4B3-C5EB-4b7e-99A5-6649B9D257A7}.xpi
[2013/05/09 00:17:00 | 000,870,680 | ---- | M] () (No name found) -- C:\Users\Tomáš\AppData\Roaming\mozilla\firefox\profiles\bnan144h.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013/05/22 02:05:03 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/06/12 12:56:39 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/06/12 12:56:39 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/06/12 12:56:40 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/05/22 02:05:03 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

O1 HOSTS File: ([2012/03/12 00:24:11 | 000,000,858 | R--- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 173.212.255.178 ad.garenanow.com
O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [RaidCall] C:\Program Files (x86)\RaidCall\raidcall.exe (RAIDCALL.COM)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001..\Run: [GarenaPlus] C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe ()
O4 - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001..\Run: [HydraVisionDesktopManager] C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe (AMD)
O4 - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
O4 - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKLM..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk = C:\Users\Tomáš\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe (GameRanger Technologies)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8:64bit: - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
O8:64bit: - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\.DEFAULT\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-19\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: sony.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: sony.com ([]* in )
O15 - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\..Trusted Domains: sony.com ([]* in Trusted sites)
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 10.17.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{53FBC078-DF29-4CC7-9B09-59D84E404FCA}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\linkscanner - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\linkscanner - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\SysWow64\DivX.dll (DivX, Inc.)
Drivers32: vidc.yv12 - C:\Windows\SysWow64\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2013/06/27 18:30:12 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Tomáš\Desktop\OTL.exe
[2013/06/27 17:20:37 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\AppData\Roaming\Malwarebytes
[2013/06/27 17:20:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013/06/27 17:20:03 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2013/06/27 17:20:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013/06/27 17:20:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2013/06/27 16:33:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3
[2013/06/27 16:33:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cheat Engine 6.3
[2013/06/27 14:04:25 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2013/06/27 14:04:12 | 000,000,000 | ---D | C] -- C:\JRT
[2013/06/27 14:03:07 | 000,545,954 | ---- | C] (Oleg N. Scherbakov) -- C:\Users\Tomáš\Desktop\JRT.exe
[2013/06/27 13:39:37 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2013/06/27 13:39:37 | 000,000,000 | ---D | C] -- C:\rsit
[2013/06/26 16:46:43 | 000,000,000 | ---D | C] -- C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dungeon Defenders
[2013/06/26 16:45:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dungeon Defenders
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2013/06/27 18:34:36 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013/06/27 18:30:12 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Tomáš\Desktop\OTL.exe
[2013/06/27 17:51:02 | 000,000,934 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/06/27 17:44:03 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/06/27 17:20:05 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/06/27 16:33:43 | 000,001,089 | ---- | M] () -- C:\Users\Tomáš\Desktop\Cheat Engine.lnk
[2013/06/27 15:16:22 | 000,021,888 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/06/27 15:16:22 | 000,021,888 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/06/27 15:09:29 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/06/27 15:09:25 | 000,000,350 | ---- | M] () -- C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
[2013/06/27 15:09:25 | 000,000,350 | ---- | M] () -- C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job
[2013/06/27 15:09:19 | 000,000,354 | ---- | M] () -- C:\Windows\tasks\ROC_JAN2013_TB_rmv.job
[2013/06/27 15:09:09 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/06/27 15:09:08 | 3220,615,168 | -HS- | M] () -- C:\hiberfil.sys
[2013/06/27 15:07:08 | 000,000,121 | ---- | M] () -- C:\Windows\DeleteOnReboot.bat
[2013/06/27 14:03:54 | 000,648,201 | ---- | M] () -- C:\Users\Tomáš\Desktop\adwcleaner.exe
[2013/06/27 14:03:23 | 000,545,954 | ---- | M] (Oleg N. Scherbakov) -- C:\Users\Tomáš\Desktop\JRT.exe
[2013/06/27 13:52:49 | 000,003,716 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
[2013/06/27 13:52:33 | 000,045,856 | ---- | M] (AVG Technologies) -- C:\Windows\SysNative\drivers\avgtpx64.sys
[2013/06/27 13:19:16 | 000,832,273 | ---- | M] () -- C:\Users\Tomáš\Desktop\RSITx64.exe
[2013/06/27 12:30:16 | 000,432,832 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/06/26 17:57:53 | 000,001,848 | ---- | M] () -- C:\Users\Tomáš\Desktop\DunDefGame - odkaz.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/06/27 18:34:36 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013/06/27 17:20:05 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/06/27 16:33:43 | 000,001,089 | ---- | C] () -- C:\Users\Tomáš\Desktop\Cheat Engine.lnk
[2013/06/27 15:07:02 | 000,000,121 | ---- | C] () -- C:\Windows\DeleteOnReboot.bat
[2013/06/27 14:03:49 | 000,648,201 | ---- | C] () -- C:\Users\Tomáš\Desktop\adwcleaner.exe
[2013/06/27 13:51:44 | 000,003,716 | ---- | C] () -- C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
[2013/06/27 13:19:15 | 000,832,273 | ---- | C] () -- C:\Users\Tomáš\Desktop\RSITx64.exe
[2013/06/27 12:30:02 | 000,432,832 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/06/26 17:57:53 | 000,001,848 | ---- | C] () -- C:\Users\Tomáš\Desktop\DunDefGame - odkaz.lnk
[2012/08/15 23:23:59 | 000,000,977 | ---- | C] () -- C:\Windows\eReg.dat
[2012/05/02 14:58:10 | 000,029,184 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2012/03/09 06:31:26 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012/03/09 06:31:26 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2012/01/09 19:49:48 | 000,764,302 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/12/15 17:40:02 | 000,291,088 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011/12/15 17:40:00 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011/12/11 21:52:15 | 000,045,270 | ---- | C] () -- C:\Users\Tomáš\AppData\Roaming\room_v3.dat
[2011/12/09 18:58:03 | 000,007,597 | ---- | C] () -- C:\Users\Tomáš\AppData\Local\Resmon.ResmonCfg
[2011/11/30 15:43:09 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011/11/30 15:31:12 | 000,024,576 | R--- | C] () -- C:\Windows\SysWow64\AsIO.dll
[2011/11/30 15:31:12 | 000,013,440 | R--- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2011/11/30 15:31:09 | 000,011,832 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp64.sys
[2011/11/30 15:31:09 | 000,010,216 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp32.sys
[2011/11/30 15:15:47 | 000,031,065 | ---- | C] () -- C:\Windows\Ascd_log.ini
[2011/11/30 15:13:44 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2011/11/30 15:13:40 | 000,023,468 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2011/09/13 01:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat

========== ZeroAccess Check ==========

[2009/07/14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/02/27 07:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/02/27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/11/08 21:15:39 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software
[2012/11/08 21:15:39 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\TuneUp Software
[2013/03/18 21:58:47 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\.minecraft
[2013/06/25 22:36:00 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Applian FLV and Media Player
[2012/08/15 17:58:20 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\AVG
[2012/11/03 10:13:56 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\AVG2013
[2013/06/27 04:18:42 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\DAEMON Tools Lite
[2012/04/06 15:11:55 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\DMCache
[2012/08/18 14:14:28 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\GameRanger
[2012/11/15 22:15:48 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\GarenaMaster
[2013/06/27 15:13:17 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\GarenaPlus
[2012/01/21 23:57:08 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\GetRightToGo
[2012/10/26 00:15:29 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\LaRoXion
[2012/06/27 12:13:37 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\LolClient
[2012/06/11 17:23:00 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\LolClient2
[2012/06/25 10:51:00 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Lothira2
[2012/06/30 17:44:04 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\OpenOffice.org
[2012/12/01 23:40:12 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Origin
[2012/12/01 14:48:49 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Password Generator Professional
[2013/04/22 14:37:47 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\raidcall
[2012/06/30 17:22:27 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\SoftGrid Client
[2013/04/08 17:02:13 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\SplitMediaLabs
[2013/05/21 17:41:51 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\TeamViewer
[2012/01/09 19:50:28 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\TP
[2013/01/14 16:43:59 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\TS3Client
[2013/05/07 09:46:06 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\TuneUp Software
[2012/05/10 06:01:11 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Unity
[2013/06/27 15:10:03 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\uTorrent
[2012/09/07 17:51:10 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\wargaming.net

========== Purity Check ==========

========== Custom Scans ==========

< >
[2009/07/14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009/07/14 07:08:49 | 000,032,548 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011/12/17 11:02:09 | 000,000,930 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2011/12/17 11:02:09 | 000,000,934 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012/04/01 16:43:39 | 000,000,830 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013/01/24 18:12:35 | 000,000,354 | ---- | C] () -- C:\Windows\Tasks\ROC_JAN2013_TB_rmv.job
[2013/06/03 20:47:00 | 000,000,350 | ---- | C] () -- C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
[2013/06/08 02:33:15 | 000,000,350 | ---- | C] () -- C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job

< >

< MD5 for: ATAPI.SYS >
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2010/11/21 05:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010/11/21 05:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2010/11/21 05:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010/11/21 05:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2010/11/21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010/11/21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010/11/21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2011/02/26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011/02/25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011/02/25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/02/26 08:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/21 05:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011/02/25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011/02/25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010/11/21 05:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: HAL.DLL >
[2010/11/21 05:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010/11/21 05:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll

< MD5 for: SCECLI.DLL >
[2010/11/21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010/11/21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010/11/21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010/11/21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll

< MD5 for: SERVICES.EXE >
[2009/07/14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009/07/14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SVCHOST.EXE >
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2013/04/04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2012/10/03 19:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_110e0fbd7d2e4b88\tcpip.sys
[2011/09/29 19:41:37 | 001,912,176 | ---- | M] (Microsoft Corporation) MD5=3810F06A4D74A7D62641EE73D6B3C660 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21828_none_11c6e9949627e69c\tcpip.sys
[2013/05/08 08:14:42 | 001,900,392 | ---- | M] (Microsoft Corporation) MD5=3E94650745D4DAB67E161F5F32CEA597 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22319_none_11d29984961f0be0\tcpip.sys
[2010/11/21 05:24:08 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2012/08/22 20:06:13 | 001,901,936 | ---- | M] (Microsoft Corporation) MD5=7880A26B7D3B96FDA8EFD9F985036B1D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22097_none_117a13de9661c145\tcpip.sys
[2012/03/30 12:26:36 | 001,901,424 | ---- | M] (Microsoft Corporation) MD5=885B202006EE17AE99B9FBCEC9AF88C9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_11a27a8e9643d23a\tcpip.sys
[2011/04/25 07:33:51 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=92CE29D95AC9DD2D0EE9061D551BA250 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_114de9497cfe9316\tcpip.sys
[2013/05/08 08:39:01 | 001,910,632 | ---- | M] (Microsoft Corporation) MD5=9849EA3843A2ADBDD1497E97A85D8CAE -- C:\Windows\SysNative\drivers\tcpip.sys
[2013/05/08 08:39:01 | 001,910,632 | ---- | M] (Microsoft Corporation) MD5=9849EA3843A2ADBDD1497E97A85D8CAE -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18148_none_11278ac57d1aa96b\tcpip.sys
[2012/03/30 13:35:47 | 001,918,320 | ---- | M] (Microsoft Corporation) MD5=ACB82BDA8F46C84F465C1AFA517DC4B9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_114ceccb7cff740d\tcpip.sys
[2013/01/03 08:00:54 | 001,913,192 | ---- | M] (Microsoft Corporation) MD5=B62A953F2BF3922C8764A29C34A22899 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18042_none_112187237d20143a\tcpip.sys
[2011/04/25 08:16:34 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=B77977AEB2FF159D01DB08A309989C5F -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_11cbb5de9625357a\tcpip.sys
[2013/01/04 07:47:43 | 001,901,416 | ---- | M] (Microsoft Corporation) MD5=B8C1AAC0523E1C33AEB0EF7572144BA2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22209_none_11dd678a9616f2c8\tcpip.sys
[2012/10/03 19:44:29 | 001,902,472 | ---- | M] (Microsoft Corporation) MD5=D5707FC2300AA5B04B7BFE86D40C0133 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_11c2c45a962baed0\tcpip.sys
[2012/08/22 20:12:50 | 001,913,200 | ---- | M] (Microsoft Corporation) MD5=F782CAD3CEDBB3F9FFE3BF2775D92DDC -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17939_none_113380f37d117668\tcpip.sys
[2011/09/29 18:29:28 | 001,923,952 | ---- | M] (Microsoft Corporation) MD5=FC62769E7BFF2896035AEED399108162 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17697_none_10f09b257d43f3eb\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010/11/21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010/11/21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010/11/21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010/11/21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010/11/21 05:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010/11/21 05:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2013/04/04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe

< >

< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[3 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[9 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[10 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[6 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
[1 C:\Windows\Temp\avg_a03664\ProgData\*.tmp files -> C:\Windows\Temp\avg_a03664\ProgData\*.tmp -> ]
[1 C:\Windows\Temp\avg_a03664\ProgFiles\AVG Secure Search\*.tmp files -> C:\Windows\Temp\avg_a03664\ProgFiles\AVG Secure Search\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >
[2012/08/22 22:22:00 | 000,209,269 | ---- | M] () -- C:\torrent.exe

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2013/03/18 21:58:47 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\.minecraft
[2011/12/27 12:42:20 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Adobe
[2013/06/25 22:36:00 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Applian FLV and Media Player
[2011/12/09 18:24:34 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\ATI
[2012/08/15 17:58:20 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\AVG
[2012/11/03 10:13:56 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\AVG2013
[2013/06/27 04:18:42 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\DAEMON Tools Lite
[2013/04/09 16:53:59 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\DivX
[2012/04/06 15:11:55 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\DMCache
[2012/08/18 14:14:28 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\GameRanger
[2012/11/15 22:15:48 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\GarenaMaster
[2013/06/27 15:13:17 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\GarenaPlus
[2012/01/21 23:57:08 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\GetRightToGo
[2011/12/09 18:24:12 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Identities
[2012/11/28 17:51:02 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\InstallShield
[2012/10/26 00:15:29 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\LaRoXion
[2012/06/27 12:13:37 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\LolClient
[2012/06/11 17:23:00 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\LolClient2
[2012/06/25 10:51:00 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Lothira2
[2011/12/10 13:15:29 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Macromedia
[2013/06/27 17:20:37 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Malwarebytes
[2011/04/12 15:40:51 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Media Center Programs
[2012/08/05 22:41:37 | 000,000,000 | --SD | M] -- C:\Users\Tomáš\AppData\Roaming\Microsoft
[2011/12/10 13:06:15 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Mozilla
[2012/06/30 17:44:04 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\OpenOffice.org
[2012/12/01 23:40:12 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Origin
[2012/12/01 14:48:49 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Password Generator Professional
[2013/04/22 14:37:47 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\raidcall
[2013/06/27 18:22:03 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Skype
[2012/06/30 17:22:27 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\SoftGrid Client
[2013/04/08 17:02:13 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\SplitMediaLabs
[2013/05/21 17:41:51 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\TeamViewer
[2012/01/09 19:50:28 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\TP
[2013/01/14 16:43:59 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\TS3Client
[2013/05/07 09:46:06 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\TuneUp Software
[2012/05/10 06:01:11 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\Unity
[2013/06/27 15:10:03 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\uTorrent
[2013/05/16 01:02:53 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\vlc
[2012/09/07 17:51:10 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\wargaming.net
[2011/12/12 17:58:38 | 000,000,000 | ---D | M] -- C:\Users\Tomáš\AppData\Roaming\WinRAR

2.časť OTL logu

< %APPDATA%\*.exe /s >
[2013/06/20 01:51:47 | 001,824,928 | ---- | M] (GameRanger Technologies) -- C:\Users\Tomáš\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe
[2012/02/20 09:50:20 | 000,148,992 | ---- | M] (SplitmediaLabs Limited) -- C:\Users\Tomáš\AppData\Roaming\SplitMediaLabs\XSplit\install\6990E7D\VHMultiWriterExt.exe
[2013/03/01 08:50:39 | 000,310,600 | ---- | M] (SplitmediaLabs Limited) -- C:\Users\Tomáš\AppData\Roaming\SplitMediaLabs\XSplit\install\6990E7D\VHMultiWriterExt2.exe
[2012/04/30 09:55:49 | 001,788,928 | ---- | M] (SplitMediaLabs Limited) -- C:\Users\Tomáš\AppData\Roaming\SplitMediaLabs\XSplit\install\6990E7D\VHScrCapDlg32.exe
[2013/03/01 08:50:39 | 000,028,488 | ---- | M] (SplitMediaLabs) -- C:\Users\Tomáš\AppData\Roaming\SplitMediaLabs\XSplit\install\6990E7D\XDS.exe
[2013/03/01 08:50:39 | 002,627,912 | ---- | M] (SplitMediaLabs) -- C:\Users\Tomáš\AppData\Roaming\SplitMediaLabs\XSplit\install\6990E7D\XSplit.Core.exe
[2013/03/01 08:50:39 | 000,111,944 | ---- | M] (SplitmediaLabs Limited) -- C:\Users\Tomáš\AppData\Roaming\SplitMediaLabs\XSplit\install\6990E7D\XSplitBroadcasterSrc.exe
[2013/03/01 08:50:39 | 000,036,168 | ---- | M] (SplitMediaLabs) -- C:\Users\Tomáš\AppData\Roaming\SplitMediaLabs\XSplit\install\6990E7D\XSplitRegSrc.exe
[2013/03/01 08:50:39 | 000,053,576 | ---- | M] (SplitMediaLabs) -- C:\Users\Tomáš\AppData\Roaming\SplitMediaLabs\XSplit\install\6990E7D\XSplit_Plugin_Installer.exe
[2013/03/01 09:08:14 | 000,212,992 | ---- | M] (Caphyon LTD) -- C:\Users\Tomáš\AppData\Roaming\SplitMediaLabs\XSplit\install\6990E7D\xsplit_updater.exe
[2013/03/01 08:50:39 | 000,039,752 | ---- | M] (SplitMediaLabs) -- C:\Users\Tomáš\AppData\Roaming\SplitMediaLabs\XSplit\install\6990E7D\x64\XGS64.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2013/06/08 13:40:01 | 013,760,512 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ieframe.dll

< %systemroot%\Tasks\*.job >
[2013/06/27 17:44:03 | 000,000,830 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013/06/27 15:09:25 | 000,000,350 | ---- | M] () -- C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job
[2013/06/27 15:09:25 | 000,000,350 | ---- | M] () -- C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
[2013/06/27 15:09:29 | 000,000,930 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013/06/27 17:51:02 | 000,000,934 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2013/06/27 15:09:19 | 000,000,354 | ---- | M] () -- C:\Windows\Tasks\ROC_JAN2013_TB_rmv.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >
[2013/06/08 13:40:01 | 013,760,512 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ieframe.dll

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >

< %SYSTEMDRIVE%\*.exe >
[2012/08/22 22:22:00 | 000,209,269 | ---- | M] () -- C:\torrent.exe

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"DAEMON Tools Lite" = "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun -- [2011/11/10 11:17:04 | 003,514,176 | ---- | M] (DT Soft Ltd)
"Steam" = "C:\Program Files (x86)\Steam\Steam.exe" -silent -- [2013/06/07 00:06:24 | 001,641,896 | ---- | M] (Valve Corporation)
"uTorrent" = "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED -- [2012/05/25 15:17:09 | 000,880,496 | ---- | M] (BitTorrent, Inc.)
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2010/11/21 05:24:51 | 001,475,584 | ---- | M] (Microsoft Corporation)
"Skype" = "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun -- [2013/06/03 16:27:20 | 019,603,048 | R--- | M] (Skype Technologies S.A.)
"HydraVisionDesktopManager" = "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" -- [2011/07/28 18:12:10 | 000,393,216 | ---- | M] (AMD)
"GarenaPlus" = "C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe" -autolaunch -- [2013/05/09 06:38:15 | 009,829,680 | ---- | M] ()

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2013/05/22 02:05:02 | 000,920,472 | ---- | M] (Mozilla Corporation) MD5=95110A1C5A1D228AC1DDF6AB67D00BEB -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2013/05/17 04:32:12 | 000,770,648 | ---- | M] (Microsoft Corporation) MD5=07DFD28E57879554D054464EE4A5662D -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2013/06/15 03:28:44 | 000,825,808 | ---- | M] (Google Inc.) MD5=5521928AA79079565B7CB8FCE6806131 -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013/06/27 18:34:36 | 000,000,512 | ---- | M] () MD5=4246C572384B2AD3455591788705FA49 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2010/08/06 23:23:48 | 000,000,403 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\sounds\11\11_glass_crack.snt
[2010/08/06 23:23:48 | 000,020,362 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\sounds\11\11_glass_crack01.ogg
[2010/08/06 23:23:48 | 000,020,539 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\sounds\11\11_glass_crack02.ogg
[2010/08/06 23:23:48 | 000,019,081 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\sounds\11\11_glass_crack03.ogg
[2010/08/07 00:00:56 | 000,013,009 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\castlebase\ceiling\corridor_crack.dae
[2010/08/27 07:33:12 | 000,014,477 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\castlebase\ceiling\corridor_crack.msh
[2010/08/06 23:50:20 | 000,094,462 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\cellarbase\special\cracked_ceiling.dae
[2010/08/27 07:33:24 | 000,065,436 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\cellarbase\special\cracked_ceiling.msh
[2010/08/06 23:50:02 | 000,349,680 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_blue.dds
[2010/08/06 23:50:02 | 000,000,932 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_blue.mat
[2010/08/06 23:50:02 | 000,016,101 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_blue01.dae
[2010/08/27 07:33:34 | 000,001,220 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_blue01.msh
[2010/08/06 23:50:04 | 000,016,053 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_blue02.dae
[2010/08/27 07:33:34 | 000,001,220 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_blue02.msh
[2010/08/06 23:50:02 | 000,016,053 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_blue03.dae
[2010/08/27 07:33:34 | 000,001,220 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_blue03.msh
[2010/08/06 23:50:04 | 000,016,053 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_blue04.dae
[2010/08/27 07:33:34 | 000,001,220 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_blue04.msh
[2010/08/06 23:50:04 | 000,349,680 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_blue_back.dds
[2010/08/06 23:50:04 | 000,000,410 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_blue_back.mat
[2010/08/06 23:50:02 | 000,349,680 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_brown.dds
[2010/08/06 23:50:02 | 000,000,933 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_brown.mat
[2010/08/06 23:50:02 | 000,016,057 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_brown01.dae
[2010/08/27 07:33:34 | 000,001,222 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_brown01.msh
[2010/08/06 23:50:04 | 000,016,057 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_brown02.dae
[2010/08/27 07:33:34 | 000,001,222 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_brown02.msh
[2010/08/06 23:50:02 | 000,016,057 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_brown03.dae
[2010/08/27 07:33:34 | 000,001,222 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_brown03.msh
[2010/08/06 23:50:04 | 000,016,057 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_brown04.dae
[2010/08/27 07:33:34 | 000,001,222 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_brown04.msh
[2010/08/06 23:50:02 | 000,349,680 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_brown_back.dds
[2010/08/06 23:50:04 | 000,000,409 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_brown_back.mat
[2010/08/06 23:50:02 | 000,349,680 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_nrm.dds
[2010/08/06 23:50:02 | 000,174,904 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\decals\cracks_spec.dds
[2010/08/06 23:49:16 | 000,062,915 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\dungeonbase\ceiling\default_cracked.dae
[2010/08/27 07:33:40 | 000,037,741 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\dungeonbase\ceiling\default_cracked.msh
[2010/08/06 23:48:40 | 000,019,532 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\dungeonbase\wall\corridor_graves_cracked.dae
[2010/08/27 07:33:50 | 000,017,545 | ---- | M] () -- \Program Files (x86)\Amnesia - The Dark Descent\redist\static_objects\dungeonbase\wall\corridor_graves_cracked.msh
[2009/03/08 11:59:14 | 000,163,840 | ---- | M] () -- \Users\Tomáš\Desktop\programy\Garena\plugins\UI\AvoidCrackPlugin.dll
[2012/09/17 16:14:14 | 006,123,418 | ---- | M] () -- \Users\Tomáš\Downloads\Doplnky\Portal.2.Crack.Fix-SKIDROW.rar
[2012/08/16 03:46:25 | 002,871,160 | ---- | M] () -- \Users\Tomáš\Downloads\Hry\Command and Conquer Generals - Zero Hour\generals-zh-v104_crack.zip

< *keygen* /s >

< *loader* /s >
[2012/07/25 17:55:50 | 000,071,208 | ---- | M] () -- \Games\World_of_Tanks\PhysXLoader.dll
[2013/02/26 18:36:29 | 000,003,668 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\helpers\rssdownloader.pyc
[2013/02/26 18:36:29 | 000,006,407 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\tutorial\loader.pyc
[2012/12/07 11:08:57 | 000,005,363 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\tutorial\tutorialloader.pyc
[2013/03/26 19:58:42 | 000,066,560 | ---- | M] () -- \GarenaMaster II - v2.16\Config\DATA\DLL\loader.dll
[2013/02/13 23:10:32 | 000,061,720 | ---- | M] () -- \Program Files (x86)\Dungeon Defenders\Binaries\Win32\PhysXLocal\PhysXLoader.dll
[2013/02/07 11:11:17 | 000,051,504 | ---- | M] () -- \Program Files (x86)\Garena Plus\FileLoader.dll
[2013/01/30 10:26:41 | 002,941,232 | ---- | M] () -- \Program Files (x86)\Garena Plus\ggdownloader.dll
[2013/04/30 13:01:26 | 000,248,832 | ---- | M] () -- \Program Files (x86)\Garena Plus\bbtalk\GarenaTalkLoader.exe
[2013/02/03 19:23:23 | 000,082,224 | ---- | M] () -- \Program Files (x86)\Garena Plus\bbtalk\update\temp\restore\10095\BTalkLoader.exe
[2013/04/17 20:44:23 | 000,256,816 | ---- | M] () -- \Program Files (x86)\Garena Plus\bbtalk\update\temp\restore\10097\GarenaTalkLoader.exe
[2013/04/17 20:44:34 | 000,257,840 | ---- | M] () -- \Program Files (x86)\Garena Plus\restore_\bbtalk\GarenaTalkLoader.exe
[2012/07/19 18:22:20 | 000,002,713 | ---- | M] () -- \Program Files (x86)\Graboid\GraboidVideo\3.26\xulrunner-1.9.1.4\components\uriloader.xpt
[2013/06/08 03:16:08 | 000,176,104 | ---- | M] () -- \Program Files (x86)\Cheat Engine 6.3\Kernelmoduleunloader.exe
[2013/06/19 18:36:30 | 000,000,132 | ---- | M] () -- \Program Files (x86)\Cheat Engine 6.3\Kernelmoduleunloader.exe.sig
[2013/05/14 00:12:18 | 000,064,832 | ---- | M] () -- \Program Files (x86)\Metro Last Light\PhysXLoader.dll
[2011/05/09 14:01:02 | 000,005,987 | ---- | M] () -- \Program Files (x86)\Microsoft\BingBar\scripts\io\downloader.js
[2009/05/31 04:21:00 | 000,071,008 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2009/05/31 04:21:00 | 000,073,568 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2012/04/19 08:47:30 | 000,006,081 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.py
[2012/04/13 12:00:14 | 000,020,992 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.uno.dll
[2012/04/19 08:50:38 | 000,000,171 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.uno.ini
[2012/04/13 12:00:00 | 000,029,696 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\URE\bin\javaloader.uno.dll
[2012/04/19 04:08:12 | 000,003,867 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\URE\java\unoloader.jar
[2013/04/22 14:37:56 | 000,470,820 | ---- | M] () -- \Program Files (x86)\RaidCall\flash\XOverlayMainLoader.swf
[2006/12/05 22:30:06 | 000,094,208 | ---- | M] () -- \Program Files (x86)\YouTube Video Downloader\YoutubeDownloader.exe
[2011/05/28 23:04:04 | 000,054,784 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2012/11/15 22:10:56 | 000,027,099 | ---- | M] () -- \ProgramData\GarenaMessenger\update\12092\bbtalk\BTalkLoader.exe
[2013/02/07 18:30:49 | 000,020,929 | ---- | M] () -- \ProgramData\GarenaMessenger\update\12184\FileLoader.dll
[2013/02/03 19:22:06 | 000,020,813 | ---- | M] () -- \ProgramData\GarenaMessenger\UpdateManager\12154\FileLoader.dll
[2013/02/03 19:22:59 | 000,945,655 | ---- | M] () -- \ProgramData\GarenaMessenger\UpdateManager\12154\ggdownloader.dll
[2013/02/03 19:22:34 | 000,027,494 | ---- | M] () -- \ProgramData\GarenaMessenger\UpdateManager\12154\bbtalk\BTalkLoader.exe
[2013/05/21 17:29:36 | 000,080,425 | ---- | M] () -- \ProgramData\GarenaMessenger\UpdateManager\12226\bbtalk\GarenaTalkLoader.exe
[2012/12/04 18:00:50 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2012/12/04 18:00:50 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2012/12/04 18:00:50 | 000,009,772 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\retina\loader@2x.png
[2012/02/15 15:39:14 | 000,000,404 | ---- | M] () -- \Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.30\deploy\assets\storeImages\layout\small_loader.gif
[2012/10/05 17:27:15 | 000,000,404 | ---- | M] () -- \Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.30\deploy\assets\storeImages\layout\OldImages\small_loader.gif
[2012/11/15 22:10:56 | 000,027,099 | ---- | M] () -- \Users\All Users\GarenaMessenger\update\12092\bbtalk\BTalkLoader.exe
[2013/02/07 18:30:49 | 000,020,929 | ---- | M] () -- \Users\All Users\GarenaMessenger\update\12184\FileLoader.dll
[2013/02/03 19:22:06 | 000,020,813 | ---- | M] () -- \Users\All Users\GarenaMessenger\UpdateManager\12154\FileLoader.dll
[2013/02/03 19:22:59 | 000,945,655 | ---- | M] () -- \Users\All Users\GarenaMessenger\UpdateManager\12154\ggdownloader.dll
[2013/02/03 19:22:34 | 000,027,494 | ---- | M] () -- \Users\All Users\GarenaMessenger\UpdateManager\12154\bbtalk\BTalkLoader.exe
[2013/05/21 17:29:36 | 000,080,425 | ---- | M] () -- \Users\All Users\GarenaMessenger\UpdateManager\12226\bbtalk\GarenaTalkLoader.exe
[2012/12/04 18:00:50 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2012/12/04 18:00:50 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2012/12/04 18:00:50 | 000,009,772 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\retina\loader@2x.png
[2012/01/30 19:36:40 | 000,293,888 | ---- | M] () -- \Users\Public\Sony Online Entertainment\Installed Games\PlanetSide 2\LaunchPad.libs\wws_crashreport_uploader.exe
[2012/10/23 08:58:49 | 000,000,522 | ---- | M] () -- \Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpieaakhacmfleokhjcjnpcnmnmpfkid\2.2_0\images\loader.gif
[2012/10/27 04:42:33 | 000,294,400 | ---- | M] () -- \Users\Tomáš\AppData\Local\Sony Online Entertainment\ApplicationUpdater\wws_crashreport_uploader.exe
[2012/01/11 16:27:00 | 000,000,000 | ---- | M] () -- \Users\Tomáš\AppData\Roaming\GetRightToGo\Brothersoftdownloader_for_Hamachi.data
[2012/01/21 23:57:00 | 000,000,651 | ---- | M] () -- \Users\Tomáš\AppData\Roaming\GetRightToGo\Brothersoftdownloader_for_Warblade.data
[2012/01/21 23:57:08 | 000,000,868 | ---- | M] () -- \Users\Tomáš\AppData\Roaming\GetRightToGo\Brothersoftdownloader_for_Warblade.data0
[2012/06/22 17:04:39 | 000,446,464 | ---- | M] () -- \Windows\NEXON_EU_DownloaderUpdater.exe
[1 \Windows\*.tmp files -> \Windows\*.tmp -> ]
[2013/06/27 15:13:18 | 000,020,022 | ---- | M] () -- \Windows\Prefetch\GARENATALKLOADER.EXE-A1D5B16C.pf
[2012/11/30 06:45:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2012/02/21 15:26:02 | 000,012,532 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2012/11/30 06:45:15 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2012/02/21 15:26:02 | 000,012,532 | ---- | M] () -- \Windows\SysWOW64\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2013/06/27 13:52:33 | 000,006,494 | ---- | M] () -- \Windows\Temp\avg_a03664\ProgData\AVG Secure Search\FireFoxExt\15.3.0.11\modules\skin\ajax-loader.gif
[2013/06/27 13:52:33 | 000,000,729 | ---- | M] () -- \Windows\Temp\avg_a03664\ProgData\AVG Secure Search\FireFoxExt\15.3.0.11\modules\skin\loader.gif
[2013/06/27 13:52:33 | 000,019,497 | ---- | M] () -- \Windows\Temp\avg_a03664\ProgFiles\AVG Secure Search\UninstallRes\ClientPackage\Images\uninstall\loader.gif
[2009/07/14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009/07/14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/07/16 07:21:03 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_68a9b6bd92929e63\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/08/20 20:38:32 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_68c05c919281774d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 19:38:48 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_68a2edab92971725\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 07:38:44 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_68d8d569926ebeb2\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/07/16 07:12:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_691eb3faabbf8f66\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/08/20 20:09:47 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_6907efc6abd0db81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 19:35:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_6957a248ab947a6d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 07:39:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_69239340abbb38d0\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/01/04 07:32:07 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_6971452eab80a50e\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/04/12 15:30:21 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2011/04/12 15:30:21 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.efi.mui_35ee487d
[2011/04/12 15:30:21 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.exe.mui_3bc5b827
[2011/04/12 15:30:21 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.efi.mui_f412814e
[2011/04/12 15:30:21 | 000,029,760 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.exe.mui_ff8b5358
[2011/12/11 15:58:43 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011/12/11 15:58:43 | 000,642,944 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.efi_75834aa0
[2011/12/11 15:58:43 | 000,605,552 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.exe_75835076
[2011/12/11 15:58:43 | 000,566,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.efi_85cd069f
[2011/12/11 15:58:43 | 000,518,672 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.exe_85cd1215
[2009/07/14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009/07/14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2011/04/12 15:29:23 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2010/11/21 05:16:35 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011/02/05 19:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011/02/05 15:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009/07/14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009/07/14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009/07/14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/07/16 06:15:45 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/08/20 19:32:13 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_0ca1c10dda240617\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 18:40:37 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 06:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/07/16 06:36:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/08/20 19:23:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_0ce95442f3736a4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 18:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 06:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/01/04 06:43:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_0d52a9aaf32333d8\api-ms-win-core-libraryloader-l1-1-0.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 21 bytes -> \Users\Tomáš\AppData\Local\Sony Online Entertainment\ApplicationUpdater\wws_crashreport_uploader.exe:crc
@Alternate Data Stream - 21 bytes -> \Users\Public\Sony Online Entertainment\Installed Games\PlanetSide 2\LaunchPad.libs\wws_crashreport_uploader.exe:crc
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:0B4227B4

< End of report >

Tu je ten Extras log

OTL Extras logfile created on: 27. 6. 2013 18:32:56 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Tomáš\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16614)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

4,00 Gb Total Physical Memory | 1,75 Gb Available Physical Memory | 43,74% Memory free
8,00 Gb Paging File | 4,60 Gb Available in Paging File | 57,58% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 244,04 Gb Total Space | 30,74 Gb Free Space | 12,60% Space Free | Partition Type: NTFS
Drive D: | 221,62 Gb Total Space | 221,51 Gb Free Space | 99,95% Space Free | Partition Type: NTFS

Computer Name: TOMÁŠ-PC | User Name: Tomáš | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_USERS\S-1-5-21-1588890109-3522761576-2135906086-1001\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htafile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistApplianMP] -- "C:\Program Files (x86)\Applian Technologies\Applian FLV and Media Player\amp.exe" -I skins2 --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithApplianMP] -- "C:\Program Files (x86)\Applian Technologies\Applian FLV and Media Player\amp.exe" -I skins2 --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htafile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistApplianMP] -- "C:\Program Files (x86)\Applian Technologies\Applian FLV and Media Player\amp.exe" -I skins2 --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithApplianMP] -- "C:\Program Files (x86)\Applian Technologies\Applian FLV and Media Player\amp.exe" -I skins2 --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03895D24-F0D6-45AE-8B46-A1EE5908AA59}" = rport=10243 | protocol=6 | dir=out | app=system |
"{07E6194C-F2D2-44DB-8932-8A46D0A75556}" = rport=1723 | protocol=6 | dir=out | app=system |
"{10124484-5489-4D8F-95A7-75356C08CF7D}" = lport=139 | protocol=6 | dir=in | app=system |
"{18A6C168-3EC4-4491-8705-CA878982289C}" = rport=139 | protocol=6 | dir=out | app=system |
"{1D3C186B-F8F3-476E-9B21-A379398337A5}" = rport=137 | protocol=17 | dir=out | app=system |
"{20F4DE27-1DB8-4776-BE38-A3A41A01001D}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2D3DE0AC-7E36-407C-8172-A4AC8064E483}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{6028636A-F21C-4A18-A3C5-17D2D5F3FBF8}" = lport=1723 | protocol=6 | dir=in | app=system |
"{628C9C1B-22B4-42D4-B20F-FE5953202E01}" = lport=137 | protocol=17 | dir=in | app=system |
"{97DE6448-EF22-4915-B698-F3B0C4B30649}" = rport=1701 | protocol=17 | dir=out | app=system |
"{986D39A6-CB6A-43E0-A14B-625A4BB7BA6C}" = lport=10243 | protocol=6 | dir=in | app=system |
"{99DC7495-5BA0-471E-8E8E-A8515B7B4E8E}" = lport=1701 | protocol=17 | dir=in | app=system |
"{9A36B81F-FD65-4FB0-A484-274AF156A76C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9A9216D6-7E6F-4300-B5B9-E05AFBFA4E01}" = lport=138 | protocol=17 | dir=in | app=system |
"{9AAC9726-4CC1-40D2-9AC5-F93014FEE623}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{B69EFE76-CF11-4A82-8A9F-A52CA70AA25C}" = rport=445 | protocol=6 | dir=out | app=system |
"{B87C434F-CE1D-4BDF-AA63-2AD1DE734442}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{CA080470-1617-48E4-9EB9-839050CDADF6}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{CB8504CB-D5CB-4B80-AD67-649A23372F36}" = rport=138 | protocol=17 | dir=out | app=system |
"{D8E2D365-8AAA-4CEB-82BF-D31F7528D757}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D9D0C62D-1A90-484B-9D72-84F713EB172C}" = lport=445 | protocol=6 | dir=in | app=system |
"{DB594D8C-142B-4EA5-BFAC-A9F9E83BE807}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E58529DD-B67B-480D-9925-C30C6CEC3EC4}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{EC7A4DF8-FF1C-4237-BEE6-64B1B612D938}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{F3412C1B-CC01-49C4-8FCF-3F36B4528807}" = lport=2869 | protocol=6 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03EA9B71-D3D2-491B-B52B-34403E9299E4}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{0A8D6221-7EC4-4A49-96EB-99CB86CF5A01}" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\command & conquer generals zero hour\generals.exe |
"{0D3796C2-211B-4537-9ACA-544D8C619508}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{0F266E42-8008-48D8-8AA8-BCDA5C8A1CE4}" = protocol=47 | dir=in | app=system |
"{11F6AB71-F41A-442F-B2B0-D58A0D35B251}" = protocol=17 | dir=in | app=c:\program files (x86)\yourfiledownloader\yourfile.exe |
"{12B458AA-DA3F-43B9-BFC7-EC94518967FC}" = protocol=6 | dir=out | app=system |
"{1837EF42-C339-4746-A0C1-6419EA317335}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{1DE2E3B9-F842-4E93-B763-E503BE00D70B}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{1E601803-F3A3-43D4-AE12-9B46739B1B39}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{1FF9EE86-389B-4014-A1C6-D471962EF680}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{204FAEC7-F127-4197-87F6-EAA47F2853B1}" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\dead space 2\deadspace2.exe |
"{2370C084-A4C0-4201-BB5F-C3D815CE3557}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{2754CB05-B07A-4ADE-9FFF-06DD0EC1F299}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{2A668D64-8BA5-46DD-B3EA-7AE304B3BE51}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{30F98490-EDCC-4764-B57B-9B15D9D6AA7F}" = protocol=17 | dir=in | app=c:\program files (x86)\valve\portal 2\portal2.exe |
"{31590532-89D2-4CA7-9DBC-668B0656E833}" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
"{31CEF2F8-3523-40F6-B64A-7241BFE7D488}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{3782EC16-D967-440C-B74A-E76C5B982604}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{3870C60B-AF68-4C75-91E6-66F1ACF090BB}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{3943903B-6246-4CB0-8403-86DE50DDB161}" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"{3AFC2654-F9FF-405B-8727-E24656217116}" = protocol=6 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{3C7D32F1-9A28-436E-B252-EAC590823531}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{3D5E7C3E-7C4E-4B4E-99DD-9DEDEF7FD160}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{401F602B-0B7B-4CA1-9E9B-4FA11DE4C642}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-503 |
"{41834785-BC6B-4048-83DD-856773DB0B2E}" = dir=in | app=c:\program files (x86)\garena plus\room\garena_room.exe |
"{42823F45-7F9B-4297-9C35-434F31EE5ADC}" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"{45A2BD20-DF81-44AD-9A78-6CB0A32A9710}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{494AEE31-7C05-4D33-8EAA-E693C26B3353}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\metro 2033\metro2033.exe |
"{4C8F1540-0DFF-422E-9D31-F4470B3E988E}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{4E005523-408E-44A1-A95B-C28A8424258E}" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\command & conquer generals zero hour\generals.exe |
"{4E609242-FBD5-42FB-B831-083F4C391C70}" = protocol=17 | dir=in | app=c:\windows\system32\java.exe |
"{4EADD0D0-4CAA-46F3-8C1C-3D848227641C}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{50CC1916-8497-4471-828E-2D8EA04239AD}" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\command & conquer generals zero hour\game.dat |
"{563E9BB1-5940-4F97-B6E3-35D606CB0D39}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{587AD469-742D-4F2F-BEEA-FCDCD2962BB5}" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"{5A3A7BD5-D700-46BE-B860-29BE34D3A4FB}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{5E5B8A00-0D63-43D6-B468-0ABF2833EA12}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\battlefield 3\bf3.exe |
"{5EA4BE1D-DAFA-4023-B6CE-C53E7C9F48C0}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{63515ED4-B2EE-47A9-B85F-1B8ED803748A}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{644B3D69-7EE3-4E56-9801-9FF433A2EEB5}" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\dead space 2\deadspace2.exe |
"{652845A8-64D5-4872-88D3-DFE16862CDA6}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{65A34743-9390-41DA-8E94-CF97350855B4}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{66FB6D12-C90F-4736-A2B9-E2CEA7DD2A6D}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{671E0411-CD89-41E6-BADA-8E51CBAC40BF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{67416B86-1D35-4803-A5B0-FF01D47DDA17}" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"{68C39D25-C810-4D92-A714-0D32C4E746B7}" = protocol=17 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{7231F364-4781-4F5B-A9F7-F80F2E4DDBDE}" = protocol=6 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{753290C9-DF22-453E-AB04-3613A68BFA9F}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{77FBB2B2-3BAE-4887-B4A9-558095B4793C}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{7A73474D-69E2-44F2-B8D4-7D376E848682}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{7B2ED9F4-862F-40F3-AF21-0989CD53D2A4}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7D9B8EC1-8CEF-401C-9ADB-E3ACFBB1730A}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{8372CD99-07B0-4F93-AB87-073081C4D8E3}" = protocol=6 | dir=in | app=c:\program files (x86)\applian technologies\applian flv and media player\amp.exe |
"{87A76208-E68D-492E-BD89-B146E7633F63}" = protocol=17 | dir=in | app=c:\program files (x86)\garena plus\room\garena_room.exe |
"{87F460A4-2909-4446-A54F-E03C20E8B861}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{8DD3F58F-6D5D-4311-9013-6E51AF71F52A}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{9964B508-9D7D-4C0E-A04C-0FBBF1EF9A3F}" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"{9AFB6D4C-1C4B-4D04-AF2D-605FA118756A}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{9CBE70B4-9D9B-4E94-9AB5-872E5FD02CC1}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{9D0DA67B-7913-49C1-8F92-3D0008D838D1}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{9DD032FD-4450-4C61-8C0F-86F3D7628043}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{A007577E-838F-41C6-B696-BA92159F1D86}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{A0A1D68F-E7AD-46F4-B39D-E4DDE0E871AA}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\dead space 3\deadspace3.exe |
"{A1FA16DB-3FB7-4041-8B69-5FFC46F6589F}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{A2082167-4DF5-4927-B6BB-78F2663296A1}" = protocol=47 | dir=out | app=system |
"{A9FFF1C2-99D8-4326-B1F4-8FE6D6C6513E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{AAB556D4-2F3C-4589-B363-299E9C4A7912}" = protocol=6 | dir=in | app=c:\program files (x86)\yourfiledownloader\yourfile.exe |
"{AB80A4BD-A49C-4AAD-B161-F19338AF69B8}" = protocol=6 | dir=in | app=c:\windows\system32\java.exe |
"{B3CB76FE-E86B-460D-B6AD-EE8AC9739928}" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"{B4688CCD-7DB0-47E3-9FF7-4360BDB3BC8B}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{B478D5F3-6BC2-44BB-9960-770514B3733E}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{B4B20077-5845-4FF2-B3C2-201619AE80B3}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{B52A31F4-D5A5-47C1-AA8A-0207F6D49969}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\battlefield 3\bf3.exe |
"{B6563E27-8F66-4637-9104-2F91A947523C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{BCF9C3C5-6849-4ABE-8111-4B40E7921F3A}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\battlefield 3\bf3.exe |
"{BDEB0F2D-F4F6-4725-89B0-391722010E14}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\metro 2033\metro2033.exe |
"{BFAC4109-9AC4-40FE-8A65-FCCFCF41F2F6}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C3E322E4-2F68-4924-8A4A-DF277E45EF13}" = protocol=17 | dir=in | app=c:\program files (x86)\applian technologies\applian flv and media player\amp.exe |
"{C9C08799-CA15-492D-A4EE-7D52792C3E8A}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{CA9E2FF2-7907-4EF2-8D64-4FF4B54173B4}" = protocol=17 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{D13EC204-DF14-4532-A1FD-03E9C01FB747}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{D70AD21A-ADCC-4E15-A0AB-B2141BAF8001}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{D842D0C2-9C41-4496-A885-D20076FB4F1D}" = protocol=58 | dir=in | app=system |
"{D9CA07F1-59AA-442E-85E6-5AC2BACE174E}" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\command & conquer generals zero hour\game.dat |
"{DA46A589-576A-4E36-BB5F-071E276F202D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{DA5133F5-610C-4A22-9B40-FE91E9A3D2B3}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\dead space 3\deadspace3.exe |
"{DB4E39FC-66E4-4C10-977D-DA826B68E9F5}" = protocol=6 | dir=in | app=c:\program files (x86)\valve\portal 2\portal2.exe |
"{DDC38F8C-6675-4E09-AC1F-106F74395C3C}" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |
"{DFB17215-1908-4710-84B5-4BEA74BC6937}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{E23674BC-86B9-4214-9797-DE825A441270}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{E3327C19-226B-4796-8758-53A18EEB70AB}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E472F6C7-F203-4661-AABC-D9B88431A84D}" = protocol=6 | dir=in | app=c:\program files (x86)\garena plus\room\garena_room.exe |
"{E4A62908-B7BB-45E2-A91C-8CDB1DD1C69A}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{E676DF96-B6AC-4294-ACD9-593F83E78DCF}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\battlefield 3\bf3.exe |
"{E6FB8106-6CE6-4500-9A0F-EC5AF93FEE35}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{F4793259-5197-4625-AD47-3A59BE6B6D2F}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{F4F1867E-1DE9-4E2B-8366-F20231EFB4F5}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{FA16F32E-4170-4844-9289-50B2410C5DB3}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{FF31BF92-4E8A-4B7A-AB31-042306D1C24F}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"TCP Query User{1D5704CD-178F-4BE6-812C-87C80B285EBE}C:\program files (x86)\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"TCP Query User{31ED3353-8B16-4AEC-9A12-99FCA1C84525}C:\program files (x86)\garena plus\room\garena_room.exe" = protocol=6 | dir=in | app=c:\program files (x86)\garena plus\room\garena_room.exe |
"TCP Query User{33986842-9151-4E58-BE50-7DFEC728773C}C:\program files (x86)\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"TCP Query User{471DAC40-0B95-43C1-B460-EEBB153293B2}C:\users\tomáš\desktop\programy\garena\garena.exe" = protocol=6 | dir=in | app=c:\users\tomáš\desktop\programy\garena\garena.exe |
"TCP Query User{5B9BE547-3029-49C3-A2A5-34B59C532BA1}C:\program files (x86)\valve\portal 2\portal2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\valve\portal 2\portal2.exe |
"TCP Query User{713F2423-B6F6-4D02-ACEA-2D630BAC0403}C:\users\tomáš\appdata\roaming\gameranger\gameranger\gameranger.exe" = protocol=6 | dir=in | app=c:\users\tomáš\appdata\roaming\gameranger\gameranger\gameranger.exe |
"TCP Query User{75A9E8ED-7FA8-4DD0-96A2-14A1B42CC216}C:\users\tomáš\desktop\hry\warcraft iii\war3.exe" = protocol=6 | dir=in | app=c:\users\tomáš\desktop\hry\warcraft iii\war3.exe |
"TCP Query User{8B969E64-18F5-452E-A571-76C47696E4F3}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"TCP Query User{A24C9F6A-DDBB-4703-B125-20F6B14A4E73}C:\program files (x86)\applian technologies\applian flv and media player\amp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\applian technologies\applian flv and media player\amp.exe |
"TCP Query User{C7880341-20BA-41DA-81E2-C57C7F184889}C:\program files (x86)\ea games\dead space 2\deadspace2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\dead space 2\deadspace2.exe |
"TCP Query User{C9170F91-E91C-45B8-9EB0-5F395B5C698E}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"TCP Query User{CF37FCCF-C185-47D5-BD0B-2831B0997807}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{D2433BA9-EFF8-41B7-A63E-74775FF09BE7}C:\windows\syswow64\javaw.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
"TCP Query User{E439270C-FD90-47DA-8630-E22D58B6CBF2}C:\program files (x86)\ea games\command & conquer generals zero hour\game.dat" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\command & conquer generals zero hour\game.dat |
"TCP Query User{F4A9F048-BF0F-4991-B69B-D633C9919EE6}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"TCP Query User{FD239B02-0ED0-4F9C-88C4-801B58330866}C:\windows\system32\java.exe" = protocol=6 | dir=in | app=c:\windows\system32\java.exe |
"UDP Query User{12424197-A0D5-41E3-B076-20DAFF70974C}C:\program files (x86)\garena plus\room\garena_room.exe" = protocol=17 | dir=in | app=c:\program files (x86)\garena plus\room\garena_room.exe |
"UDP Query User{1EA3B45D-1F79-4B2C-B18C-7D595A4351B0}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{2188B34D-8939-404F-BD7C-CB740D5B8DEC}C:\windows\system32\java.exe" = protocol=17 | dir=in | app=c:\windows\system32\java.exe |
"UDP Query User{2360465F-A90E-4292-81B2-24D17D515BD1}C:\program files (x86)\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"UDP Query User{415C9141-E972-4AC6-A137-288E62E9CDCF}C:\program files (x86)\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"UDP Query User{4D11EC49-5DD9-4BEE-8D19-E48348B72643}C:\windows\syswow64\javaw.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |
"UDP Query User{4FC5B1B0-C074-40A2-AAD9-76D3B73F433B}C:\program files (x86)\ea games\command & conquer generals zero hour\game.dat" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\command & conquer generals zero hour\game.dat |
"UDP Query User{632372E1-085F-49D1-A18C-19292C0B64AC}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"UDP Query User{722A3ABA-8F7B-43C2-B4A2-2F560985B309}C:\users\tomáš\appdata\roaming\gameranger\gameranger\gameranger.exe" = protocol=17 | dir=in | app=c:\users\tomáš\appdata\roaming\gameranger\gameranger\gameranger.exe |
"UDP Query User{774428F9-BAD0-49FB-A0F0-0CE78335E309}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"UDP Query User{7A9A904E-06B8-462B-94C9-EFD2F0516643}C:\users\tomáš\desktop\programy\garena\garena.exe" = protocol=17 | dir=in | app=c:\users\tomáš\desktop\programy\garena\garena.exe |
"UDP Query User{A3C8F436-AD37-4E43-9B07-E8F488DE70DE}C:\program files (x86)\valve\portal 2\portal2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\valve\portal 2\portal2.exe |
"UDP Query User{A69C3B8E-D311-4A7B-8963-4E7C174D19FF}C:\program files (x86)\ea games\dead space 2\deadspace2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\dead space 2\deadspace2.exe |
"UDP Query User{B8C82ECB-ACF6-4D2F-B5A3-F8BCD4669FD9}C:\users\tomáš\desktop\hry\warcraft iii\war3.exe" = protocol=17 | dir=in | app=c:\users\tomáš\desktop\hry\warcraft iii\war3.exe |
"UDP Query User{BE7CF7AA-AE63-4D6D-8DEE-32B80EB36D11}C:\program files (x86)\applian technologies\applian flv and media player\amp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\applian technologies\applian flv and media player\amp.exe |
"UDP Query User{C8D2CD42-4131-4802-8203-F5E019016424}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1324D89E-6452-A561-B97E-053C2AE6F7FF}" = AMD Drag and Drop Transcoding
"{21B133D6-5979-47F0-BE1C-F6A6B304693F}" = Visual Studio 2010 x64 Redistributables
"{26A24AE4-039D-4CA4-87B4-2F86416024FF}" = Java(TM) 6 Update 24 (64-bit)
"{3145731D-C578-70ED-899F-7A670D2A6662}" = AMD Fuel
"{4975DE61-6BF6-B9BC-1FDE-C04C5EC78E4C}" = AMD Media Foundation Decoders
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{5E03A267-415E-5383-FA8F-3CE4145663B9}" = AMD Catalyst Install Manager
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89EE4A30-080F-2C95-6F78-C98D18FBD74D}" = AMD Accelerated Video Transcoding
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9CF11D16-ECEB-90A5-A028-CA9E068D848B}" = ccc-utility64
"{AE7891D8-2340-4CD6-BA0A-6C8C01F7B4B4}" = AVG 2013
"{B9609B6D-9532-E0F8-BE41-DFE18BFAEC22}" = AMD AVIVO64 Codecs
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{F5AA006A-1ABE-4F16-B6E1-FEE1F7D38102}" = AVG 2013
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"AVG" = AVG 2013
"CCleaner" = CCleaner
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"NVIDIA Drivers" = NVIDIA Drivers
"WinRAR archiver" = WinRAR 4.01 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{017F8447-2A1D-0DDB-B5D7-CA2BFACE2886}" = CCC Help French
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{054E9A1C-3EA2-C657-E787-FD8DCF5C3D3B}" = CCC Help Czech
"{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{16D0F2D2-242C-4885-BEF1-4B1655C141AE}" = Bing Bar
"{189B9ACF-DBA6-4F52-8726-2E11049FB1F7}" = HydraVision
"{1A64965D-FE4B-46D9-A600-384D964EFC8A}" = Windows Live Fotogaléria
"{1DE2BD51-0300-772D-5E18-F337D95D5687}" = CCC Help German
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1" = World of Tanks
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Odovzdávací nástroj lokality Windows Live
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{224E8FEB-5C1F-077F-6FC5-602AC1AE644D}" = CCC Help Danish
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31
"{26A24AE4-039D-4CA4-87B4-2F83217017FF}" = Java 7 Update 17
"{275E9C49-C72F-D754-DEB7-77F10A9C00D8}" = CCC Help Japanese
"{28456131-01CD-4BE4-8D67-BDBDD1ED636A}" = Windows Live Sync
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{30049739-BE95-6591-B504-E6D7057D49CC}" = CCC Help Spanish
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3F1EB155-F96E-EB7B-2EF2-7375490E0FA9}" = CCC Help English
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4B023D7B-9E67-795D-FB31-B5E1F6DCA451}" = CCC Help Italian
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.5
"{54B7A3C7-0940-4C16-A509-FC3C3758D22A}_is1" = Amnesia - The Dark Descent
"{55F6C486-8C75-2A72-DAFE-CE78A624C9F7}" = CCC Help Russian
"{5AF23993-7152-1620-E43F-1B4542FB4F84}" = CCC Help Thai
"{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{63326924-3CAF-C858-3A8F-8598C87019D7}" = AMD VISION Engine Control Center
"{63822E89-11AA-F8EC-D433-F72A85799EC0}" = CCC Help Greek
"{66361420-4905-AEB8-17AE-172FDD164A7E}" = CCC Help Polish
"{67114EC2-5C83-4FE9-A1EF-358459AB3640}" = Windows Live Mail
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™
"{769F2A4B-84A3-9486-ADD2-9E5AB4B4E1E3}" = Catalyst Control Center InstallProxy
"{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8773DD1C-5FB2-95B5-5A93-0EFEAC900A4D}" = CCC Help Norwegian
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8CCBB0BF-9CC1-1A65-BB93-56012A460EE6}" = CCC Help Portuguese
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{8EA79DBF-D637-448A-89D6-410A087A4493}" = Samsung_MonSetup
"{8F66047B-1AF3-40D9-80D7-106E2EDC2C2A}" = EPU-4 Engine
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{96D06FDD-6AF4-4309-BC1B-1C9588B0575E}" = Dead Space™ 2
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A0A3CE05-96CB-52E9-434E-074F3BB7807E}" = CCC Help Turkish
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A789920E-E183-4311-9DEB-972913AB2FBF}" = Asistent pri prihlasovaní v sieti Windows Live
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9C64319-932F-D02B-B14C-FFFC3EC49E77}" = CCC Help Chinese Standard
"{AC76BA86-7AD7-1033-7B44-A95000000001}" = Adobe Reader 9.5.1
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B76C2956-321B-4EE3-84CA-AF3CEA63D4E6}" = Windows Live Movie Maker
"{BA88EE67-8974-459D-A1DB-C8281D9AC6F6}" = Browser Configuration Utility
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C09DB932-7619-7B56-30E3-C0454811D6D7}" = CCC Help Korean
"{C109F629-36BB-4F7B-9762-A038936CA457}" = Windows Live Essentials
"{C22A4697-BD77-ACB1-744F-1FD0A0BFF798}" = CCC Help Swedish
"{CFEAF8DD-4BDF-4141-BF2B-02BCA2DEB7FB}" = Windows Live Writer
"{D4329609-4102-4F8C-B83F-7FE024EEA314}" = Dead Space™ 3
"{D4B457B2-260F-C561-CA87-703BD3B724CA}" = Catalyst Control Center Graphics Previews Common
"{D6CDB506-297D-AE70-0EF6-DE5185F961BE}" = CCC Help Chinese Traditional
"{DAA18A0D-A57C-4611-B135-46EA06990E7D}" = XSplit
"{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}" = Catalyst Control Center - Branding
"{ECFD508E-68A2-91B2-46DD-1D03D783D94B}" = Catalyst Control Center Localization All
"{EDE361D5-35A5-DA7D-3462-C3DABD24029B}" = CCC Help Hungarian
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C0221D-1DCD-487A-A3D1-E0C5B954F1DC}" = OpenOffice.org 3.4
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F1E7DD6A-AE2D-D706-BEB3-937F76CA6AE9}" = CCC Help Finnish
"{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}" = Command and ConquerTM Generals Zero Hour
"{F56F54DD-BCB2-1221-2CB7-E983A5CF9D15}" = CCC Help Dutch
"{F9706A8C-D740-42CA-8703-E08EDD0F0778}" = LogMeIn Hamachi
"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"µTorrent CZ_is1" = µTorrent CZ 1.8.4 (build 16442)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Applian FLV and Media Player" = Applian FLV and Media Player 3.1.1.12
"DAEMON Tools Lite" = DAEMON Tools Lite
"DivX Setup" = DivX Setup
"Dungeon Defenders" = Dungeon Defenders
"ESN Sonar-0.70.4" = ESN Sonar
"GameSpy 3D" = GameSpy 3D
"Google Chrome" = Google Chrome
"Graboid Video" = Graboid Video 3.26
"Cheat Engine 6.3_is1" = Cheat Engine 6.3
"InstallShield_{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"InstallShield_{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}" = Command and ConquerTM Generals Zero Hour
"LogMeIn Hamachi" = LogMeIn Hamachi
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verzia 1.75.0.1300
"Mozilla Firefox 21.0 (x86 cs)" = Mozilla Firefox 21.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Origin" = Origin
"Postal 2_is1" = Portal 2
"PunkBusterSvc" = PunkBuster Services
"RaidCall" = RaidCall
"Steam App 43110" = Metro 2033
"Steam App 570" = Dota 2
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TeamViewer 8" = TeamViewer 8
"TWV0cm9MYXN0TGlnaHQ=_is1" = Metro: Last Light (c) Deep Silver version 1
"uTorrent" = µTorrent
"Vypínač na dobrou noc_is1" = Vypínač na dobrou noc verze 2.0
"WinLiveSuite_Wave3" = Windows Live Essentials

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1588890109-3522761576-2135906086-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"GameRanger" = GameRanger
"SOE-C:/Users/TomĂˇĹˇ/AppData/Local/Sony Online Entertainment/ApplicationUpdater" = applicationupdater
"UnityWebPlayer" = Unity Web Player

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 27. 6. 2013 9:10:39 | Computer Name = Tomáš-PC | Source = WinMgmt | ID = 10
Description =

[ System Events ]
Error - 27. 6. 2013 9:08:04 | Computer Name = Tomáš-PC | Source = Service Control Manager | ID = 7043
Description = Služba AVGIDSAgent sa po prijatí ovládacieho príkazu pred vypnutím
nevypla správne.

Error - 27. 6. 2013 9:09:11 | Computer Name = Tomáš-PC | Source = Service Control Manager | ID = 7000
Description = Spustenie služby AODDriver4.2 zlyhalo kvôli nasledujúcej chybe: %%2

Error - 27. 6. 2013 9:09:11 | Computer Name = Tomáš-PC | Source = Service Control Manager | ID = 7006
Description = Volanie ScRegSetValueExW zlyhalo pre FailureActions s nasledujúcou
chybou: %%5

Error - 27. 6. 2013 9:09:18 | Computer Name = Tomáš-PC | Source = Service Control Manager | ID = 7006
Description = Volanie ScRegSetValueExW zlyhalo pre FailureActions s nasledujúcou
chybou: %%5

Error - 27. 6. 2013 9:09:19 | Computer Name = Tomáš-PC | Source = Service Control Manager | ID = 7000
Description = Spustenie služby AODDriver4.2 zlyhalo kvôli nasledujúcej chybe: %%2

< End of report >

Spustte znovu OTL

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

:otl
IE:64bit: - HKLM\..\SearchScopes\{3DE1C549-8AA3-4E2D-A71A-4CEBDA13FE3D}: "URL" = http://www.bing.com/search?q={searchTerms}&form=MSBTDF&pc=MASB&src=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{89931546-F838-4D15-8CA3-9C56EE442D63}: "URL" = http://www.bing.com/search?q={searchTerms}&form=MSBTDF&pc=MASB&src=IE-SearchBox
IE - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://syb.msn.com
IE - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\..\SearchScopes\{858CF569-AB4E-441d-A698-C2D43433AA7D}: "URL" = http://search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB
IE - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\..\SearchScopes\{EEE805AB-37D3-4510-A3BC-0DA2ABF7D27F}: "URL" = http://www.google.com/custom?client=pub ... 1&hl=sk&q={searchTerms}
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET NOD32 ANTIVIRUS\MOZILLA THUNDERBIRD
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\.DEFAULT\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-19\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: sony.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: sony.com ([]* in )
O15 - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\..Trusted Domains: sony.com ([]* in Trusted sites)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Value error.)
O18:64bit: - Protocol\Handler\linkscanner - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\linkscanner - No CLSID value found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
[2013/06/27 14:04:12 | 000,000,000 | ---D | C] -- C:\JRT
[2013/06/27 14:03:07 | 000,545,954 | ---- | C] (Oleg N. Scherbakov) -- C:\Users\Tomáš\Desktop\JRT.exe
[2013/06/27 15:07:08 | 000,000,121 | ---- | M] () -- C:\Windows\DeleteOnReboot.bat
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[3 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[9 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[10 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[6 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
[1 C:\Windows\Temp\avg_a03664\ProgData\*.tmp files -> C:\Windows\Temp\avg_a03664\ProgData\*.tmp -> ]
[1 C:\Windows\Temp\avg_a03664\ProgFiles\AVG Secure Search\*.tmp files -> C:\Windows\Temp\avg_a03664\ProgFiles\AVG Secure Search\*.tmp -> ]
[2013/06/27 17:44:03 | 000,000,830 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013/06/27 15:09:25 | 000,000,350 | ---- | M] () -- C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job
[2013/06/27 15:09:25 | 000,000,350 | ---- | M] () -- C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
[2013/06/27 15:09:29 | 000,000,930 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013/06/27 17:51:02 | 000,000,934 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2013/06/27 15:09:19 | 000,000,354 | ---- | M] () -- C:\Windows\Tasks\ROC_JAN2013_TB_rmv.job
@Alternate Data Stream - 21 bytes -> \Users\Tomáš\AppData\Local\Sony Online Entertainment\ApplicationUpdater\wws_crashreport_uploader.exe:crc
@Alternate Data Stream - 21 bytes -> \Users\Public\Sony Online Entertainment\Installed Games\PlanetSide 2\LaunchPad.libs\wws_crashreport_uploader.exe:crc
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:0B4227B4

:reg
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=-
"Steam"=-
"uTorrent"=-
"Skype"=-
"GarenaPlus"=-
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BCU"=-
"vProt"=-
"SweetIM"=-
"LogMeIn Hamachi Ui"=-

:files
C:\Program Files (x86)\Common Files\AVG Secure Search
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]
[EMPTYJAVA]

Nasledne kliknete na Opravit
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

OTL log po reštartovaní

All processes killed
========== OTL ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3DE1C549-8AA3-4E2D-A71A-4CEBDA13FE3D}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3DE1C549-8AA3-4E2D-A71A-4CEBDA13FE3D}\ not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{89931546-F838-4D15-8CA3-9C56EE442D63}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{89931546-F838-4D15-8CA3-9C56EE442D63}\ not found.
HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKU\S-1-5-21-1588890109-3522761576-2135906086-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_USERS\S-1-5-21-1588890109-3522761576-2135906086-1001\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-1588890109-3522761576-2135906086-1001\Software\Microsoft\Internet Explorer\SearchScopes\{858CF569-AB4E-441d-A698-C2D43433AA7D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{858CF569-AB4E-441d-A698-C2D43433AA7D}\ not found.
Registry key HKEY_USERS\S-1-5-21-1588890109-3522761576-2135906086-1001\Software\Microsoft\Internet Explorer\SearchScopes\{EEE805AB-37D3-4510-A3BC-0DA2ABF7D27F}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE805AB-37D3-4510-A3BC-0DA2ABF7D27F}\ not found.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com deleted successfully.
File C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird not found.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\clonewarsadventures.com\ deleted successfully.
Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\freerealms.com\ deleted successfully.
Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\soe.com\ deleted successfully.
Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\sony.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\clonewarsadventures.com\ not found.
Registry key HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\freerealms.com\ not found.
Registry key HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\soe.com\ not found.
Registry key HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\sony.com\ not found.
Registry key HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\clonewarsadventures.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\freerealms.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\soe.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\sony.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\clonewarsadventures.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\freerealms.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\soe.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\sony.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-1588890109-3522761576-2135906086-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\clonewarsadventures.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-1588890109-3522761576-2135906086-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\freerealms.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-1588890109-3522761576-2135906086-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\soe.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-1588890109-3522761576-2135906086-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\sony.com\ deleted successfully.
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner\ deleted successfully.
File Protocol\Handler\linkscanner - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlmailhtml\ deleted successfully.
File Protocol\Handler\wlmailhtml - No CLSID value found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner\ not found.
File Protocol\Handler\linkscanner - No CLSID value found not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\JRT\temp folder moved successfully.
C:\JRT\erunt folder moved successfully.
C:\JRT folder moved successfully.
C:\Users\Tomáš\Desktop\JRT.exe moved successfully.
C:\Windows\DeleteOnReboot.bat moved successfully.
C:\Windows\msdownld.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP6AFE.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPDDC5.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP3891.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP6B8E.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP7B19.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPBE9D.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPBF86.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPC70B.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPFCB8.tmp folder deleted successfully.
C:\Windows\Installer\MSI32C5.tmp deleted successfully.
C:\Windows\Installer\MSI5597.tmp deleted successfully.
C:\Windows\Installer\MSI7C2C.tmp deleted successfully.
C:\Windows\Installer\MSI84EA.tmp- folder deleted successfully.
C:\Windows\Installer\MSI8DBF.tmp deleted successfully.
C:\Windows\Installer\MSIA10.tmp deleted successfully.
C:\Windows\Installer\MSID5C1.tmp deleted successfully.
C:\Windows\Installer\MSIE4F1.tmp deleted successfully.
C:\Windows\Installer\MSIECB1.tmp deleted successfully.
C:\Windows\Installer\MSIFEE9.tmp deleted successfully.
C:\Windows\Temp\avg-7f2e0f21-7b91-4451-9b68-c215f697d71b.tmp deleted successfully.
C:\Windows\Temp\avg-9a8c8678-83b8-4657-9d92-671191c10b20.tmp deleted successfully.
C:\Windows\Temp\avg-a6f6d418-e591-4455-aa67-fd626b474d2f.tmp deleted successfully.
C:\Windows\Temp\avg-e54d7479-caf7-4f1e-8d03-5d527cfac911.tmp deleted successfully.
C:\Windows\Temp\avg-e7e1ea42-869f-417c-b375-900b9e7c0c18.tmp deleted successfully.
C:\Windows\Temp\FireFoxSearchXml.tmp deleted successfully.
C:\Windows\Temp\avg_a03664\ProgData\FireFoxSearchXml.tmp deleted successfully.
C:\Windows\Temp\avg_a03664\ProgFiles\AVG Secure Search\FireFoxSearchXml.tmp deleted successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job moved successfully.
C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job moved successfully.
C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Windows\Tasks\ROC_JAN2013_TB_rmv.job moved successfully.
ADS \Users\Tomáš\AppData\Local\Sony Online Entertainment\ApplicationUpdater\wws_crashreport_uploader.exe:crc deleted successfully.
ADS \Users\Public\Sony Online Entertainment\Installed Games\PlanetSide 2\LaunchPad.libs\wws_crashreport_uploader.exe:crc deleted successfully.
ADS C:\ProgramData\TEMP:0B4227B4 deleted successfully.
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Steam deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Skype deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\GarenaPlus deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\BCU not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\vProt not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SweetIM not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\LogMeIn Hamachi Ui deleted successfully.
========== FILES ==========
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\9.0.1 folder moved successfully.
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.3.0 folder moved successfully.
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater folder moved successfully.
C:\Program Files (x86)\Common Files\AVG Secure Search folder moved successfully.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Administrator

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

User: Tom ç

User: Tomá

User: Tomáš
->Temp folder emptied: 1746639 bytes
->Temporary Internet Files folder emptied: 321705 bytes
->Java cache emptied: 863629 bytes
->FireFox cache emptied: 60557950 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 2389 bytes

User: TomĂˇĹˇ

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 31288143 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 95429 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 91,00 mb

[EMPTYFLASH]

User: Administrator

User: All Users

User: Default

User: Default User

User: Public

User: Tom ç

User: Tomá

User: Tomáš
->Flash cache emptied: 0 bytes

User: TomĂˇĹˇ

Total Flash Files Cleaned = 0,00 mb

[EMPTYJAVA]

User: Administrator

User: All Users

User: Default

User: Default User

User: Public

User: Tom ç

User: Tomá

User: Tomáš
->Java cache emptied: 0 bytes

User: TomĂˇĹˇ

Total Java Files Cleaned = 0,00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 06282013_142856

Files\Folders moved on Reboot...
C:\Users\Tomáš\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Fajn, jak se chova PC

VIRY.CZ

Prosím o pomoc s odvírovaním a opravou

Prosím o pomoc s odvírovaním a opravou

Re: Prosím o pomoc s odvírovaním a opravou

Re: Prosím o pomoc s odvírovaním a opravou

Re: Prosím o pomoc s odvírovaním a opravou

Re: Prosím o pomoc s odvírovaním a opravou

Re: Prosím o pomoc s odvírovaním a opravou

Re: Prosím o pomoc s odvírovaním a opravou

Re: Prosím o pomoc s odvírovaním a opravou

Re: Prosím o pomoc s odvírovaním a opravou

Re: Prosím o pomoc s odvírovaním a opravou

Re: Prosím o pomoc s odvírovaním a opravou

Re: Prosím o pomoc s odvírovaním a opravou

Re: Prosím o pomoc s odvírovaním a opravou

Re: Prosím o pomoc s odvírovaním a opravou

Re: Prosím o pomoc s odvírovaním a opravou