RSIT - chybové hlášení

Zpráva

jiri.pisek · #1 Příspěvek od **jiri.pisek** » 02 zář 2014 19:14

Dobrý večer,

RSIT mi nejde spustit, píše při spuštění - Error: Variable used without being declared.

Můžete mi prosím poradit?

Zatím děkuji

#2 Příspěvek od **Rudy** » 02 zář 2014 19:24

Zdravím!
Místo něho použijte tuto utiltu: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

jiri.pisek · #3 Příspěvek od **jiri.pisek** » 02 zář 2014 19:50

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:31-08-2014 02
Ran by jiri (administrator) on JIRI-ASUS on 02-09-2014 20:40:13
Running from C:\Users\jiri\Desktop
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files\ATK Hotkey\AsLdrSrv.exe
() C:\Program Files\ATKOSD2\ATKOSD2.exe
() C:\Program Files\ATK Hotkey\HControlUser.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(MindSpark) C:\Program Files\RadioRage_4j\bar\1.bin\4jSrchMn.exe
(VER_COMPANY_NAME) C:\Program Files\RadioRage_4j\bar\1.bin\4jbrmon.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(COMPANYVERS_NAME) C:\Program Files\RadioRage_4j\bar\1.bin\4jbarsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(ATK0100) C:\Program Files\ATK Hotkey\HControl.exe
() C:\Program Files\ATK Hotkey\MsgTranAgt.exe
() C:\Program Files\Wireless Console 2\wcourier.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
() C:\Program Files\Synology\Assistant\UsbClientService.exe
() C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe
() C:\Program Files\ATK Hotkey\ATKOSD.exe
() C:\Program Files\ATK Hotkey\WDC.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\tv_w32.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Malwarebytes Corporation) C:\Users\jiri\Desktop\mbar\mbar.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(forum.viry.cz) C:\Users\jiri\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ATKOSD2] => C:\Program Files\ATKOSD2\ATKOSD2.exe [7766016 2008-01-23] ()
HKLM\...\Run: [HControlUser] => C:\Program Files\ATK Hotkey\HcontrolUser.exe [98304 2008-01-11] ()
HKLM\...\Run: [ASUS Camera ScreenSaver] => C:\Windows\AsScrProlog.exe [47672 2011-01-02] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416 2007-12-06] (Synaptics, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [DivXUpdate] => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1259376 2011-07-29] ()
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [951576 2014-03-11] (Microsoft Corporation)
HKLM\...\Run: [RadioRage Search Scope Monitor] => C:\Program Files\RadioRage_4j\bar\1.bin\4jSrchMn.exe [42536 2012-11-16] (MindSpark)
HKLM\...\Run: [RadioRage_4j Browser Plugin Loader] => C:\Program Files\RadioRage_4j\bar\1.bin\4jbrmon.exe [30096 2012-11-16] (VER_COMPANY_NAME)
HKLM\...\Run: [hpqSRMon] => C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [2296600 2013-07-31] (Logitech, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-464546878-432236936-1688433523-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-464546878-432236936-1688433523-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKU\S-1-5-21-464546878-432236936-1688433523-1001\...\Policies\Explorer: []
HKU\S-1-5-21-464546878-432236936-1688433523-1001\...\MountPoints2: {e6a665e6-3bb0-11e3-9aec-9cdf026f8654} - E:\autostart.exe
HKU\S-1-5-21-464546878-432236936-1688433523-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-464546878-432236936-1688433523-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKU\S-1-5-21-464546878-432236936-1688433523-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\Explorer: []
HKU\S-1-5-21-464546878-432236936-1688433523-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {e6a665e6-3bb0-11e3-9aec-9cdf026f8654} - E:\autostart.exe
Lsa: [Authentication Packages] msv1_0 relog_ap
ShellIconOverlayIdentifiers: Správa překryvné ikony digitálních podpisů AutoCADu -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: proxy.pisek.elsat.cz:3128
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.mywebsearch.com/index.jhtml ... D0F1EF4ECB
URLSearchHook: HKCU - (No Name) - {37483b40-c254-4a72-bda4-22ee90182c1e} - No File
URLSearchHook: HKCU - (No Name) - {3c35ad63-af1d-4e21-b484-b6651a8efcf9} - C:\Program Files\RadioRage_4j\bar\1.bin\4jSrcAs.dll (MindSpark)
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = http://searchfunmoods.com/results.php?f ... 1164233325
SearchScopes: HKLM - {275322F5-CCA3-E2E8-E290-0E437DABBAF3} URL = http://dts.search-results.com/sr?src=ie ... earchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = http://searchfunmoods.com/results.php?f ... 1164233325
SearchScopes: HKCU - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = http://searchfunmoods.com/results.php?f ... 1164233325
SearchScopes: HKCU - {275322F5-CCA3-E2E8-E290-0E437DABBAF3} URL = http://dts.search-results.com/sr?src=ie ... earchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = http://searchfunmoods.com/results.php?f ... 1164233325
SearchScopes: HKCU - {BD2090F8-0289-4BE1-A1FF-A24A38BDC57B} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
BHO: WebbbInng -> {12ea0b14-33cb-4c92-8681-22b356fcd23e} -> C:\Program Files\WebbbInng\r75KOe4NptLQdW.dll ()
BHO: Search Assistant BHO -> {5848763c-2668-44ca-adbe-2999a6ee2858} -> C:\Program Files\RadioRage_4j\bar\1.bin\4jSrcAs.dll (MindSpark)
Toolbar: HKLM - PDFXChange 4.0 - {42DFA04F-0F16-418e-B80C-AB97A5AFAD39} - C:\Program Files\Tracker Software\PDF-XChange 4\PXCIEAddin4.dll (Tracker Softaware)
Toolbar: HKLM - RadioRage - {78ba36c9-6036-482b-b48d-ecca6f964b84} - C:\Program Files\RadioRage_4j\bar\1.bin\4jbar.dll (MindSpark)
Toolbar: HKLM - Funmoods Toolbar - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - C:\Program Files\Funmoods\1.5.23.22\escorTlbr.dll (Funmoods)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0017-0000-0055-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @RadioRage_4j.com/Plugin -> C:\Program Files\RadioRage_4j\bar\1.bin\NP4jStub.dll (MindSpark)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF Plugin HKCU: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdjvu.dll (Caminova, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Search_Results.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011-11-22]
FF HKLM\...\Firefox\Extensions: [4jffxtbr@RadioRage_4j.com] - C:\Program Files\RadioRage_4j\bar\1.bin
FF Extension: RadioRage - C:\Program Files\RadioRage_4j\bar\1.bin [2012-11-16]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-10-22]
FF HKLM\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013-11-08]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://search.conduit.com/?ctid=CT2801948&SearchSource=48", "hxxp://searchfunmoods.com/?f=1&a=as1211&chnl=as1211&cd=2XzuyEtN2Y1L1QzutDyCtBtByEtAtC0D0ByE0F0D0B0AtDyDtN0D0Tzu0CtAtBtCtN1L2XzutBtFtBtFtDtFtAyEyE&cr=1164233325"
CHR CustomProfile: C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Translate) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2012-08-17]
CHR Extension: (Gismeteo) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfegaehidkkcfaikpaijcdahnpikhobf [2012-08-17]
CHR Extension: (YouTube) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-02-27]
CHR Extension: (Funmoods) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpglkicenollcignonpgiafdgfeehoj [2012-11-18]
CHR Extension: (Vyhledávání Google) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-02-27]
CHR Extension: (priicechop) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimggolliaagphgckgppaglbkneolacb [2014-08-20]
CHR Extension: (Gmail Offline) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2012-08-17]
CHR Extension: (prriCechop) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\hojmcpjidhcdkhbadlndckekeldfbfma [2014-08-20]
CHR Extension: (PriceChop) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhcpejlpbecikclcidghdmghclmkpcon [2014-08-31]
CHR Extension: (NexetCOup) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpogneefnfdbaodbopialabbbdejciea [2014-09-02]
CHR Extension: (Mail Checker) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2014-08-31]
CHR Extension: (Cloud PDF Tools) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjpieolhcmajmolkhbbeljknkcdcmffk [2012-08-17]
CHR Extension: (WebbbInng) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\neohidajfjdofnipjlcdagadinlddkge [2014-09-02]
CHR Extension: (Peněženka Google) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-02]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2012-02-27]
CHR Extension: (NNexTCoUp) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\plmghefgjocikanaeekofaipldhokkbf [2014-09-01]
CHR Extension: (priicechop) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimggolliaagphgckgppaglbkneolacb\3.9 [2014-08-20]
CHR Extension: (prriCechop) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\hojmcpjidhcdkhbadlndckekeldfbfma\3.9 [2014-08-20]
CHR Extension: (PriceChop) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhcpejlpbecikclcidghdmghclmkpcon\3.9 [2014-08-31]
CHR Extension: (NexetCOup) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpogneefnfdbaodbopialabbbdejciea\1.0 [2014-09-02]
CHR Extension: (WebbbInng) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\neohidajfjdofnipjlcdagadinlddkge\1.1 [2014-09-02]
CHR Extension: (NNexTCoUp) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\plmghefgjocikanaeekofaipldhokkbf\1.0 [2014-09-01]
CHR HKLM\...\Chrome\Extension: [bbjciahceamgodcoidkjpchnokgfpphh] - C:\Users\jiri\AppData\Local\funmoods.crx [2012-11-16]
CHR HKLM\...\Chrome\Extension: [cjpglkicenollcignonpgiafdgfeehoj] - C:\Users\jiri\AppData\Local\funmoods-speeddial_sf.crx [2012-11-16]
CHR HKLM\...\Chrome\Extension: [gclijllifhfpomppedeljakfegbcpojn] - C:\Users\jiri\AppData\Local\Temp\ccex.crx [2012-11-16]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-10-26]
CHR HKCU\...\Chrome\Extension: [bbjciahceamgodcoidkjpchnokgfpphh] - C:\Users\jiri\AppData\Local\funmoods.crx [2012-11-16]
CHR HKCU\...\Chrome\Extension: [cjpglkicenollcignonpgiafdgfeehoj] - C:\Users\jiri\AppData\Local\funmoods-speeddial_sf.crx [2012-11-16]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 32148148; c:\Program Files\PC_Booster\AssistantSvc.dll [174928 2014-08-31] () [File not signed]
R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [427288 2007-10-23] (Acronis)
R2 ASLDRService; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [94208 2007-10-02] () [File not signed]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1044816 2013-10-16] (Flexera Software, Inc.)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2014-03-11] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [279776 2014-03-11] (Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
R2 RadioRage_4jService; C:\Program Files\RadioRage_4j\bar\1.bin\4jbarsvc.exe [42504 2012-11-16] (COMPANYVERS_NAME)
S4 SolidWorks Licensing Service; C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2012-04-06] (SolidWorks) [File not signed]
R2 Správce výběru OS; C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe [2156952 2010-10-28] ()
S4 TryAndDecideService; C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe [495832 2007-10-23] ()
R2 UsbClientService; C:\Program Files\Synology\Assistant\UsbClientService.exe [248736 2013-11-14] ()

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 3dxhid; C:\Windows\System32\DRIVERS\3dxhid.sys [28944 2013-05-30] (3Dconnexion Inc.)
S3 AF15BDA; C:\Windows\System32\DRIVERS\AF15BDA.sys [483200 2011-01-02] (ITETech )
R3 busenum; C:\Windows\System32\DRIVERS\busenum.sys [45792 2012-08-03] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-10-23] (DT Soft Ltd)
S3 GemCCID; C:\Windows\System32\Drivers\GemCCID.sys [98816 2013-02-22] (Gemalto)
S3 KMJHidMini; C:\Windows\System32\DRIVERS\3dxkmj.sys [16128 2013-05-30] (3Dconnextion Inc.) [File not signed]
S3 KMJShim; C:\Windows\System32\DRIVERS\3dxshim.sys [3712 2013-05-30] (3Dconnextion Inc.) [File not signed]
S3 LEqdUsb; C:\Windows\System32\Drivers\LEqdUsb.Sys [42264 2013-05-23] (Logitech, Inc.)
S3 LHidEqd; C:\Windows\System32\Drivers\LHidEqd.Sys [10136 2013-05-23] (Logitech, Inc.)
R3 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [75480 2014-09-02] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2014-09-02] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231960 2014-01-25] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2007-07-31] (ATK0100)
R0 nhcDriverDevice; C:\Windows\System32\drivers\nhcDriver.sys [71680 2011-02-22] (Notebook Hardware Control) [File not signed]
S3 PTLIBUSB0; C:\Windows\System32\DRIVERS\PTLIBUSB0.SYS [22144 2008-03-07] (http://www.pruftechnik.com/usbgpl)
S4 RsFx0102; C:\Windows\System32\DRIVERS\RsFx0102.sys [242712 2008-07-10] (Microsoft Corporation)
S3 Ser2pl; C:\Windows\System32\DRIVERS\ser2pl.sys [119424 2005-06-17] (Prolific Technology Inc.) [File not signed]
S3 silabenm; C:\Windows\System32\DRIVERS\silabenm.sys [16128 2014-04-11] (Silicon Laboratories)
S3 silabser; C:\Windows\System32\DRIVERS\silabser.sys [67968 2014-04-11] (Silicon Laboratories)
R0 tdrpman; C:\Windows\System32\DRIVERS\tdrpman.sys [368736 2011-01-03] (Acronis)
R2 tifsfilter; C:\Windows\System32\DRIVERS\tifsfilt.sys [44384 2011-01-03] (Acronis)
S2 Aspi32; System32\drivers\aspi32.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-02 20:40 - 2014-09-02 20:42 - 00023814 _____ () C:\Users\jiri\Desktop\FRST.txt
2014-09-02 20:39 - 2014-09-02 20:40 - 00000000 ____D () C:\FRST
2014-09-02 20:35 - 2014-09-02 20:35 - 00112640 _____ (forum.viry.cz) C:\Users\jiri\Desktop\FRSTLauncher.exe
2014-09-02 20:33 - 2014-09-02 20:33 - 00112640 _____ (forum.viry.cz) C:\Users\jiri\Desktop\Nepotvrzeno 232408.crdownload
2014-09-02 20:32 - 2014-09-02 20:32 - 01096704 _____ (Farbar) C:\Users\jiri\Desktop\FRST.exe
2014-09-02 20:27 - 2014-09-02 20:27 - 00112107 _____ (forum.viry.cz) C:\Users\jiri\Downloads\VerzeOS.exe
2014-09-02 20:05 - 2014-09-02 20:07 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-09-02 20:05 - 2014-09-02 20:05 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-02 20:04 - 2014-09-02 20:04 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-02 20:03 - 2014-09-02 20:04 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-09-02 20:03 - 2014-09-02 20:03 - 00000000 ____D () C:\Users\jiri\Desktop\mbar
2014-09-02 20:01 - 2014-09-02 20:02 - 14349744 _____ (Malwarebytes Corp.) C:\Users\jiri\Desktop\mbar-1.07.0.1012.exe
2014-09-02 19:52 - 2014-09-02 19:56 - 00000000 ____D () C:\Program Files\trend micro
2014-09-02 19:52 - 2014-09-02 19:52 - 00000000 ____D () C:\rsit
2014-09-02 19:51 - 2014-09-02 19:52 - 00781909 _____ () C:\RSIT.exe
2014-09-02 19:36 - 2014-09-02 19:36 - 00001498 _____ () C:\Windows\PFRO.log
2014-09-02 19:36 - 2014-09-02 19:36 - 00000056 _____ () C:\Windows\setupact.log
2014-09-02 19:36 - 2014-09-02 19:36 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-02 19:35 - 2014-09-02 19:35 - 00000000 ____D () C:\ProgramData\WebbbInng
2014-09-02 19:34 - 2014-09-02 19:35 - 00000000 ____D () C:\Program Files\WebbbInng
2014-09-02 19:30 - 2014-09-02 19:31 - 00865828 _____ () C:\Users\jiri\Documents\cc_20140902_193032.reg
2014-09-02 19:13 - 2014-09-02 19:14 - 246280452 _____ () C:\Users\jiri\Documents\zaloha registru 2014_09_02.reg
2014-09-02 19:10 - 2014-09-02 19:10 - 00000965 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-09-02 19:10 - 2014-09-02 19:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-09-02 19:10 - 2014-09-02 19:10 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-02 19:03 - 2014-09-02 19:05 - 11319706 _____ () C:\Users\jiri\Downloads\cc-setup.exe
2014-09-02 18:52 - 2014-09-02 19:36 - 00000000 ____D () C:\ProgramData\NexetCOup
2014-09-02 18:52 - 2014-09-02 19:34 - 00000000 ____D () C:\Program Files\NexetCOup
2014-09-01 20:38 - 2014-09-01 20:38 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-09-01 20:36 - 2014-09-02 18:03 - 00000000 ____D () C:\Windows\AF54923662584AC6A0435B5B89C6EB61.TMP
2014-09-01 20:35 - 2014-09-01 20:36 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard
2014-09-01 20:33 - 2014-09-01 20:33 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\jiri\Downloads\SpyHunter-Installer.exe
2014-09-01 20:29 - 2014-09-01 21:05 - 00000000 ____D () C:\ProgramData\Avira
2014-09-01 20:28 - 2014-09-01 20:28 - 04791736 _____ (Avira Operations GmbH & Co. KG) C:\Users\jiri\Downloads\avira_en_av___mdo.exe
2014-09-01 20:15 - 2014-09-01 21:14 - 00000000 ____D () C:\ProgramData\NNexTCoUp
2014-09-01 20:14 - 2014-09-01 21:12 - 00000000 ____D () C:\Program Files\NNexTCoUp
2014-08-31 14:18 - 2014-09-02 19:37 - 00000474 ____H () C:\Windows\Tasks\PC_Booster-S-493389286.job
2014-08-31 14:18 - 2014-08-31 14:18 - 00000000 ____D () C:\ProgramData\Trusted Publisher
2014-08-31 14:18 - 2014-08-31 14:18 - 00000000 ____D () C:\Program Files\PC_Booster
2014-08-31 14:17 - 2014-09-02 18:53 - 00000000 ____D () C:\ProgramData\YoutoubeAdBuLocekkE
2014-08-31 14:17 - 2014-09-02 18:51 - 00000000 ____D () C:\Program Files\YoutoubeAdBuLocekkE
2014-08-31 14:16 - 2014-09-01 20:16 - 00000000 ____D () C:\ProgramData\PriceChop
2014-08-31 14:16 - 2014-09-01 20:14 - 00000000 ____D () C:\Program Files\PriceChop
2014-08-31 12:24 - 2014-08-31 12:24 - 01922200 _____ (Bandoo Media Inc) C:\Users\jiri\Downloads\3D73.tmp
2014-08-29 22:53 - 2014-08-23 03:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-29 22:53 - 2014-08-23 02:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-26 18:52 - 2014-09-02 19:27 - 00000000 ____D () C:\Windows\Minidump
2014-08-24 20:04 - 2014-08-24 20:04 - 00000081 _____ () C:\Users\jiri\Desktop\lukáš.txt
2014-08-20 23:11 - 2014-08-20 23:12 - 00000000 ____D () C:\ProgramData\priicechop
2014-08-20 23:11 - 2014-08-20 23:11 - 00000000 ____D () C:\Program Files\priicechop
2014-08-20 23:08 - 2014-08-20 23:08 - 00000000 ____D () C:\ProgramData\priccechop
2014-08-20 23:08 - 2014-08-20 23:08 - 00000000 ____D () C:\Program Files\priccechop
2014-08-20 23:07 - 2014-09-02 19:35 - 00000000 ____D () C:\ProgramData\97183829d3a95b63
2014-08-20 23:07 - 2014-09-02 19:34 - 00000270 __RSH () C:\ProgramData\ntuser.pol
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\jiri\AppData\Local\Torch
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\jiri\AppData\Local\Chromatic Browser
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\jiri\AppData\Local\Comodo
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\HomeGroupUser$
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Guest\AppData\Local\Torch
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Guest\AppData\Local\Chromatic Browser
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Guest
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Chromatic Browser
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Administrator
2014-08-18 23:52 - 2014-08-18 23:53 - 71085745 _____ () C:\Users\jiri\Downloads\jdk-7u60-linux-arm-vfp-hflt.gz
2014-08-18 23:34 - 2014-07-25 18:14 - 299202560 _____ () C:\Users\jiri\Downloads\jdk-7u67-linux-i586
2014-08-18 23:32 - 2014-08-18 23:33 - 143589987 _____ () C:\Users\jiri\Downloads\jdk-7u67-linux-i586.gz
2014-08-18 23:15 - 2014-07-25 18:15 - 142223360 _____ () C:\Users\jiri\Downloads\jre-7u67-linux-i586
2014-08-18 23:12 - 2014-08-18 23:12 - 48426207 _____ () C:\Users\jiri\Downloads\jre-7u67-linux-i586.gz
2014-08-18 23:08 - 2014-08-18 23:08 - 33092435 _____ () C:\Users\jiri\Downloads\jre-7u67-linux-i586.rpm
2014-08-16 22:48 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-16 22:48 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-16 22:48 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-16 22:48 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-16 21:39 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-16 21:39 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-16 21:39 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-16 21:39 - 2014-07-25 15:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-16 21:39 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-16 21:39 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-16 21:39 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-16 21:39 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-16 21:39 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-16 21:39 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-16 21:39 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-16 21:39 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-16 21:39 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-16 21:39 - 2014-07-25 14:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-16 21:39 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-16 21:39 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-16 21:39 - 2014-07-25 13:59 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-16 21:39 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-16 21:39 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-16 21:39 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-16 21:39 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-16 21:39 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-16 21:39 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-16 21:39 - 2014-07-25 13:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-16 21:39 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-16 21:39 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-16 21:39 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-16 21:39 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-16 21:39 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-16 21:39 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-16 21:39 - 2014-07-14 03:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-16 21:39 - 2014-06-16 03:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-16 21:39 - 2014-06-16 03:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-08-16 21:39 - 2014-06-16 03:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-16 21:38 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-16 21:38 - 2014-06-03 11:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-16 21:38 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-16 21:38 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-16 21:38 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-16 21:37 - 2014-08-07 03:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-16 21:37 - 2014-08-07 03:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-16 21:37 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-15 19:21 - 2014-08-15 19:21 - 00000000 ____D () C:\Users\jiri\Desktop\Loga
2014-08-12 21:02 - 2014-08-26 19:43 - 00000000 ____D () C:\Users\jiri\Documents\wittmann mail
2014-08-07 13:08 - 2014-08-07 13:08 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-08-07 13:08 - 2014-08-07 13:08 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-08-07 13:08 - 2014-08-07 13:08 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-08-07 13:08 - 2014-08-07 13:08 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-08-07 13:08 - 2014-08-07 13:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-07 13:08 - 2014-08-07 13:08 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-08-03 19:22 - 2014-05-14 18:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-03 19:22 - 2014-05-14 18:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-03 19:22 - 2014-05-14 18:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-03 19:22 - 2014-05-14 18:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-03 19:21 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-03 19:21 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-03 19:21 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-03 19:20 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-03 19:20 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-02 20:42 - 2014-09-02 20:40 - 00023814 _____ () C:\Users\jiri\Desktop\FRST.txt
2014-09-02 20:40 - 2014-09-02 20:39 - 00000000 ____D () C:\FRST
2014-09-02 20:35 - 2014-09-02 20:35 - 00112640 _____ (forum.viry.cz) C:\Users\jiri\Desktop\FRSTLauncher.exe
2014-09-02 20:33 - 2014-09-02 20:33 - 00112640 _____ (forum.viry.cz) C:\Users\jiri\Desktop\Nepotvrzeno 232408.crdownload
2014-09-02 20:32 - 2014-09-02 20:32 - 01096704 _____ (Farbar) C:\Users\jiri\Desktop\FRST.exe
2014-09-02 20:27 - 2014-09-02 20:27 - 00112107 _____ (forum.viry.cz) C:\Users\jiri\Downloads\VerzeOS.exe
2014-09-02 20:27 - 2012-02-27 13:50 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-02 20:07 - 2014-09-02 20:05 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-09-02 20:05 - 2014-09-02 20:05 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-02 20:04 - 2014-09-02 20:04 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-02 20:04 - 2014-09-02 20:03 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-09-02 20:03 - 2014-09-02 20:03 - 00000000 ____D () C:\Users\jiri\Desktop\mbar
2014-09-02 20:02 - 2014-09-02 20:01 - 14349744 _____ (Malwarebytes Corp.) C:\Users\jiri\Desktop\mbar-1.07.0.1012.exe
2014-09-02 19:59 - 2011-01-02 17:01 - 02066684 _____ () C:\Windows\WindowsUpdate.log
2014-09-02 19:56 - 2014-09-02 19:52 - 00000000 ____D () C:\Program Files\trend micro
2014-09-02 19:56 - 2009-07-14 06:34 - 00022576 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-02 19:56 - 2009-07-14 06:34 - 00022576 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-02 19:52 - 2014-09-02 19:52 - 00000000 ____D () C:\rsit
2014-09-02 19:52 - 2014-09-02 19:51 - 00781909 _____ () C:\RSIT.exe
2014-09-02 19:45 - 2012-08-16 19:48 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-02 19:37 - 2014-08-31 14:18 - 00000474 ____H () C:\Windows\Tasks\PC_Booster-S-493389286.job
2014-09-02 19:37 - 2012-02-27 13:50 - 00000932 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-02 19:36 - 2014-09-02 19:36 - 00001498 _____ () C:\Windows\PFRO.log
2014-09-02 19:36 - 2014-09-02 19:36 - 00000056 _____ () C:\Windows\setupact.log
2014-09-02 19:36 - 2014-09-02 19:36 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-02 19:36 - 2014-09-02 18:52 - 00000000 ____D () C:\ProgramData\NexetCOup
2014-09-02 19:36 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-02 19:35 - 2014-09-02 19:35 - 00000000 ____D () C:\ProgramData\WebbbInng
2014-09-02 19:35 - 2014-09-02 19:34 - 00000000 ____D () C:\Program Files\WebbbInng
2014-09-02 19:35 - 2014-08-20 23:07 - 00000000 ____D () C:\ProgramData\97183829d3a95b63
2014-09-02 19:34 - 2014-09-02 18:52 - 00000000 ____D () C:\Program Files\NexetCOup
2014-09-02 19:34 - 2014-08-20 23:07 - 00000270 __RSH () C:\ProgramData\ntuser.pol
2014-09-02 19:31 - 2014-09-02 19:30 - 00865828 _____ () C:\Users\jiri\Documents\cc_20140902_193032.reg
2014-09-02 19:28 - 2014-01-13 19:45 - 00000000 ____D () C:\Users\jiri\AppData\Roaming\TeamViewer
2014-09-02 19:28 - 2012-01-25 23:24 - 00000000 ____D () C:\Users\jiri\AppData\Roaming\Skype
2014-09-02 19:28 - 2011-11-09 17:37 - 00000000 ____D () C:\Users\jiri\AppData\Roaming\Vso
2014-09-02 19:28 - 2011-03-12 19:05 - 00000000 ____D () C:\Users\jiri\AppData\Roaming\Media Player Classic
2014-09-02 19:28 - 2011-01-07 18:00 - 00000000 ____D () C:\Users\jiri\AppData\Roaming\DAEMON Tools Lite
2014-09-02 19:27 - 2014-08-26 18:52 - 00000000 ____D () C:\Windows\Minidump
2014-09-02 19:27 - 2011-01-02 16:57 - 00000000 ____D () C:\Windows\Panther
2014-09-02 19:14 - 2014-09-02 19:13 - 246280452 _____ () C:\Users\jiri\Documents\zaloha registru 2014_09_02.reg
2014-09-02 19:10 - 2014-09-02 19:10 - 00000965 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-09-02 19:10 - 2014-09-02 19:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-09-02 19:10 - 2014-09-02 19:10 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-02 19:05 - 2014-09-02 19:03 - 11319706 _____ () C:\Users\jiri\Downloads\cc-setup.exe
2014-09-02 18:54 - 2009-07-14 06:33 - 03716896 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-02 18:53 - 2014-08-31 14:17 - 00000000 ____D () C:\ProgramData\YoutoubeAdBuLocekkE
2014-09-02 18:51 - 2014-08-31 14:17 - 00000000 ____D () C:\Program Files\YoutoubeAdBuLocekkE
2014-09-02 18:44 - 2013-10-18 20:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Profili
2014-09-02 18:44 - 2013-10-18 20:16 - 00000000 ____D () C:\Program Files\ProfiliV2
2014-09-02 18:43 - 2013-10-09 11:13 - 00000000 ____D () C:\Program Files\ModellUtility 1.0
2014-09-02 18:41 - 2013-10-16 19:24 - 00000000 ____D () C:\Program Files\Autodesk
2014-09-02 18:41 - 2013-10-15 14:02 - 00000000 ____D () C:\Program Files\Apperson
2014-09-02 18:39 - 2011-01-02 17:25 - 00097904 _____ () C:\Users\jiri\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-02 18:31 - 2011-01-08 12:26 - 00000000 ____D () C:\ProgramData\Autodesk
2014-09-02 18:30 - 2011-01-08 12:26 - 00000000 ____D () C:\Users\jiri\AppData\Roaming\Autodesk
2014-09-02 18:25 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-09-02 18:03 - 2014-09-01 20:36 - 00000000 ____D () C:\Windows\AF54923662584AC6A0435B5B89C6EB61.TMP
2014-09-01 21:14 - 2014-09-01 20:15 - 00000000 ____D () C:\ProgramData\NNexTCoUp
2014-09-01 21:12 - 2014-09-01 20:14 - 00000000 ____D () C:\Program Files\NNexTCoUp
2014-09-01 21:05 - 2014-09-01 20:29 - 00000000 ____D () C:\ProgramData\Avira
2014-09-01 20:38 - 2014-09-01 20:38 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-09-01 20:36 - 2014-09-01 20:35 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard
2014-09-01 20:33 - 2014-09-01 20:33 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\jiri\Downloads\SpyHunter-Installer.exe
2014-09-01 20:30 - 2011-01-02 19:07 - 00000000 ____D () C:\Users\jiri\AppData\Roaming\Mozilla
2014-09-01 20:28 - 2014-09-01 20:28 - 04791736 _____ (Avira Operations GmbH & Co. KG) C:\Users\jiri\Downloads\avira_en_av___mdo.exe
2014-09-01 20:16 - 2014-08-31 14:16 - 00000000 ____D () C:\ProgramData\PriceChop
2014-09-01 20:14 - 2014-08-31 14:16 - 00000000 ____D () C:\Program Files\PriceChop
2014-08-31 14:18 - 2014-08-31 14:18 - 00000000 ____D () C:\ProgramData\Trusted Publisher
2014-08-31 14:18 - 2014-08-31 14:18 - 00000000 ____D () C:\Program Files\PC_Booster
2014-08-31 12:24 - 2014-08-31 12:24 - 01922200 _____ (Bandoo Media Inc) C:\Users\jiri\Downloads\3D73.tmp
2014-08-31 12:16 - 2014-07-20 19:38 - 00000000 ____D () C:\Users\jiri\Documents\XIAOMI
2014-08-29 17:51 - 2011-01-02 17:13 - 01794282 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-27 16:34 - 2009-07-14 06:53 - 00032582 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-08-26 20:24 - 2011-02-25 19:40 - 00000000 ____D () C:\Users\jiri\Documents\Zaloha
2014-08-26 20:22 - 2011-01-08 12:39 - 00000000 ____D () C:\Users\jiri\AppData\Local\Autodesk
2014-08-26 19:45 - 2011-01-08 12:47 - 00000000 ____D () C:\Users\Public\Documents\Autodesk
2014-08-26 19:43 - 2014-08-12 21:02 - 00000000 ____D () C:\Users\jiri\Documents\wittmann mail
2014-08-24 20:04 - 2014-08-24 20:04 - 00000081 _____ () C:\Users\jiri\Desktop\lukáš.txt
2014-08-23 03:46 - 2014-08-29 22:53 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 02:42 - 2014-08-29 22:53 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-20 23:51 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-08-20 23:12 - 2014-08-20 23:11 - 00000000 ____D () C:\ProgramData\priicechop
2014-08-20 23:11 - 2014-08-20 23:11 - 00000000 ____D () C:\Program Files\priicechop
2014-08-20 23:08 - 2014-08-20 23:08 - 00000000 ____D () C:\ProgramData\priccechop
2014-08-20 23:08 - 2014-08-20 23:08 - 00000000 ____D () C:\Program Files\priccechop
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\jiri\AppData\Local\Torch
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\jiri\AppData\Local\Chromatic Browser
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\jiri\AppData\Local\Comodo
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\HomeGroupUser$
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Guest\AppData\Local\Torch
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Guest\AppData\Local\Chromatic Browser
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Guest
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Chromatic Browser
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Administrator
2014-08-20 23:07 - 2011-01-03 23:44 - 00000000 ____D () C:\Users\jiri\AppData\Local\Google
2014-08-20 23:07 - 2011-01-03 23:44 - 00000000 ____D () C:\Program Files\Google
2014-08-20 23:07 - 2009-07-14 04:37 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-08-18 23:53 - 2014-08-18 23:52 - 71085745 _____ () C:\Users\jiri\Downloads\jdk-7u60-linux-arm-vfp-hflt.gz
2014-08-18 23:33 - 2014-08-18 23:32 - 143589987 _____ () C:\Users\jiri\Downloads\jdk-7u67-linux-i586.gz
2014-08-18 23:12 - 2014-08-18 23:12 - 48426207 _____ () C:\Users\jiri\Downloads\jre-7u67-linux-i586.gz
2014-08-18 23:08 - 2014-08-18 23:08 - 33092435 _____ () C:\Users\jiri\Downloads\jre-7u67-linux-i586.rpm
2014-08-17 19:15 - 2014-05-06 22:16 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-16 22:55 - 2011-01-02 19:32 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-16 22:52 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-08-16 21:49 - 2012-02-27 13:51 - 00002129 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-08-15 19:21 - 2014-08-15 19:21 - 00000000 ____D () C:\Users\jiri\Desktop\Loga
2014-08-11 19:58 - 2014-07-12 19:25 - 00001060 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-08-11 19:58 - 2014-07-12 19:25 - 00001048 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-08-07 13:08 - 2014-08-07 13:08 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-08-07 13:08 - 2014-08-07 13:08 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-08-07 13:08 - 2014-08-07 13:08 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-08-07 13:08 - 2014-08-07 13:08 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-08-07 13:08 - 2014-08-07 13:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-07 13:08 - 2014-08-07 13:08 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-08-07 13:08 - 2013-10-02 09:42 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-07 03:43 - 2014-08-16 21:37 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 03:39 - 2014-08-16 21:37 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

Some content of TEMP:
====================
C:\Users\jiri\AppData\Local\Temp\AcDeltree.exe
C:\Users\jiri\AppData\Local\Temp\fdupdate5.exe
C:\Users\jiri\AppData\Local\Temp\FNP_ACT_InstallerCA.dll
C:\Users\jiri\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\jiri\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe
C:\Users\jiri\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
C:\Users\jiri\AppData\Local\Temp\ose00000.exe
C:\Users\jiri\AppData\Local\Temp\SHSetup.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PC_Booster-S-493389286.job => c:\programdata\trusted publisher\pc_booster\PC_Booster.exe <==== ATTENTION

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\jiri\Desktop" je 7111 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acronis Scheduler2 Service
"C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AcronisTimounterMonitor
C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSK DLMSession
C:\Program Files\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface
"C:\Users\jiri\AppData\Local\Akamai\netsession_win.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NtVdmSrv
C:\Windows\inf\ntvdm.vbe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#4 Příspěvek od **Rudy** » 02 zář 2014 19:58

Spusťte nejprve tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

jiri.pisek · #5 Příspěvek od **jiri.pisek** » 02 zář 2014 20:46

Omlouvám se, špatně jsem to pochopil a myslel jsem, že ten log se vytvoří až na konci.
Spustil jsem adwcleaner podruhé a je tam toto (poprvé toho bylo daleko víc).

# AdwCleaner v3.308 - Report created 02/09/2014 at 21:37:54
# Updated 20/08/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : jiri - JIRI-ASUS
# Running from : C:\Users\jiri\Desktop\adwcleaner_3.308.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17239

-\\ Mozilla Firefox v

-\\ Google Chrome v36.0.1985.143

[ File : C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Found [Startup_urls] : hxxp://search.conduit.com/?ctid=CT2801948&SearchSource=48
Found [Startup_urls] : hxxp://searchfunmoods.com/?f=1&a=as1211&chnl=as1211&cd=2XzuyEtN2Y1L1QzutDyCtBtByEtAtC0D0ByE0F0D0B0AtDyDtN0D0Tzu0CtAtBtCtN1L2XzutBtFtBtFtDtFtAyEyE&cr=1164233325

*************************

AdwCleaner[R0].txt - [33746 octets] - [02/09/2014 21:03:25]
AdwCleaner[R1].txt - [1217 octets] - [02/09/2014 21:17:14]
AdwCleaner[R2].txt - [1337 octets] - [02/09/2014 21:30:02]
AdwCleaner[R3].txt - [1136 octets] - [02/09/2014 21:37:54]
AdwCleaner[S0].txt - [34478 octets] - [02/09/2014 21:07:16]
AdwCleaner[S1].txt - [1930 octets] - [02/09/2014 21:23:22]

########## EOF - C:\AdwCleaner\AdwCleaner[R3].txt - [1317 octets] ##########

#6 Příspěvek od **Rudy** » 02 zář 2014 21:13

Spusťte znovu ADW a klikněte na >Clean<. Restartujte PC.

jiri.pisek · #7 Příspěvek od **jiri.pisek** » 03 zář 2014 17:36

# AdwCleaner v3.309 - Report created 03/09/2014 at 18:31:18
# Updated 02/09/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : jiri - JIRI-ASUS
# Running from : C:\Users\jiri\Desktop\adwcleaner_3.309.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{FDB962F0-B5B8-9460-D12F-7966E97BAA43}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17239

-\\ Mozilla Firefox v

-\\ Google Chrome v36.0.1985.143

[ File : C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://search.conduit.com/Results.aspx?q={searchTerms}&hl=en&SelfSearch=1&SearchSource=49&ctid=CT2801948
Deleted [Search Provider] : hxxp://searchfunmoods.com/results.php?f=4&q={searchTerms}&a=as1211&chnl=as1211&cd=2XzuyEtN2Y1L1QzutDyCtBtByEtAtC0D0ByE0F0D0B0AtDyDtN0D0Tzu0CtAtBtCtN1L2XzutBtFtBtFtDtFtAyEyE&cr=1164233325
Deleted [Search Provider] : hxxp://dts.search-results.com/sr?src=crb&appid=2&systemid=410&sr=0&q={searchTerms}
Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
Deleted [Search Provider] : hxxp://hobbyeshop.cz/inshop/scripts/shop.aspx?action=dosearch&searchphrase={searchTerms}
Deleted [Startup_urls] : hxxp://search.conduit.com/?ctid=CT2801948&SearchSource=48
Deleted [Startup_urls] : hxxp://searchfunmoods.com/?f=1&a=as1211&chnl=as1211&cd=2XzuyEtN2Y1L1QzutDyCtBtByEtAtC0D0ByE0F0D0B0AtDyDtN0D0Tzu0CtAtBtCtN1L2XzutBtFtBtFtDtFtAyEyE&cr=1164233325

*************************

AdwCleaner[R0].txt - [33746 octets] - [02/09/2014 21:03:25]
AdwCleaner[R1].txt - [1217 octets] - [02/09/2014 21:17:14]
AdwCleaner[R2].txt - [1337 octets] - [02/09/2014 21:30:02]
AdwCleaner[R3].txt - [1397 octets] - [02/09/2014 21:37:54]
AdwCleaner[R4].txt - [2155 octets] - [02/09/2014 22:37:12]
AdwCleaner[R5].txt - [1637 octets] - [02/09/2014 22:56:36]
AdwCleaner[R6].txt - [2395 octets] - [02/09/2014 23:12:08]
AdwCleaner[R7].txt - [2070 octets] - [03/09/2014 18:19:38]
AdwCleaner[S0].txt - [34478 octets] - [02/09/2014 21:07:16]
AdwCleaner[S1].txt - [1930 octets] - [02/09/2014 21:23:22]
AdwCleaner[S2].txt - [2110 octets] - [02/09/2014 21:47:24]
AdwCleaner[S3].txt - [2230 octets] - [02/09/2014 22:40:33]
AdwCleaner[S4].txt - [2350 octets] - [02/09/2014 23:00:32]
AdwCleaner[S5].txt - [2470 octets] - [02/09/2014 23:27:16]
AdwCleaner[S6].txt - [2647 octets] - [03/09/2014 18:31:18]

########## EOF - C:\AdwCleaner\AdwCleaner[S6].txt - [2707 octets] ##########

#8 Příspěvek od **Rudy** » 03 zář 2014 17:43

Udělejte nový sken FRST a dejte log.

jiri.pisek · #9 Příspěvek od **jiri.pisek** » 03 zář 2014 17:51

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:31-08-2014 02
Ran by jiri (administrator) on JIRI-ASUS on 03-09-2014 18:44:56
Running from C:\Users\jiri\Desktop
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
() C:\Program Files\ATK Hotkey\AsLdrSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files\ATKOSD2\ATKOSD2.exe
(ATK0100) C:\Program Files\ATK Hotkey\HControl.exe
() C:\Program Files\ATK Hotkey\HControlUser.exe
() C:\Program Files\ATK Hotkey\MsgTranAgt.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files\Wireless Console 2\wcourier.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\ATK Hotkey\ATKOSD.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
() C:\Program Files\ATK Hotkey\WDC.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
() C:\Program Files\Synology\Assistant\UsbClientService.exe
() C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\tv_w32.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\jiri\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ATKOSD2] => C:\Program Files\ATKOSD2\ATKOSD2.exe [7766016 2008-01-23] ()
HKLM\...\Run: [HControlUser] => C:\Program Files\ATK Hotkey\HcontrolUser.exe [98304 2008-01-11] ()
HKLM\...\Run: [ASUS Camera ScreenSaver] => C:\Windows\AsScrProlog.exe [47672 2011-01-02] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416 2007-12-06] (Synaptics, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [951576 2014-03-11] (Microsoft Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [2296600 2013-07-31] (Logitech, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-464546878-432236936-1688433523-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-464546878-432236936-1688433523-1001\...\Policies\Explorer: []
HKU\S-1-5-21-464546878-432236936-1688433523-1001\...\MountPoints2: {e6a665e6-3bb0-11e3-9aec-9cdf026f8654} - E:\autostart.exe
Lsa: [Authentication Packages] msv1_0 relog_ap
ShellIconOverlayIdentifiers: Správa překryvné ikony digitálních podpisů AutoCADu -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: proxy.pisek.elsat.cz:3128
URLSearchHook: HKCU - (No Name) - {37483b40-c254-4a72-bda4-22ee90182c1e} - No File
SearchScopes: HKLM - {275322F5-CCA3-E2E8-E290-0E437DABBAF3} URL = http://dts.search-results.com/sr?src=ie ... earchTerms}
SearchScopes: HKCU - {275322F5-CCA3-E2E8-E290-0E437DABBAF3} URL = http://dts.search-results.com/sr?src=ie ... earchTerms}
SearchScopes: HKCU - {3BE6F2EF-4B9F-496B-8A99-46DDCFDC3E4C} URL = https://www.google.com/search?q={searchTerms}
Toolbar: HKLM - PDFXChange 4.0 - {42DFA04F-0F16-418e-B80C-AB97A5AFAD39} - C:\Program Files\Tracker Software\PDF-XChange 4\PXCIEAddin4.dll (Tracker Softaware)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0017-0000-0055-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF Plugin HKCU: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdjvu.dll (Caminova, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011-11-22]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-10-22]
FF HKLM\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013-11-08]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://search.conduit.com/?ctid=CT2801948&SearchSource=48", "hxxp://searchfunmoods.com/?f=1&a=as1211&chnl=as1211&cd=2XzuyEtN2Y1L1QzutDyCtBtByEtAtC0D0ByE0F0D0B0AtDyDtN0D0Tzu0CtAtBtCtN1L2XzutBtFtBtFtDtFtAyEyE&cr=1164233325"
CHR CustomProfile: C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Translate) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2012-08-17]
CHR Extension: (Vyhledávání Google) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-02-27]
CHR Extension: (Gmail Offline) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2014-09-02]
CHR Extension: (Cloud PDF Tools) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjpieolhcmajmolkhbbeljknkcdcmffk [2014-09-02]
CHR Extension: (Peněženka Google) - C:\Users\jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-02]
CHR HKLM\...\Chrome\Extension: [gclijllifhfpomppedeljakfegbcpojn] - C:\Users\jiri\AppData\Local\Temp\ccex.crx []
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-10-26]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [427288 2007-10-23] (Acronis)
R2 ASLDRService; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [94208 2007-10-02] () [File not signed]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1044816 2013-10-16] (Flexera Software, Inc.)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2014-03-11] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [279776 2014-03-11] (Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
S4 SolidWorks Licensing Service; C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2012-04-06] (SolidWorks) [File not signed]
R2 Správce výběru OS; C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe [2156952 2010-10-28] ()
S4 TryAndDecideService; C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe [495832 2007-10-23] ()
R2 UsbClientService; C:\Program Files\Synology\Assistant\UsbClientService.exe [248736 2013-11-14] ()
S2 32148148; "C:\Windows\system32\rundll32.exe" "c:\progra~1\pc_boo~1\AssistantSvc.dll",service

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 3dxhid; C:\Windows\System32\DRIVERS\3dxhid.sys [28944 2013-05-30] (3Dconnexion Inc.)
S3 AF15BDA; C:\Windows\System32\DRIVERS\AF15BDA.sys [483200 2011-01-02] (ITETech )
R3 busenum; C:\Windows\System32\DRIVERS\busenum.sys [45792 2012-08-03] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-10-23] (DT Soft Ltd)
S3 GemCCID; C:\Windows\System32\Drivers\GemCCID.sys [98816 2013-02-22] (Gemalto)
S3 KMJHidMini; C:\Windows\System32\DRIVERS\3dxkmj.sys [16128 2013-05-30] (3Dconnextion Inc.) [File not signed]
S3 KMJShim; C:\Windows\System32\DRIVERS\3dxshim.sys [3712 2013-05-30] (3Dconnextion Inc.) [File not signed]
S3 LEqdUsb; C:\Windows\System32\Drivers\LEqdUsb.Sys [42264 2013-05-23] (Logitech, Inc.)
S3 LHidEqd; C:\Windows\System32\Drivers\LHidEqd.Sys [10136 2013-05-23] (Logitech, Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231960 2014-01-25] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2007-07-31] (ATK0100)
R0 nhcDriverDevice; C:\Windows\System32\drivers\nhcDriver.sys [71680 2011-02-22] (Notebook Hardware Control) [File not signed]
S3 PTLIBUSB0; C:\Windows\System32\DRIVERS\PTLIBUSB0.SYS [22144 2008-03-07] (http://www.pruftechnik.com/usbgpl)
S4 RsFx0102; C:\Windows\System32\DRIVERS\RsFx0102.sys [242712 2008-07-10] (Microsoft Corporation)
S3 Ser2pl; C:\Windows\System32\DRIVERS\ser2pl.sys [119424 2005-06-17] (Prolific Technology Inc.) [File not signed]
S3 silabenm; C:\Windows\System32\DRIVERS\silabenm.sys [16128 2014-04-11] (Silicon Laboratories)
S3 silabser; C:\Windows\System32\DRIVERS\silabser.sys [67968 2014-04-11] (Silicon Laboratories)
R0 tdrpman; C:\Windows\System32\DRIVERS\tdrpman.sys [368736 2011-01-03] (Acronis)
R2 tifsfilter; C:\Windows\System32\DRIVERS\tifsfilt.sys [44384 2011-01-03] (Acronis)
S2 Aspi32; System32\drivers\aspi32.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-03 18:44 - 2014-09-03 18:45 - 00015887 _____ () C:\Users\jiri\Desktop\FRST.txt
2014-09-03 18:32 - 2014-09-03 18:32 - 00000310 _____ () C:\Windows\PFRO.log
2014-09-03 18:16 - 2014-09-03 18:19 - 01370467 _____ () C:\Users\jiri\Desktop\adwcleaner_3.309.exe
2014-09-03 00:02 - 2014-09-03 18:32 - 00000168 _____ () C:\Windows\setupact.log
2014-09-03 00:02 - 2014-09-03 00:02 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-02 23:42 - 2014-09-02 23:42 - 00023976 _____ () C:\Users\jiri\Documents\cc_20140902_234246.reg
2014-09-02 21:04 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll
2014-09-02 21:03 - 2014-09-03 18:31 - 00000000 ____D () C:\AdwCleaner
2014-09-02 21:02 - 2014-09-02 21:02 - 00000067 _____ () C:\Users\jiri\Desktop\viry.cz.txt
2014-09-02 20:49 - 2014-09-02 20:49 - 00010399 _____ () C:\Users\jiri\Desktop\Addition.zip
2014-09-02 20:39 - 2014-09-03 18:45 - 00000000 ____D () C:\FRST
2014-09-02 20:35 - 2014-09-02 20:35 - 00112640 _____ (forum.viry.cz) C:\Users\jiri\Desktop\FRSTLauncher.exe
2014-09-02 20:32 - 2014-09-02 20:32 - 01096704 _____ (Farbar) C:\Users\jiri\Desktop\FRST.exe
2014-09-02 20:27 - 2014-09-02 20:27 - 00112107 _____ (forum.viry.cz) C:\Users\jiri\Downloads\VerzeOS.exe
2014-09-02 20:05 - 2014-09-02 23:06 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-09-02 20:05 - 2014-09-02 20:05 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-02 20:04 - 2014-09-02 22:05 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-02 20:03 - 2014-09-02 22:36 - 00000000 ____D () C:\Users\jiri\Desktop\mbar
2014-09-02 20:03 - 2014-09-02 22:04 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-09-02 19:52 - 2014-09-02 19:56 - 00000000 ____D () C:\Program Files\trend micro
2014-09-02 19:52 - 2014-09-02 19:52 - 00000000 ____D () C:\rsit
2014-09-02 19:51 - 2014-09-02 19:52 - 00781909 _____ () C:\RSIT.exe
2014-09-02 19:30 - 2014-09-02 19:31 - 00865828 _____ () C:\Users\jiri\Documents\cc_20140902_193032.reg
2014-09-02 19:13 - 2014-09-02 19:14 - 246280452 _____ () C:\Users\jiri\Documents\zaloha registru 2014_09_02.reg
2014-09-02 19:10 - 2014-09-02 19:10 - 00000965 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-09-02 19:10 - 2014-09-02 19:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-09-02 19:10 - 2014-09-02 19:10 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-02 19:03 - 2014-09-02 19:05 - 11319706 _____ () C:\Users\jiri\Downloads\cc-setup.exe
2014-09-01 20:38 - 2014-09-01 20:38 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-09-01 20:36 - 2014-09-02 18:03 - 00000000 ____D () C:\Windows\AF54923662584AC6A0435B5B89C6EB61.TMP
2014-09-01 20:35 - 2014-09-01 20:36 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard
2014-09-01 20:33 - 2014-09-01 20:33 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\jiri\Downloads\SpyHunter-Installer.exe
2014-09-01 20:29 - 2014-09-01 21:05 - 00000000 ____D () C:\ProgramData\Avira
2014-09-01 20:28 - 2014-09-01 20:28 - 04791736 _____ (Avira Operations GmbH & Co. KG) C:\Users\jiri\Downloads\avira_en_av___mdo.exe
2014-08-31 14:17 - 2014-09-02 18:53 - 00000000 ____D () C:\ProgramData\YoutoubeAdBuLocekkE
2014-08-31 14:17 - 2014-09-02 18:51 - 00000000 ____D () C:\Program Files\YoutoubeAdBuLocekkE
2014-08-31 12:24 - 2014-08-31 12:24 - 01922200 _____ (Bandoo Media Inc) C:\Users\jiri\Downloads\3D73.tmp
2014-08-29 22:53 - 2014-08-23 03:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-29 22:53 - 2014-08-23 02:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-26 18:52 - 2014-09-02 19:27 - 00000000 ____D () C:\Windows\Minidump
2014-08-24 20:04 - 2014-08-24 20:04 - 00000081 _____ () C:\Users\jiri\Desktop\lukáš.txt
2014-08-20 23:07 - 2014-09-02 19:35 - 00000000 ____D () C:\ProgramData\97183829d3a95b63
2014-08-20 23:07 - 2014-09-02 19:34 - 00000270 __RSH () C:\ProgramData\ntuser.pol
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\jiri\AppData\Local\Comodo
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\HomeGroupUser$
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Guest
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Administrator
2014-08-18 23:52 - 2014-08-18 23:53 - 71085745 _____ () C:\Users\jiri\Downloads\jdk-7u60-linux-arm-vfp-hflt.gz
2014-08-18 23:34 - 2014-07-25 18:14 - 299202560 _____ () C:\Users\jiri\Downloads\jdk-7u67-linux-i586
2014-08-18 23:32 - 2014-08-18 23:33 - 143589987 _____ () C:\Users\jiri\Downloads\jdk-7u67-linux-i586.gz
2014-08-18 23:15 - 2014-07-25 18:15 - 142223360 _____ () C:\Users\jiri\Downloads\jre-7u67-linux-i586
2014-08-18 23:12 - 2014-08-18 23:12 - 48426207 _____ () C:\Users\jiri\Downloads\jre-7u67-linux-i586.gz
2014-08-18 23:08 - 2014-08-18 23:08 - 33092435 _____ () C:\Users\jiri\Downloads\jre-7u67-linux-i586.rpm
2014-08-16 22:48 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-16 22:48 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-16 22:48 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-16 22:48 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-16 21:39 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-16 21:39 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-16 21:39 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-16 21:39 - 2014-07-25 15:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-16 21:39 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-16 21:39 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-16 21:39 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-16 21:39 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-16 21:39 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-16 21:39 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-16 21:39 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-16 21:39 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-16 21:39 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-16 21:39 - 2014-07-25 14:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-16 21:39 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-16 21:39 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-16 21:39 - 2014-07-25 13:59 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-16 21:39 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-16 21:39 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-16 21:39 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-16 21:39 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-16 21:39 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-16 21:39 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-16 21:39 - 2014-07-25 13:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-16 21:39 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-16 21:39 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-16 21:39 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-16 21:39 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-16 21:39 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-16 21:39 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-16 21:39 - 2014-07-14 03:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-16 21:39 - 2014-06-16 03:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-16 21:39 - 2014-06-16 03:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-08-16 21:39 - 2014-06-16 03:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-16 21:38 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-16 21:38 - 2014-06-03 11:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-16 21:38 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-16 21:38 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-16 21:38 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-16 21:37 - 2014-08-07 03:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-16 21:37 - 2014-08-07 03:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-16 21:37 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-15 19:21 - 2014-08-15 19:21 - 00000000 ____D () C:\Users\jiri\Desktop\Loga
2014-08-12 21:02 - 2014-08-26 19:43 - 00000000 ____D () C:\Users\jiri\Documents\wittmann mail
2014-08-07 13:08 - 2014-08-07 13:08 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-08-07 13:08 - 2014-08-07 13:08 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-08-07 13:08 - 2014-08-07 13:08 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-08-07 13:08 - 2014-08-07 13:08 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-08-07 13:08 - 2014-08-07 13:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-07 13:08 - 2014-08-07 13:08 - 00000000 ____D () C:\Program Files\Common Files\Java

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-03 18:45 - 2014-09-03 18:44 - 00015887 _____ () C:\Users\jiri\Desktop\FRST.txt
2014-09-03 18:45 - 2014-09-02 20:39 - 00000000 ____D () C:\FRST
2014-09-03 18:45 - 2012-08-16 19:48 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-03 18:40 - 2009-07-14 06:34 - 00022576 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-03 18:40 - 2009-07-14 06:34 - 00022576 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-03 18:38 - 2011-01-02 17:01 - 01104592 _____ () C:\Windows\WindowsUpdate.log
2014-09-03 18:33 - 2012-02-27 13:50 - 00000932 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-03 18:32 - 2014-09-03 18:32 - 00000310 _____ () C:\Windows\PFRO.log
2014-09-03 18:32 - 2014-09-03 00:02 - 00000168 _____ () C:\Windows\setupact.log
2014-09-03 18:32 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-03 18:31 - 2014-09-02 21:03 - 00000000 ____D () C:\AdwCleaner
2014-09-03 18:27 - 2012-02-27 13:50 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-03 18:19 - 2014-09-03 18:16 - 01370467 _____ () C:\Users\jiri\Desktop\adwcleaner_3.309.exe
2014-09-03 00:02 - 2014-09-03 00:02 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-02 23:42 - 2014-09-02 23:42 - 00023976 _____ () C:\Users\jiri\Documents\cc_20140902_234246.reg
2014-09-02 23:06 - 2014-09-02 20:05 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-09-02 22:42 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Cursors
2014-09-02 22:36 - 2014-09-02 20:03 - 00000000 ____D () C:\Users\jiri\Desktop\mbar
2014-09-02 22:05 - 2014-09-02 20:04 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-02 22:04 - 2014-09-02 20:03 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-09-02 21:02 - 2014-09-02 21:02 - 00000067 _____ () C:\Users\jiri\Desktop\viry.cz.txt
2014-09-02 20:49 - 2014-09-02 20:49 - 00010399 _____ () C:\Users\jiri\Desktop\Addition.zip
2014-09-02 20:35 - 2014-09-02 20:35 - 00112640 _____ (forum.viry.cz) C:\Users\jiri\Desktop\FRSTLauncher.exe
2014-09-02 20:32 - 2014-09-02 20:32 - 01096704 _____ (Farbar) C:\Users\jiri\Desktop\FRST.exe
2014-09-02 20:27 - 2014-09-02 20:27 - 00112107 _____ (forum.viry.cz) C:\Users\jiri\Downloads\VerzeOS.exe
2014-09-02 20:05 - 2014-09-02 20:05 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-02 19:56 - 2014-09-02 19:52 - 00000000 ____D () C:\Program Files\trend micro
2014-09-02 19:52 - 2014-09-02 19:52 - 00000000 ____D () C:\rsit
2014-09-02 19:52 - 2014-09-02 19:51 - 00781909 _____ () C:\RSIT.exe
2014-09-02 19:35 - 2014-08-20 23:07 - 00000000 ____D () C:\ProgramData\97183829d3a95b63
2014-09-02 19:34 - 2014-08-20 23:07 - 00000270 __RSH () C:\ProgramData\ntuser.pol
2014-09-02 19:31 - 2014-09-02 19:30 - 00865828 _____ () C:\Users\jiri\Documents\cc_20140902_193032.reg
2014-09-02 19:28 - 2014-01-13 19:45 - 00000000 ____D () C:\Users\jiri\AppData\Roaming\TeamViewer
2014-09-02 19:28 - 2012-01-25 23:24 - 00000000 ____D () C:\Users\jiri\AppData\Roaming\Skype
2014-09-02 19:28 - 2011-11-09 17:37 - 00000000 ____D () C:\Users\jiri\AppData\Roaming\Vso
2014-09-02 19:28 - 2011-03-12 19:05 - 00000000 ____D () C:\Users\jiri\AppData\Roaming\Media Player Classic
2014-09-02 19:28 - 2011-01-07 18:00 - 00000000 ____D () C:\Users\jiri\AppData\Roaming\DAEMON Tools Lite
2014-09-02 19:27 - 2014-08-26 18:52 - 00000000 ____D () C:\Windows\Minidump
2014-09-02 19:27 - 2011-01-02 16:57 - 00000000 ____D () C:\Windows\Panther
2014-09-02 19:14 - 2014-09-02 19:13 - 246280452 _____ () C:\Users\jiri\Documents\zaloha registru 2014_09_02.reg
2014-09-02 19:10 - 2014-09-02 19:10 - 00000965 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-09-02 19:10 - 2014-09-02 19:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-09-02 19:10 - 2014-09-02 19:10 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-02 19:05 - 2014-09-02 19:03 - 11319706 _____ () C:\Users\jiri\Downloads\cc-setup.exe
2014-09-02 18:54 - 2009-07-14 06:33 - 03716896 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-02 18:53 - 2014-08-31 14:17 - 00000000 ____D () C:\ProgramData\YoutoubeAdBuLocekkE
2014-09-02 18:51 - 2014-08-31 14:17 - 00000000 ____D () C:\Program Files\YoutoubeAdBuLocekkE
2014-09-02 18:44 - 2013-10-18 20:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Profili
2014-09-02 18:44 - 2013-10-18 20:16 - 00000000 ____D () C:\Program Files\ProfiliV2
2014-09-02 18:43 - 2013-10-09 11:13 - 00000000 ____D () C:\Program Files\ModellUtility 1.0
2014-09-02 18:41 - 2013-10-16 19:24 - 00000000 ____D () C:\Program Files\Autodesk
2014-09-02 18:41 - 2013-10-15 14:02 - 00000000 ____D () C:\Program Files\Apperson
2014-09-02 18:39 - 2011-01-02 17:25 - 00097904 _____ () C:\Users\jiri\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-02 18:31 - 2011-01-08 12:26 - 00000000 ____D () C:\ProgramData\Autodesk
2014-09-02 18:30 - 2011-01-08 12:26 - 00000000 ____D () C:\Users\jiri\AppData\Roaming\Autodesk
2014-09-02 18:25 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-09-02 18:03 - 2014-09-01 20:36 - 00000000 ____D () C:\Windows\AF54923662584AC6A0435B5B89C6EB61.TMP
2014-09-01 21:05 - 2014-09-01 20:29 - 00000000 ____D () C:\ProgramData\Avira
2014-09-01 20:38 - 2014-09-01 20:38 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-09-01 20:36 - 2014-09-01 20:35 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard
2014-09-01 20:33 - 2014-09-01 20:33 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\jiri\Downloads\SpyHunter-Installer.exe
2014-09-01 20:30 - 2011-01-02 19:07 - 00000000 ____D () C:\Users\jiri\AppData\Roaming\Mozilla
2014-09-01 20:28 - 2014-09-01 20:28 - 04791736 _____ (Avira Operations GmbH & Co. KG) C:\Users\jiri\Downloads\avira_en_av___mdo.exe
2014-08-31 12:24 - 2014-08-31 12:24 - 01922200 _____ (Bandoo Media Inc) C:\Users\jiri\Downloads\3D73.tmp
2014-08-31 12:16 - 2014-07-20 19:38 - 00000000 ____D () C:\Users\jiri\Documents\XIAOMI
2014-08-29 17:51 - 2011-01-02 17:13 - 01794282 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-27 16:34 - 2009-07-14 06:53 - 00032582 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-08-26 20:24 - 2011-02-25 19:40 - 00000000 ____D () C:\Users\jiri\Documents\Zaloha
2014-08-26 20:22 - 2011-01-08 12:39 - 00000000 ____D () C:\Users\jiri\AppData\Local\Autodesk
2014-08-26 19:45 - 2011-01-08 12:47 - 00000000 ____D () C:\Users\Public\Documents\Autodesk
2014-08-26 19:43 - 2014-08-12 21:02 - 00000000 ____D () C:\Users\jiri\Documents\wittmann mail
2014-08-24 20:04 - 2014-08-24 20:04 - 00000081 _____ () C:\Users\jiri\Desktop\lukáš.txt
2014-08-23 03:46 - 2014-08-29 22:53 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 02:42 - 2014-08-29 22:53 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-20 23:51 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\jiri\AppData\Local\Comodo
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\HomeGroupUser$
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Guest
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-08-20 23:07 - 2014-08-20 23:07 - 00000000 ____D () C:\Users\Administrator
2014-08-20 23:07 - 2011-01-03 23:44 - 00000000 ____D () C:\Users\jiri\AppData\Local\Google
2014-08-20 23:07 - 2011-01-03 23:44 - 00000000 ____D () C:\Program Files\Google
2014-08-20 23:07 - 2009-07-14 04:37 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-08-18 23:53 - 2014-08-18 23:52 - 71085745 _____ () C:\Users\jiri\Downloads\jdk-7u60-linux-arm-vfp-hflt.gz
2014-08-18 23:33 - 2014-08-18 23:32 - 143589987 _____ () C:\Users\jiri\Downloads\jdk-7u67-linux-i586.gz
2014-08-18 23:12 - 2014-08-18 23:12 - 48426207 _____ () C:\Users\jiri\Downloads\jre-7u67-linux-i586.gz
2014-08-18 23:08 - 2014-08-18 23:08 - 33092435 _____ () C:\Users\jiri\Downloads\jre-7u67-linux-i586.rpm
2014-08-17 19:15 - 2014-05-06 22:16 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-16 22:55 - 2011-01-02 19:32 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-16 22:52 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-08-16 21:49 - 2012-02-27 13:51 - 00002129 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-08-15 19:21 - 2014-08-15 19:21 - 00000000 ____D () C:\Users\jiri\Desktop\Loga
2014-08-11 19:58 - 2014-07-12 19:25 - 00001060 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-08-11 19:58 - 2014-07-12 19:25 - 00001048 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-08-07 13:08 - 2014-08-07 13:08 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-08-07 13:08 - 2014-08-07 13:08 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-08-07 13:08 - 2014-08-07 13:08 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-08-07 13:08 - 2014-08-07 13:08 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-08-07 13:08 - 2014-08-07 13:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-07 13:08 - 2014-08-07 13:08 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-08-07 13:08 - 2013-10-02 09:42 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-07 03:43 - 2014-08-16 21:37 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 03:39 - 2014-08-16 21:37 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

Some content of TEMP:
====================
C:\Users\jiri\AppData\Local\Temp\AcDeltree.exe
C:\Users\jiri\AppData\Local\Temp\fdupdate5.exe
C:\Users\jiri\AppData\Local\Temp\FNP_ACT_InstallerCA.dll
C:\Users\jiri\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\jiri\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe
C:\Users\jiri\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
C:\Users\jiri\AppData\Local\Temp\ose00000.exe
C:\Users\jiri\AppData\Local\Temp\Quarantine.exe
C:\Users\jiri\AppData\Local\Temp\SHSetup.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\jiri\Desktop" je 7098 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acronis Scheduler2 Service
"C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AcronisTimounterMonitor
C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSK DLMSession
C:\Program Files\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface
"C:\Users\jiri\AppData\Local\Akamai\netsession_win.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpqSRMon
C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NtVdmSrv
C:\Windows\inf\ntvdm.vbe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#10 Příspěvek od **Rudy** » 03 zář 2014 18:20

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
ShellIconOverlayIdentifiers: Správa překryvné ikony digitálních podpisů AutoCADu -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
URLSearchHook: HKCU - (No Name) - {37483b40-c254-4a72-bda4-22ee90182c1e} - No File
SearchScopes: HKLM - {275322F5-CCA3-E2E8-E290-0E437DABBAF3} URL = http://dts.search-results.com/sr?src=ie ... 10&sr=0&q={searchTerms}
SearchScopes: HKCU - {275322F5-CCA3-E2E8-E290-0E437DABBAF3} URL = http://dts.search-results.com/sr?src=ie ... 10&sr=0&q={searchTerms}
Toolbar: HKLM - PDFXChange 4.0 - {42DFA04F-0F16-418e-B80C-AB97A5AFAD39} - C:\Program Files\Tracker Software\PDF-XChange 4\PXCIEAddin4.dll (Tracker Softaware)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
CHR StartupUrls: Default -> "hxxp://search.conduit.com/?ctid=CT2801948&SearchSource=48", "hxxp://searchfunmoods.com/?f=1&a=as1211&chnl=as1211&cd=2XzuyEtN2Y1L1QzutDyCtBtByEtAtC0D0ByE0F0D0B0AtDyDtN0D0Tzu0CtAtBtCtN1L2XzutBtFtBtFtDtFtAyEyE&cr=1164233325"
CHR HKLM\...\Chrome\Extension: [gclijllifhfpomppedeljakfegbcpojn] - C:\Users\jiri\AppData\Local\Temp\ccex.crx []
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-10-26]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
C:\Users\jiri\AppData\Local\Temp
C:\Windows\AF54923662584AC6A0435B5B89C6EB61.TMP
C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Users\jiri\Downloads\3D73.tmp
C:\Windows\inf\ntvdm.vbe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NtVdmSrv]
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

jiri.pisek · #11 Příspěvek od **jiri.pisek** » 03 zář 2014 18:36

Po restartu mi hlásí windows že nemám pravou kopii?

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:31-08-2014 02
Ran by jiri at 2014-09-03 19:26:47 Run:1
Running from C:\Users\jiri\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
ShellIconOverlayIdentifiers: Správa překryvné ikony digitálních podpisů AutoCADu -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
URLSearchHook: HKCU - (No Name) - {37483b40-c254-4a72-bda4-22ee90182c1e} - No File
SearchScopes: HKLM - {275322F5-CCA3-E2E8-E290-0E437DABBAF3} URL = http://dts.search-results.com/sr?src=ie ... 10&sr=0&q={searchTerms}
SearchScopes: HKCU - {275322F5-CCA3-E2E8-E290-0E437DABBAF3} URL = http://dts.search-results.com/sr?src=ie ... 10&sr=0&q={searchTerms}
Toolbar: HKLM - PDFXChange 4.0 - {42DFA04F-0F16-418e-B80C-AB97A5AFAD39} - C:\Program Files\Tracker Software\PDF-XChange 4\PXCIEAddin4.dll (Tracker Softaware)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
CHR StartupUrls: Default -> "hxxp://search.conduit.com/?ctid=CT2801948&SearchSource=48", "hxxp://searchfunmoods.com/?f=1&a=as1211&chnl=as1211&cd=2XzuyEtN2Y1L1QzutDyCtBtByEtAtC0D0ByE0F0D0B0AtDyDtN0D0Tzu0CtAtBtCtN1L2XzutBtFtBtFtDtFtAyEyE&cr=1164233325"
CHR HKLM\...\Chrome\Extension: [gclijllifhfpomppedeljakfegbcpojn] - C:\Users\jiri\AppData\Local\Temp\ccex.crx []
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-10-26]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
C:\Users\jiri\AppData\Local\Temp
C:\Windows\AF54923662584AC6A0435B5B89C6EB61.TMP
C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Users\jiri\Downloads\3D73.tmp
C:\Windows\inf\ntvdm.vbe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NtVdmSrv]
End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value deleted successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Správa překryvné ikony digitálních podpisů AutoCADu" => Key not found.
"HKCR\CLSID\{36A21736-36C2-4C11-8ACB-D4136F2B57BD}" => Key not found.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{37483b40-c254-4a72-bda4-22ee90182c1e} => value deleted successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{275322F5-CCA3-E2E8-E290-0E437DABBAF3}" => Key deleted successfully.
"HKCR\CLSID\{275322F5-CCA3-E2E8-E290-0E437DABBAF3}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{275322F5-CCA3-E2E8-E290-0E437DABBAF3}" => Key deleted successfully.
"HKCR\CLSID\{275322F5-CCA3-E2E8-E290-0E437DABBAF3}" => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{42DFA04F-0F16-418e-B80C-AB97A5AFAD39} => value deleted successfully.
"HKCR\CLSID\{42DFA04F-0F16-418e-B80C-AB97A5AFAD39}" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
Chrome StartupUrls deleted successfully.
"HKLM\SOFTWARE\Google\Chrome\Extensions\gclijllifhfpomppedeljakfegbcpojn" => Key deleted successfully.
"C:\Users\jiri\AppData\Local\Temp\ccex.crx" => File/Directory not found.
"HKLM\SOFTWARE\Google\Chrome\Extensions\nneajnkjbffgblleaoojgaacokifdkhm" => Key deleted successfully.
C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx => Moved successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.

"C:\Users\jiri\AppData\Local\Temp" directory move:

C:\Users\jiri\AppData\Local\Temp\AcDeltree.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\ad620E.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\ad7935.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\adA17C.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\adC293.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\AdwCleaner.jpg => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\All CPU Meter CZ.gadget.~0000 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\au-descriptor-1.7.0_65-b20.xml => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\au-descriptor-1.7.0_67-b01.xml => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\AUCHECK_PARSER.txt => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\AutoCAD 2013 Install.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\AutoCAD 2013 Language Pack – Čeština (Czech).log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\AutoCAD 2013 Setup.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\AutoCAD 2013 – Čeština (Czech).log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\autoexec.bat.bk => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\Avira_20140901202905.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\Avira_20140901202905_1_Id.Avira.OE.Setup.Msi.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\Avira_20140901203442.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\Avira_20140901203442_0_Id.Avira.OE.Setup.Msi.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\Avira_20140901203931.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\BatteryStatus11.gadget.~0000 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\CAD3.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\CFG144C.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\CFG2819.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\CFG474D.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\CFG4E00.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\CFG56D.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\CFG61BF.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\CFG80F2.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\CFG8D9F.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\CFG903E.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\CFG9CEB.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\CFGA9B.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\CFGFBA.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\chrome_installer.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\Cleaning.ico => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\cmdlog V104.txt => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\country_radio.gadget.~0000 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\dat6B72.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\dat6F2F.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\DCCACHE.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\DIO1D70.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\DIO8430.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\DIOC7F6.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\Donate.ico => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\DWFFilt.00.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_0DbooF4IgHPIv4z => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_2rx7CUfEpaOijnG => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_4hqn45GQFL5CFV9 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_9fetkSRgDWtXhsg => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_9HwOFY7Zn0i9oxz => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_aTIZja4drjRZrtU => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_bki8oqvBig78uQM => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_h2hxdX8d89njep0 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_hkCBhE6gVc9I43N => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_j2B6OaF92G1Bozd => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_n9UHXdhDGzECea1 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_PhdJaHRxJX0nCky => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_qGrlAIYsprmCqZW => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_rsniY0qdU7XBytO => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_SDK1ZvLl06ewaCv => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_Sn42zMsxqVHGt5I => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_syS8yckHxSYlOzv => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_UQxelVck3rx1hb6 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_W3FAGPIThr2TTU3 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_Xat9sV8sDoVwfh2 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\etilqs_ZOtO7KSQ40lshPr => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\EULA.txt => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\fdupdate5.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\FNP_ACT_InstallerCA.dll => Moved successfully.
Could not move "C:\Users\jiri\AppData\Local\Temp\FXSAPIDebugLogFile.txt" => Scheduled to move on reboot.
C:\Users\jiri\AppData\Local\Temp\GPS9553_UM.pdf => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\GPUObserver37.gadget.~0000 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\hosts.bk => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\hppldcoi.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\hpqddusr.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\hpqdocd001.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\hpupgradehandler001.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\InventorRegistrationLog_20140902182500_00000029.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\JAUReg.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\JavaDeployReg.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\java_install.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\java_install_reg.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\java_install_sp.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\jinstall.cfg => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\juninstall_log.html => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\jusched.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\log3 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\LuUpdater.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR1239.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR33BC.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR3A81.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR4069.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR446F.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR4BCE.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR4FD5.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR588B.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR5A6F.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR5B77.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR5CAF.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR5D7B.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR5FBC.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR637.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR65A6.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR6806.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR7FB9.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR8314.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR862F.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR897A.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR8FA1.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR9201.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR9240.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR929E.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR9397.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR9415.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR94C0.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR9721.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR9932.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR99C0.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAR9D0.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MARB73D.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MARB902.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MARBA68.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MARBAE6.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MARD825.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MARD96.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MARDA95.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MARDBDE.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MARDCA9.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MARE04F.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MARE678.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MARE9C2.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MAREAAD.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\Matousek_Jiri.pdf => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MiS7B86.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\modules00 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\modules11 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MPCvideo_ts.ifo => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MPCVTS_01_0.ifo => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MPCVTS_02_0.ifo => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\MSI2cbf6.LOG => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\ose00000.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\PerfectRadio.gadget.~0000 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\PowerStatus11.gadget.~0000 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\ProductInformation.pit => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\RD1F3.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\RD9202.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\RD9397.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\RDF557.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\RedboxLog.txt => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\REG10A4.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\REG10B5.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\REG1393.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\REG9ECF.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\REG9EE0.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\REG9F1F.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\Report.ico => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\Scan.ico => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\set90DA.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\set9933.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\SHSetup.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\sot7E19.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\sot8490.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\StructuredQuery.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\system.ini.bk => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\temp.bin => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\temp.hex => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\Uninstall.ico => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\vop_carnet_010511.pdf => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\vsimage.bmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\WhipFilt.00.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\win.ini.bk => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\wmplog00.sqm => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\wmplog01.sqm => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\wmsetup.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_ADSK_(959B5AB5).tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_ADSK_(959BB02E).tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_ADSK_(95A8A519).tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_ADSK_(95A98797).tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\{12ea0b14-33cb-4c92-8681-22b356fcd23e}.dat => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~7407.bat => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~7407.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~A969.bat => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~A969.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~DF110978D0597E8F0A.TMP => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~DF394B5C1B320A2146.TMP => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~DF43C8388F274586AE.TMP => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~DF4D3AD4D351592D88.TMP => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~DF63F5E61ADAFD2A30.TMP => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~DF6C4FA67E25E0F981.TMP => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~DF80381ABEA8870C2F.TMP => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~DF8305C5200760B884.TMP => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~DF8D62B5F9880ECF97.TMP => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~DF92898BB8C5805A79.TMP => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~DFB5AC79425486D00D.TMP => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~DFB67D27D1E836B8E2.TMP => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~DFC9B0DC0641637931.TMP => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~DFCE19F543C34F737C.TMP => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~DFDBB8A3DEA8932C97.TMP => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~DFE627DC7C5DDC5ECE.TMP => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\~F0D3.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\adrsetup.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\CIPUtil.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\gdiplus.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\LiteHtml.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\mapfile.mlm => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\MC3.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\MC3Res.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\mfc90u.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\Microsoft.VC90.MFC.manifest => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\ProdDep_UserDep.mc3 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\ProdDep_UserInd.mc3 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\ProdInd_UserDep.mc3 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\ProdInd_UserInd.mc3 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\senddmp.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\Setup.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\SetupAcadUi.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\SetupRes.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\SetupUi.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\UPI.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\upiconfig.xml => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\SetupRes\AcadSetupTopBanner.bmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\SetupRes\InfoLink\Full_Progress_Page.xml.html => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\SetupRes\InfoLink\License_Page.xml.html => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\SetupRes\InfoLink\Repair_Product_Page.xml.html => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\SetupRes\InfoLink\Support.html => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\SetupRes\InfoLink\Update_Complete_Page.xml.html => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\SetupRes\InfoLink\Update_Product_Page.xml.html => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\SetupRes\InfoLink\UserInformation.html => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\SetupRes\InfoLink\User_Information_Page.xml.html => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\SetupRes\InfoLink\Welcome_Page.xml.html => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\SetupRes\InfoLink\Write_to_Log_Page.xml.html => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\SetupRes\docs\ADR_Install Guide.htm => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\SetupRes\docs\System_Requirements.htm => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\CER\client.css => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\CER\img\Autodesk_logo_blue_TY.gif => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AID317.tmp\CER\img\connecting.gif => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\SetupRes\deploy.mst => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\SetupRes\DesignRev_install.png => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\SetupRes\gpo.mst => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\SetupRes\TopBanner.png => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\adrsetup.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\CIPUtil.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\LiteHtml.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\mapfile.mlm => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\MC3.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\MC3Res.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\mfc90u.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\Microsoft.VC90.CRT.manifest => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\Microsoft.VC90.MFC.manifest => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\msvcm90.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\msvcp90.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\msvcr90.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\ProdDep_UserDep.mc3 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\ProdDep_UserInd.mc3 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\ProdInd_UserDep.mc3 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\ProdInd_UserInd.mc3 => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\senddmp.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\Setup.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\SetupAcadUi.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\SetupCtrls.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\SetupUi.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\UPI.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\Setup\upiconfig.xml => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\en-US\ADRInstRes.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\en-US\senddmpRes.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\en-US\SetupRes.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\en-US\CER\exampleDesc.htm => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\en-US\CER\thankYou.htm => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\CER\client.css => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\CER\img\Autodesk_logo_blue_TY.gif => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\_AI408C.tmp\CER\img\connecting.gif => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\TeamViewer\Version9\TeamViewer_.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\TeamViewer\Version9\TV9Install.log => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\TeamViewer\Version9\tvinfo.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\Skype\DbTemp\temp-mHruVdxl0VzQkIZBP9Zf2mqX => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\Skype\DbTemp\temp-mI74Ngrhwb7QHamnAAjjhWrU => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s5ik\temp\BIT6404.tmp => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s5ik\temp\extIE_setup.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s5ik\temp\setupespl.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s5ik\steps\1.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s5ik\steps\2.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s5ik\steps\3.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s5ik\steps\4.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s5ik\steps\4_2.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s5ik\steps\4_3.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s5ik\steps\4_3_1.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s5ik\steps\5.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s5ik\steps\6.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s5ik\steps\6_1.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s5ik\steps\6_1_0.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s5ik\steps\6_1_3.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s5ik\images\loader.gif => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s5ik\images\progressbar.gif => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s4oo\temp\setupespl.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s4oo\steps\1.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s4oo\steps\2.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s4oo\steps\3.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s4oo\steps\4.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s4oo\steps\4_1_1.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s4oo\images\loader.gif => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s4oo\images\progressbar.gif => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s4fg\steps\1.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s4fg\images\loader.gif => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s4fg\images\progressbar.gif => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\temp\setupbc.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\temp\setupespl.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\temp\setupytb.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\temp\usetup.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\1.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\10.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\11.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\3.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\4_1.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\4_1_1.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\4_2.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\5.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\6.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\6_1_1.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\6_1_3.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\6_1_4.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\6_1_5.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\6_1_6.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\6_2.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\6_2_1.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\6_3.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\7.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\7_1.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\7_2.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\7_2.ini.txt => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\8.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\steps\9.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\images\loader.gif => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s1so\images\progressbar.gif => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s18k\steps\0.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s18k\steps\1.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s18k\images\loader.gif => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\s18k\images\progressbar.gif => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\nsgB166.tmp\ccsetup.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\msohtmlclip1\01\clip_colorschememapping.xml => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\msohtmlclip1\01\clip_themedata.thmx => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\lu\1_spp_Q4008.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\lu\1_spp_Q4008.exe.sig => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\lu\1_spp_Q4008.exe.sig.part => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\lu\2_spp_Q4008.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\lu\2_spp_Q4008.exe.sig => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\lu\2_spp_Q4008.exe.sig.part => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\Logitech\DevicePackageSAM\DPHlpr.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\ImageDebug\AutoPosToneMap.txt => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\e4j9C42.tmp_dir1390251517\exe4jlib.jar => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\e4j9C42.tmp_dir1390251517\i4jdel.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\e4j77ED.tmp_dir1390412067\exe4jlib.jar => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\e4j77ED.tmp_dir1390412067\i4jdel.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\e4j6882.tmp_dir1390322276\exe4jlib.jar => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\e4j6882.tmp_dir1390322276\i4jdel.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\e4j6175.tmp_dir1390157603\exe4jlib.jar => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\e4j6175.tmp_dir1390157603\i4jdel.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\e4j3754.tmp_dir1390240350\exe4jlib.jar => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\e4j3754.tmp_dir1390240350\i4jdel.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\CbsProvider.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\CompatProvider.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\DismCore.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\DismCorePS.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\DismHost.exe => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\DismProv.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\DmiProvider.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\FolderProvider.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\IntlProvider.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\LogProvider.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\MsiProvider.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\OSProvider.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\SmiProvider.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\TransmogProvider.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\UnattendProvider.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\wdscore.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\WimProvider.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\cs-CZ\CbsProvider.dll.mui => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\cs-CZ\CompatProvider.dll.mui => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\cs-CZ\DismCore.dll.mui => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\cs-CZ\DismProv.dll.mui => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\cs-CZ\DmiProvider.dll.mui => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\cs-CZ\FolderProvider.dll.mui => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\cs-CZ\IntlProvider.dll.mui => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\cs-CZ\LogProvider.dll.mui => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\cs-CZ\MsiProvider.dll.mui => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\cs-CZ\OSProvider.dll.mui => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\cs-CZ\SmiProvider.dll.mui => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\cs-CZ\TransmogProvider.dll.mui => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\cs-CZ\UnattendProvider.dll.mui => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\C1E52C98-37A4-4BFC-BE1B-97C31E792329\cs-CZ\WimProvider.dll.mui => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\AutoCAD_2013_ADLM\LangPackVer.dll => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\afolder\MSGBOX.EXE => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5\desktop.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5\index.dat => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\acro_rd_dir\History\History.IE5\desktop.ini => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\acro_rd_dir\History\History.IE5\index.dat => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\acro_rd_dir\Cookies\index.dat => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\680_19774\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\680_19774\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\680_19774\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\6116_16421\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\6116_16421\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\6116_16421\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\6048_8506\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\6048_8506\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\6048_8506\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5936_17453\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5936_17453\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5936_17453\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5600_28892\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5600_28892\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5600_28892\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5568_25952\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5568_25952\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5568_25952\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5188_26593\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5188_26593\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5188_26593\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5120_25414\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5120_25414\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5120_25414\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5068_9202\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5068_9202\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\5068_9202\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\484_12148\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\484_12148\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\484_12148\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4708_4739\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4708_4739\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4708_4739\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4688_22059\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4688_22059\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4688_22059\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4580_19656\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4580_19656\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4580_19656\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4508_10528\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4508_10528\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4508_10528\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4448_5540\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4448_5540\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4448_5540\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4140_31107\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4140_31107\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4140_31107\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4044_15731\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4044_15731\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\4044_15731\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3992_21484\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3992_21484\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3992_21484\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3964_2435\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3964_2435\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3964_2435\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3648_28925\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3648_28925\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3648_28925\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3648_23556\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3648_23556\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3648_23556\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3580_6141\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3580_6141\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3580_6141\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3500_21057\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3500_21057\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3500_21057\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3468_2709\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3468_2709\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3468_2709\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3456_28456\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3456_28456\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3456_28456\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3456_10590\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3456_10590\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3456_10590\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3384_3484\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3384_3484\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3384_3484\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3316_30966\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3316_30966\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3316_30966\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3316_3041\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3316_3041\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\3316_3041\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\2976_27999\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\2976_27999\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\2976_27999\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\2772_17435\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\2772_17435\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\2772_17435\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\2536_6636\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\2536_6636\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\2536_6636\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\2488_21023\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\2488_21023\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\2488_21023\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\2200_17818\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\2200_17818\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\2200_17818\manifest.json => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\1308_8437\crl-set => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\1308_8437\manifest.fingerprint => Moved successfully.
C:\Users\jiri\AppData\Local\Temp\1308_8437\manifest.json => Moved successfully.
Could not move "C:\Users\jiri\AppData\Local\Temp" directory. => Scheduled to move on reboot.

C:\Windows\AF54923662584AC6A0435B5B89C6EB61.TMP => Moved successfully.
C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 => Moved successfully.
C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Users\jiri\Downloads\3D73.tmp => Moved successfully.
"C:\Windows\inf\ntvdm.vbe" => File/Directory not found.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NtVdmSrv] => Error: No automatic fix found for this entry.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-09-03 19:30:44)<=

C:\Users\jiri\AppData\Local\Temp\FXSAPIDebugLogFile.txt => Is moved successfully.
C:\Users\jiri\AppData\Local\Temp => Moved successfully.

==== End of Fixlog ====

#12 Příspěvek od **Rudy** » 03 zář 2014 18:37

Vše smazáno, log je již OK.

jiri.pisek · #13 Příspěvek od **jiri.pisek** » 03 zář 2014 18:43

Systém mi hlásí, že nemám pravou kopii windows,
což samozřejmě není pravda.

jiri.pisek · #14 Příspěvek od **jiri.pisek** » 03 zář 2014 19:01

Zadal jsem znovu Product Key a vypadá to v pohodě.
Děkuji mnohokrát !!!
Mohu se nějak odměnit?

#15 Příspěvek od **Rudy** » 03 zář 2014 19:47

Máte možnost dobrovolného příspěvku na činnost fóra: http://forum.viry.cz/viewtopic.php?f=7&t=78175 . Nemáte zač!

VIRY.CZ

RSIT - chybové hlášení

RSIT - chybové hlášení

Re: RSIT - chybové hlášení

Re: RSIT - chybové hlášení

Re: RSIT - chybové hlášení

Re: RSIT - chybové hlášení

Re: RSIT - chybové hlášení

Re: RSIT - chybové hlášení

Re: RSIT - chybové hlášení

Re: RSIT - chybové hlášení

Re: RSIT - chybové hlášení

Re: RSIT - chybové hlášení

Re: RSIT - chybové hlášení

Re: RSIT - chybové hlášení

Re: RSIT - chybové hlášení

Re: RSIT - chybové hlášení