VIRY.CZ

od **10.10.10**

Dobrý den, chcel by som Vás poprosiť o kontrolu logu. Dôvod: PC je spomalený a mrzne. Nenačitava jeden z diskov (disk C a disk D načíta, disk F nenačítava... overil som to nie je to hardwarová chyba). Vopred ďakujem za pomoc

LOG z FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 04-07-2015
Ran by Henrich (administrator) on DOMA-9C5ACA6348 on 05-07-2015 03:00:18
Running from C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha
Loaded Profiles: Henrich (Available Profiles: Henrich & postgres)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IObit) C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
() C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\WINDOWS\twain_32\Samsung\SCX4600\Scan2Pc.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.27.5\GoogleCrashHandler.exe
(Nalpeiron Ltd.) C:\WINDOWS\system32\ASTSRV.EXE
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Nalpeiron Ltd.) C:\WINDOWS\system32\NLSSRV32.EXE
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(IObit) C:\Program Files\IObit\IObit Malware Fighter\IMF.exe
(IObit) C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20145368 2013-12-13] (Realtek Semiconductor Corp.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1980416 2013-12-18] (Wondershare)
HKLM\...\Run: [nwiz] => nwiz.exe /install
HKLM\...\Run: [Samsung PanelMgr] => C:\WINDOWS\Samsung\PanelMgr\ssmmgr.exe [688128 2011-07-13] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKLM\...\Run: [4600 Scan2PC] => C:\WINDOWS\Twain_32\Samsung\SCX4600\Scan2pc.exe [1990144 2011-06-24] ()
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2014-12-17] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5088456 2014-10-01] (ESET)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-18] (Adobe Systems Incorporated)
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3478752 2012-12-18] (Adobe Systems Inc.)
HKLM\...\Run: [IObit Malware Fighter] => C:\Program Files\IObit\IObit Malware Fighter\IMF.exe [5767488 2015-01-16] (IObit)
HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\Run: [Advanced SystemCare 8] => C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe [2425632 2014-11-07] (IObit)
HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files\DAEMON Tools Pro\DTAgent.exe [3129560 2014-02-24] (Disc Soft Ltd)
HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\MountPoints2: {535f715d-8f9d-11e2-8764-806d6172696f} - E:\Run.exe
HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\Winlogon: [Shell] C:\WINDOWS\explorer.exe [1034240 2008-04-14] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-299502267-1085031214-839522115-1003\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [9216 2008-04-14] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
BootExecute: bootdeletebootdelete
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&t ... A_5JV9D1KS
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... A_5JV9D1KS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
HKU\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seeklatin.com/
HKU\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searc ... 8&fr=b1ie7
HKU\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... A_5JV9D1KS
HKU\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = https://www.google.sk/
SearchScopes: HKLM -> {7BDD16DA-7640-4368-AA75-C04518F5F635} URL = ${SEARCH_URL}{searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/Results.aspx? ... rms}&SSPV=
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {09EFB0A3-79FA-49BA-A497-EC6794EA6AFC} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13014
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {19294AB0-B218-408F-8F1C-D1B0A14C947F} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13014
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {39F81375-11FA-4ABC-B863-B6334A4902F3} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13014
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {3B1B7753-8C53-44BF-A98D-74584C74CDC9} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13014
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {445C3016-616E-4A0B-B1C2-7377CF97EC50} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13014
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {5CEB7A10-FB9B-4944-88EA-1E6E8707EA19} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {63FA79C9-B640-4FCB-B521-B649B2407500} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13014
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {7E8FA1FB-109E-4CB0-8B5C-C05123927A76} URL = http://search.seznam.cz/?q={searchTerms ... arch_13014
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {A37D5BAA-FCA3-4168-913B-FA4464D4E2E4} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13014
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/Results.aspx? ... rms}&SSPV=
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {B34C8B52-8174-4F9D-8AED-61ECB15FB22A} URL = http://search.yahoo.com/search?p={searc ... 8&fr=b1ie7
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {C7E886B6-EA2F-4397-8D2E-CFEC691E4C6F} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13014
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {CF3B62E1-F1E5-4F44-A093-2B695FAD5863} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll [2014-11-23] (IObit)
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-12-22] (Oracle Corporation)
BHO: Adobe Acrobat Create PDF Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-12-22] (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKLM - ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll [2014-11-23] (IObit)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKU\.DEFAULT -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2008-04-14] (Společnost Microsoft)
Toolbar: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/wind ... 2625641765
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)
Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 10.201.1.2 10.201.1.254
Tcpip\..\Interfaces\{22C53D6C-ACEA-4068-8049-A6CF21C3AD9D}: [DhcpNameServer] 10.201.1.2 10.201.1.254

FireFox:
========
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-03-30] (Google)
FF Plugin: @java.com/DTPlugin,version=10.72.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-12-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.72.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-12-22] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll No File
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-02-16] (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems)
FF Extension: General Crawler - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com [2013-05-04]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-05-24]
FF HKLM\...\Firefox\Extensions: [{8D150B8F-EFE8-45a3-A4A3-053020F48FAC}] - C:\Program Files\Wondershare\Video Converter Ultimate\SVRFirefoxExt
FF Extension: Wondershare Video Converter Ultimate - C:\Program Files\Wondershare\Video Converter Ultimate\SVRFirefoxExt [2014-05-08]
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2015-04-14]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Google Translate) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-02-01]
CHR Extension: (Translator for all languages) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\amdeidgbmcliegnpcbbkhlflkbdpomhk [2015-04-28]
CHR Extension: (Google Drive) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-12]
CHR Extension: (No Name) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-04-28]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2015-04-14]
CHR Extension: (AdBlock) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-02-01]
CHR Extension: (No Name) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ihmgiclibbndffejedjimfjmfoabpcke [2015-05-14]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2014-11-24]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-01]
CHR Extension: (No Name) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\noaijdpnepcgjemiklgfkcfbkokogabh [2015-04-28]
CHR Extension: (Gmail) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-28]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2012-09-23]
CHR HKLM\...\Chrome\Extension: [fknfdieimobmimhdkfkheeejenmdjhoe] - No Path Or update_url value
CHR HKU\S-1-5-21-299502267-1085031214-839522115-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - https://clients2.google.com/service/update2/crx

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AdvancedSystemCareService8; C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe [815392 2014-11-04] (IObit)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1349576 2014-10-01] (ESET)
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2014-02-24] (Macrovision Europe Ltd.) [File not signed]
R2 IMFservice; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [344864 2015-01-13] (IObit)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-12-22] (Oracle Corporation)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2724128 2015-01-16] (IObit)
R2 MDM; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S2 nvda; C:\Program Files\NVDA\nvda_service.exe [40040 2014-11-27] (NV Access Limited)
S2 postgresql-8.4; c:\postgreSQL\bin\pg_ctl.exe [81920 2013-04-02] (PostgreSQL Global Development Group) [File not signed]
S3 Samsung UPD Service2; C:\WINDOWS\system32\SUPDSvc2.exe [129536 2012-04-06] (Samsung Electronics)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2014-03-17] (Creative)
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [36864 2013-12-13] (Advanced Micro Devices)
R3 anvsnddrv; C:\WINDOWS\System32\drivers\anvsnddrv.sys [32896 2011-11-28] (AnvSoft Inc.) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R2 DgiVecp; C:\WINDOWS\system32\Drivers\DgiVecp.sys [38400 2009-02-16] (Samsung Electronics Co., Ltd.) [File not signed]
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2014-12-03] (Disc Soft Ltd)
R3 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [191928 2014-10-10] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [135296 2014-10-10] (ESET)
R2 epfw; C:\WINDOWS\System32\DRIVERS\epfw.sys [176448 2014-10-10] (ESET)
R3 Epfwndis; C:\WINDOWS\System32\DRIVERS\Epfwndis.sys [39464 2014-10-10] (ESET)
R1 epfwtdi; C:\WINDOWS\System32\DRIVERS\epfwtdi.sys [63160 2014-10-10] (ESET)
R1 Eve; C:\WINDOWS\System32\DRIVERS\eve.sys [33624 2013-03-28] ()
R3 FileMonitor; C:\Program Files\IObit\IObit Malware Fighter\Drivers\wxp_x86\FileMonitor.sys [247968 2014-11-10] (IObit)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2014-12-22] (REALiX(tm))
S3 MAGicKB; C:\WINDOWS\System32\DRIVERS\MAGicKB.sys [24608 2011-05-11] (Freedom Scientific, Inc.)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2014-03-17] (Creative Technology Ltd.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35088 2010-07-16] (CACE Technologies, Inc.)
R0 nvata; C:\WINDOWS\System32\DRIVERS\nvata.sys [105472 2006-10-18] (NVIDIA Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [70912 2013-12-13] (NVIDIA Corporation)
R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [168040 2013-12-13] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13824 2013-12-13] (NVIDIA Corporation)
S3 pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [16472 2010-08-16] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [11104 2010-08-16] ()
R3 RegFilter; C:\Program Files\IObit\IObit Malware Fighter\drivers\wxp_x86\regfilter.sys [31776 2014-11-10] (IObit.com)
S3 snpstd2; C:\WINDOWS\System32\DRIVERS\snpstd2.sys [334080 2004-07-28] ()
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [320120 2014-03-23] (Duplex Secure Ltd.)
S3 ssudserd; C:\WINDOWS\System32\DRIVERS\ssudserd.sys [184192 2014-06-16] (DEVGURU Co., LTD.(http://www.devguru.co.kr))
R1 tStLib; C:\WINDOWS\System32\drivers\tStLib.sys [55224 2014-03-18] (StdLib)
R3 UrlFilter; C:\Program Files\IObit\IObit Malware Fighter\drivers\wxp_x86\UrlFilter.sys [17360 2014-11-10] (IObit.com)
R3 WsAudio_Device; C:\WINDOWS\System32\drivers\VirtualAudio.sys [27496 2013-03-25] (Wondershare)
U3 an4e6sh3; C:\WINDOWS\system32\Drivers\an4e6sh3.sys [0 ] (NVIDIA Corporation) <==== ATTENTION (zero byte File/Folder)
S3 a2acc; No ImagePath
S1 A2DDA; \??\C:\EEK\bin\a2ddax86.sys [X]
S1 a2injectiondriver; No ImagePath
S1 a2util; No ImagePath
S3 cleanhlp; \??\C:\EEK\bin\cleanhlp32.sys [X]
S3 cpuz137; \??\C:\DOCUME~1\HENRIC~2.DOM\LOCALS~1\Temp\cpuz137\cpuz137_x32.sys [X]
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S2 SSPORT; No ImagePath
S2 StarOpen; No ImagePath
S3 TotRec8; No ImagePath
S3 WinRing0_1_2_0; No ImagePath
S2 zumbus; system32\DRIVERS\zumbus.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-05 03:00 - 2015-07-05 03:00 - 00024926 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\FRST.txt
2015-07-05 02:58 - 2015-07-05 03:00 - 00000000 ____D C:\FRST
2015-07-05 02:57 - 2015-07-05 02:57 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\FRSTLauncher (4).exe
2015-07-05 02:56 - 2015-07-05 02:56 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\Nepotvrdené 91789.crdownload
2015-07-05 02:55 - 2015-07-05 02:55 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\Nepotvrdené 544349.crdownload
2015-07-05 02:55 - 2015-07-05 02:55 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\Nepotvrdené 54180.crdownload
2015-07-05 02:54 - 2015-07-05 02:54 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\Nepotvrdené 304155.crdownload
2015-07-05 02:52 - 2015-07-05 02:52 - 01636352 _____ (Farbar) C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\FRST.exe
2015-07-05 02:51 - 2015-07-05 02:51 - 00000048 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\Nový objekt - Textový dokument.txt
2015-07-04 16:08 - 2015-07-04 16:09 - 00421376 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\Z_Londýna-šokující.pps
2015-07-04 10:53 - 2015-07-04 11:34 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\fotky
2015-07-02 11:54 - 2015-07-02 11:54 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Advanced SystemCare 8
2015-07-02 11:54 - 2015-07-02 11:54 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Advanced SystemCare 8
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 __RHD C:\Documents and Settings\postgres\Data aplikací
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ___RD C:\Documents and Settings\postgres\Nabídka Start\Programy\Příslušenství
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ___RD C:\Documents and Settings\postgres\Nabídka Start\Programy\Po spuštění
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ___RD C:\Documents and Settings\postgres\Nabídka Start\Programy
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ___RD C:\Documents and Settings\postgres\Nabídka Start
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ___HD C:\Documents and Settings\postgres\Šablony
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ___HD C:\Documents and Settings\postgres\Okolní tiskárny
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ___HD C:\Documents and Settings\postgres\Okolní síť
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Program Files\ws-enabler
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Program Files\websavee
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Program Files\uuNisAAles
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Program Files\uNNissaales
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Program Files\unisaleess
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Program Files\Uniasales
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Program Files\save oN
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Program Files\PriceMionus
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Program Files\PriCeMinnus
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Program Files\priCecihop
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Program Files\Play
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Program Files\HitsBlender
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Program Files\GrabRez
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Program Files\GoSave
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Program Files\DownLite
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Program Files\BikeXperience
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Program Files\bestadblocker
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\postgres\Plocha
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\postgres\Oblíbené položky
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\postgres\Local Settings\Temp
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\postgres\Dokumenty
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\postgres\Data aplikací\Macromedia
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\EZDownloader
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\GlarySoft
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dokumenty\NativeFus_Log
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Davar3
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\websavee
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\websavee
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Trusted Publisher
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Trusted Publisher
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\SNT
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\SNT
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\SetApp
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\SetApp
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\SaveLots
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\SaveLots
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\save oN
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\save oN
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\priCecihop
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\priCecihop
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ParetoLogic
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ParetoLogic
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\NoMore Ads
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\NoMore Ads
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Isaver
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Isaver
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Happy2Save
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Happy2Save
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\GoSave
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\GoSave
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Fun2Save
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Fun2Save
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ExstraSavings
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ExstraSavings
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\7725107c84cfa2a2
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\7725107c84cfa2a2
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{7b8eae64-7470-31eb-7b8e-eae64747b991}
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{7b8eae64-7470-31eb-7b8e-eae64747b991}
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikac
2015-07-02 11:26 - 2015-07-05 02:41 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\theWord
2015-07-02 11:26 - 2015-07-05 02:41 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\theWord
2015-07-02 11:26 - 2015-07-04 21:29 - 00000000 ____D C:\Documents and Settings\postgres
2015-07-02 11:26 - 2015-07-02 11:53 - 00000000 ___HD C:\Documents and Settings\postgres\Local Settings\Data aplikací
2015-07-02 11:26 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\Henrich
2015-07-02 11:26 - 2015-07-02 11:26 - 00000000 ____D C:\Program Files\The Word
2015-07-02 11:26 - 2015-07-02 11:26 - 00000000 ____D C:\Program Files\ScanSoft
2015-07-02 11:26 - 2015-07-02 11:26 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\The Word
2015-07-02 11:26 - 2015-07-02 11:26 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\The Word
2015-07-02 11:26 - 2015-07-02 11:26 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\The Word
2015-06-30 21:01 - 2015-06-30 21:01 - 00000097 _____ C:\prefs.js
2015-06-30 20:52 - 2015-07-02 11:26 - 00000000 ___SD C:\Documents and Settings\postgres(2)
2015-06-30 20:52 - 2015-07-02 11:26 - 00000000 ____D C:\Documents and Settings\postgres(2)\Šablony
2015-06-30 20:52 - 2015-07-02 11:26 - 00000000 ____D C:\Documents and Settings\postgres(2)\Data aplikací
2015-06-30 20:52 - 2015-04-25 21:24 - 00000000 ____D C:\Documents and Settings\postgres(2)\Local Settings\Data aplikací\Google
2015-06-30 20:52 - 2015-04-25 21:24 - 00000000 ____D C:\Documents and Settings\postgres(2)\Local Settings\Data aplikací
2015-06-30 20:52 - 2014-02-24 21:36 - 00000000 ____D C:\Documents and Settings\postgres(2)\Data aplikací\Macromedia
2015-06-30 20:52 - 2013-03-18 11:35 - 00000000 ___HD C:\Documents and Settings\postgres(2)\Okolní síť
2015-06-30 20:52 - 2013-03-18 11:35 - 00000000 ____D C:\Documents and Settings\postgres(2)\Oblíbené položky
2015-06-30 20:52 - 2013-03-18 11:35 - 00000000 ____D C:\Documents and Settings\postgres(2)\Local Settings\Temp
2015-06-30 20:52 - 2013-03-18 11:35 - 00000000 ____D C:\Documents and Settings\postgres(2)\Dokumenty
2015-06-30 20:50 - 2015-07-02 11:26 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2
2015-06-30 14:34 - 2015-06-30 14:34 - 00000000 ____D C:\Documents and Settings\Henrich(2)
2015-06-30 14:03 - 2015-07-05 02:26 - 00000157 ____N C:\WINDOWS\wiadebug.log
2015-06-30 14:03 - 2015-07-05 02:26 - 00000050 ____N C:\WINDOWS\wiaservc.log
2015-06-30 14:03 - 2015-06-30 14:03 - 00000000 ____N C:\WINDOWS\Sti_Trace.log
2015-06-30 14:02 - 2015-07-04 22:42 - 00032566 ____N C:\WINDOWS\SchedLgU.Txt
2015-06-30 13:58 - 2015-07-02 11:53 - 00000000 ____D C:\EEK
2015-06-30 13:57 - 2015-06-30 14:12 - 00000000 ____D C:\AdwCleaner
2015-06-25 09:52 - 2015-06-25 09:52 - 00000022 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\Nový objekt - Textový dokument (2).txt
2015-06-23 22:41 - 2015-07-05 02:26 - 00000284 _____ C:\WINDOWS\Tasks\ASC8_PerformanceMonitor.job
2015-06-22 21:57 - 2015-06-22 21:57 - 00000000 ____D C:\Documents and Settings\LocalService.NT AUTHORITY.000\Data aplikací\IObit
2015-06-21 21:45 - 2015-06-21 21:45 - 00074308 ____H C:\WINDOWS\system32\mlfcache.dat
2015-06-17 15:43 - 2015-06-30 21:37 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\foto

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-05 03:00 - 2014-11-25 17:03 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Temp
2015-07-05 03:00 - 2013-03-18 10:50 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha
2015-07-05 02:54 - 2013-04-03 14:21 - 00001050 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1085031214-839522115-1003UA.job
2015-07-05 02:42 - 2014-03-23 15:44 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\DAEMON Tools Pro
2015-07-05 02:42 - 2013-06-20 20:16 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-07-05 02:41 - 2014-03-17 23:15 - 00065536 _____ C:\WINDOWS\system32\config\WindowsPowerShell.evt
2015-07-05 02:41 - 2014-03-17 23:15 - 00065536 _____ C:\WINDOWS\system32\config\EventForwarding-Operational.Evt
2015-07-05 02:41 - 2013-03-18 15:25 - 00065536 _____ C:\WINDOWS\system32\config\ODiag.evt
2015-07-05 02:41 - 2013-03-18 11:36 - 00065536 _____ C:\WINDOWS\system32\config\Internet.evt
2015-07-05 02:41 - 2013-03-18 11:06 - 00000000 __SHD C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\UserData
2015-07-05 02:41 - 2013-03-18 10:50 - 00000000 ___HD C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací
2015-07-05 02:41 - 2013-03-18 10:50 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348
2015-07-05 02:30 - 2013-03-18 11:35 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Plocha
2015-07-05 02:29 - 2015-02-18 11:59 - 00000178 ___SH C:\Documents and Settings\postgres\ntuser.ini
2015-07-05 02:28 - 2014-06-23 20:45 - 00000924 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-05 02:27 - 2013-03-18 10:43 - 01622432 ____N C:\WINDOWS\WindowsUpdate.log
2015-07-05 02:26 - 2014-11-25 16:40 - 00000282 _____ C:\WINDOWS\Tasks\Game_Booster_AutoUpdate.job
2015-07-05 02:26 - 2014-06-23 20:45 - 00000920 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-05 02:26 - 2014-05-14 11:00 - 00000288 _____ C:\WINDOWS\Tasks\HitsBlender Update Service.job
2015-07-05 02:26 - 2014-03-18 15:48 - 00000226 _____ C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-07-05 02:26 - 2013-12-13 11:42 - 00046072 _____ C:\WINDOWS\system32\nvAppTimestamps
2015-07-05 02:26 - 2013-03-18 10:49 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-07-04 22:41 - 2013-03-18 10:50 - 00000178 ___SH C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\ntuser.ini
2015-07-04 22:37 - 2013-03-21 18:49 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\OCO
2015-07-04 22:20 - 2014-04-02 18:12 - 00000000 ____D C:\Program Files\IObit
2015-07-04 21:29 - 2013-03-18 10:49 - 00000000 __SHD C:\Documents and Settings\LocalService.NT AUTHORITY.000
2015-07-04 21:29 - 2013-03-18 10:48 - 00000000 __SHD C:\Documents and Settings\NetworkService.NT AUTHORITY.000
2015-07-04 21:28 - 2013-03-18 08:57 - 00000000 ____D C:\WINDOWS\Registration
2015-07-03 22:49 - 2013-12-10 22:36 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ProductData
2015-07-03 22:49 - 2013-12-10 22:36 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ProductData
2015-07-03 22:47 - 2001-10-25 17:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2015-07-02 20:31 - 2015-05-14 22:18 - 00001825 _____ C:\Documents and Settings\All Users.WINDOWS\Plocha\Google Chrome.lnk
2015-07-02 12:42 - 2013-06-20 20:16 - 00778416 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-07-02 12:42 - 2013-06-20 20:16 - 00142512 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-07-02 11:54 - 2014-11-24 18:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Google Drive
2015-07-02 11:54 - 2014-11-24 18:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Google Drive
2015-07-02 11:53 - 2014-04-06 19:58 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\IObit
2015-07-02 11:53 - 2014-03-09 22:55 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Wondershare Video Converter Ultimate
2015-07-02 11:53 - 2014-03-09 22:55 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Wondershare Video Converter Ultimate
2015-07-02 11:53 - 2013-03-18 11:35 - 00000000 ___RD C:\Documents and Settings\All Users.WINDOWS\Dokumenty
2015-07-02 11:53 - 2013-03-18 11:34 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS
2015-07-02 11:51 - 2013-09-11 16:17 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\IObit
2015-07-02 11:51 - 2013-09-11 16:17 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\IObit
2015-07-02 11:25 - 2013-03-18 11:34 - 00000000 __RHD C:\Documents and Settings\All Users.WINDOWS\Data aplikací
2015-07-02 09:33 - 2013-03-19 21:54 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP
2015-07-02 09:33 - 2013-03-19 21:54 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP
2015-07-01 21:24 - 2013-03-18 10:50 - 00000000 ___RD C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Dokumenty
2015-06-30 20:50 - 2013-12-17 10:08 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Spybot - Search & Destroy
2015-06-30 20:50 - 2013-12-17 10:08 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Spybot - Search & Destroy
2015-06-30 14:33 - 2013-03-18 11:35 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy
2015-06-30 14:33 - 2013-03-18 11:35 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy
2015-06-30 14:33 - 2013-03-18 10:50 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací
2015-06-30 13:12 - 2015-01-05 19:17 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\MPC-HC
2015-06-30 12:56 - 2013-12-13 13:16 - 41447424 _____ C:\WINDOWS\system32\config\software.iobit
2015-06-30 12:56 - 2013-12-13 13:16 - 00643072 _____ C:\WINDOWS\system32\config\default.iobit
2015-06-30 12:56 - 2013-12-13 13:16 - 00081920 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2015-06-30 12:56 - 2013-12-13 13:16 - 00028672 _____ C:\WINDOWS\system32\config\SAM.iobit
2015-06-29 07:54 - 2013-04-03 14:21 - 00000998 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1085031214-839522115-1003Core.job
2015-06-23 22:41 - 2013-03-18 10:50 - 00000000 ___HD C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Šablony
2015-06-19 12:20 - 2013-12-17 13:45 - 00002565 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\Microsoft Office Word 2007.lnk
2015-06-17 13:11 - 2015-05-20 19:23 - 00011199 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\SmarThruOptions.xml
2015-06-08 15:00 - 2014-03-18 15:48 - 00000220 _____ C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job

==================== Files in the root of some directories =======

2014-03-26 22:07 - 2014-03-26 22:07 - 0000604 ____H () C:\Program Files\STLL Notifier
2015-01-11 22:10 - 2009-08-27 18:50 - 0000701 _____ () C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\init.dll
2014-12-23 12:26 - 2014-12-23 14:47 - 0000115 _____ () C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\LogFile.txt
2015-05-20 19:23 - 2015-06-17 13:11 - 0011199 _____ () C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\SmarThruOptions.xml
2015-01-11 22:10 - 2009-09-15 10:14 - 0000701 _____ () C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\sound.dll
2015-01-11 22:10 - 2009-09-11 17:33 - 0000006 _____ () C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\SYSTEM32.dll
2015-01-11 22:11 - 2015-01-11 22:11 - 0000048 _____ () C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\tigersetting.dll
2015-01-06 23:09 - 2015-01-07 23:11 - 0005632 _____ () C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-03-31 22:00 - 2014-03-31 22:02 - 0000024 _____ () C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\pdfshaper.ini

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of log ============================

Do prílohy som pridal Addition.rar

Addition.rar: (8.4 KiB) Staženo 60 x

Zdravim

Odinstalujte Advanced SystemCare a IObit Malware Fighter a nasledne i vse od IOBit - jsou to cinske smejdy a spise jen skodi nez jsou uzitkem. Hledaji nesmyslne a neexistujici problemy, databazi haveti ukradli jine renomovane spolecnosti

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Po spusteni probehne stazeni databaze
Kliknete na Scan a nasledne Clean
Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

od **10.10.10**

Programy od spoločnosti IObit nešlo odstrániť, stále tam vypisuje problém: ASCExtMenu nelze odstranit: PRistup byl odepren. Overte ci zda disk neni zaplnen nebo chranen proti prepsani a zda subor neni prave pouzivat...
Som prihlásený ako administrator...
-nefunguje taktiež program MalwareBytes AntiMalware ak ho chcem spustiť vypíše toto:

: ooo.JPG (51.67 KiB) Zobrazeno 2340 x

LOG z adwcleaner:
# AdwCleaner v4.204 - Logfile created 30/06/2015 at 13:59:33
# Updated 12/05/2015 by Xplode
# Database : 2015-06-29.1 [Server]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : Henrich - DOMA-9C5ACA6348
# Running from : D:\Programy\adwcleaner_4.204.exe
# Option : Cleaning

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ExstraSavings
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Happy2Save
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Isaver
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ParetoLogic
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\SetApp
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\SNT
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Trusted Publisher
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\GoSave
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Fun2Save
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\SaveLots
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\NoMore Ads
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\priCecihop
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\save oN
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\websavee
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\7725107c84cfa2a2
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{7b8eae64-7470-31eb-7b8e-eae64747b991}
Folder Deleted : C:\Program Files\DownLite
Folder Deleted : C:\Program Files\GrabRez
Folder Deleted : C:\Program Files\ws-enabler
Folder Deleted : C:\Program Files\GoSave
Folder Deleted : C:\Program Files\HitsBlender
Folder Deleted : C:\Program Files\Play
Folder Deleted : C:\Program Files\priCecihop
Folder Deleted : C:\Program Files\PriCeMinnus
Folder Deleted : C:\Program Files\PriceMionus
Folder Deleted : C:\Program Files\save oN
Folder Deleted : C:\Program Files\Uniasales
Folder Deleted : C:\Program Files\unisaleess
Folder Deleted : C:\Program Files\uNNissaales
Folder Deleted : C:\Program Files\uuNisAAles
Folder Deleted : C:\Program Files\websavee

***** [ Scheduled tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Key Deleted : HKCU\Software\AppDataLow\Software\Slick Savings

***** [ Web browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [CustomizeSearch]

-\\ Google Chrome v43.0.2357.130

-\\ Comodo Dragon v

-\\ Chrome Canary v

*************************

AdwCleaner[R7].txt - [5038 bytes] - [30/06/2015 13:57:37]
AdwCleaner[S3].txt - [3897 bytes] - [30/06/2015 13:59:33]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [3956 bytes] ##########
# AdwCleaner v4.207 - Logfile created 05/07/2015 at 10:22:49
# Updated 21/06/2015 by Xplode
# Database : 2015-07-02.1 [Server]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : Henrich - DOMA-9C5ACA6348
# Running from : C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\adwcleaner_4.207 (1).exe
# Option : Cleaning

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ExstraSavings
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Happy2Save
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Isaver
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ParetoLogic
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\SetApp
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\SNT
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Trusted Publisher
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\GoSave
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Fun2Save
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\SaveLots
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\NoMore Ads
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\priCecihop
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\save oN
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\websavee
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\DealEExopress
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\FunDeals
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\groeAttsaver
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\NetoCoupon
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\RegularDeals
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\SaverExTTeNSioN
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\SavveeNeoWaAppz
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TubeAdbilocker
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\websave
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\7725107c84cfa2a2
Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{7b8eae64-7470-31eb-7b8e-eae64747b991}
Folder Deleted : C:\Program Files\DownLite
Folder Deleted : C:\Program Files\GrabRez
Folder Deleted : C:\Program Files\ws-enabler
Folder Deleted : C:\Program Files\GoSave
Folder Deleted : C:\Program Files\HitsBlender
Folder Deleted : C:\Program Files\Play
Folder Deleted : C:\Program Files\bestadblocker
Folder Deleted : C:\Program Files\priCecihop
Folder Deleted : C:\Program Files\PriCeMinnus
Folder Deleted : C:\Program Files\PriceMionus
Folder Deleted : C:\Program Files\save oN
Folder Deleted : C:\Program Files\Uniasales
Folder Deleted : C:\Program Files\unisaleess
Folder Deleted : C:\Program Files\uNNissaales
Folder Deleted : C:\Program Files\uuNisAAles
Folder Deleted : C:\Program Files\websavee
File Deleted : C:\prefs.js

***** [ Scheduled tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Key Deleted : HKCU\Software\AppDataLow\Software\Slick Savings

***** [ Web browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [CustomizeSearch]

-\\ Google Chrome v43.0.2357.130

-\\ Comodo Dragon v

-\\ Chrome Canary v

*************************

AdwCleaner[R7].txt - [11853 bytes] - [30/06/2015 13:57:37]
AdwCleaner[R8].txt - [1863 bytes] - [30/06/2015 14:10:20]
AdwCleaner[S3].txt - [8703 bytes] - [30/06/2015 13:59:33]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [8762 bytes] ##########

Ja myslim, ze se snazite nainstalovat MBAM 2.0 a pro Win XP je pouze v1.75

Zkuste na IOBit tohle http://www.t-tools.nl/bitremoveren.php

od **10.10.10**

Vďaka máte pravdu ináč je v logu všetko ok ?

AdwCleaner probehl OK, ale jeste budeme pokracovat

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

Kód: Vybrat vše

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

od **10.10.10**

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Henrich on ne 05. 07. 2015 at 13:01:16,01.
Systém Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

5. 7. 2015 13:03:18 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\Program Files\AGEIA Technologies deleted successfully
C:\Program Files\BikeXperience deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\Application Data deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\AVAST Software deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\DAEMON Tools Ult deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\Desktop deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\Freemake deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\Guitar Pro 6 deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\Hitman Pro deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\IDM deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\nView_Profiles deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\ohkicocmigjkbelajpcnpkgmidoecnem deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\regid.1986-12.com.adobe deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\SSScan deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\Start Menu deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\SearchScopes\{B34C8B52-8174-4F9D-8AED-61ECB15FB22A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\SearchScopes\{CF3B62E1-F1E5-4F44-A093-2B695FAD5863} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110311281150} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11164C35-BE4E-400E-81C8-C9FC1B5A1ABF} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{130CDDD-9237-4E64-B054-E31B28C491B6} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{13B816F8-73A-41BC-B9D5-D476284984C6} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{145D2577-298D-4580-B2E4-C2AD41EA4A93} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{17683618-95F2-495D-818C-45FBB4F9D71D} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1786D28B-463B-417E-9D56-C3D9C6795C2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{182C145F-DCE4-43EB-9E95-406E34D1C5F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{19142D44-BC2D-40D4-8126-6E524753287C} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1A659074-FD7F-4883-9F5-B69719C123D0} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1A7865AC-F10F-4F4E-9E93-EA3A8D51935} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1B627CA8-B2E6-402C-9937-7D5EECD0842F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1BCA3ADF-C9D-4501-A769-70F1FC5E9D} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1F51D966-2D77-4FF4-A436-E5F2E13C5354} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2084B28A-F010-4167-A5A7-693F7190A3C0} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{20AC417C-78B6-46A4-B969-52758C6922E3} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{20B37B96-CC97-449B-9BE2-BCA7DCA87AA} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{20B887B2-51EB-40F0-BEDE-ACCAF87FE6BB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{22A4432A-24BC-4CD3-9837-2B93CFE6712} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{22C0E13D-EA14-4FC4-851D-C0F4F5CE261F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{235D423B-DE50-4743-943D-EB78BAECCA58} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{23B405DF-5E6A-4163-8BD1-1F70FD702FD8} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{283A2695-8C82-4124-9AB2-2BFBEED7E6DA} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{284B7FE5-7981-4EF4-B843-A80D217BEE2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{290F6CCA-23E9-4065-959A-71946BAB3B61} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2C4A9764-E378-41FA-AC1-38D3B0DAA3F1} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2C67A705-8C0D-4CC7-B757-43AC12609F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2D025643-EC53-42C3-B090-7C832A39DB8} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2D69271A-79A1-48F9-92F1-646A64C8F6F2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{305DF3C1-232F-46E7-966E-3F519C3689FA} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{30E7A285-64A-40FB-A247-227BFA966591} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31188AE0-9221-48DA-8EDF-BB9BBBF3756A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{35DEAC9F-F0E6-46D9-8444-66918D6D6C38} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3818BF1-E58E-4602-89AC-87D71316348F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3A5DA025-B15A-42D1-B657-DEC2EF435BCA} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3B23BC3F-16AA-4019-AD53-6A2BD8C2628B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3B940467-57B8-4BEC-ADE-E2C3FF621D8D} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3CCE0EE1-CC57-4417-A756-4F9862A5366B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3CF2BC79-E777-4AE2-AA8D-8F24D68B379A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D048552-CED5-451B-BA9A-6B3C6BE78EF} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3E476E8A-AB5D-4D9D-AC46-A52ECF15A8CB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4160ABC0-C918-406D-8C46-852985BEA578} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4172B058-5254-4C36-8078-C0E454D7AC13} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{422220C5-4594-45EA-872D-A7F92596E2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{42F36D41-47E5-4F8F-9475-1F5885DF27D4} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4324DAA-FE1A-485E-AE1A-D4576A7B3B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43300171-F36-4F8F-A281-7DB811267E12} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{435F9CF1-B4AC-4B60-8825-B44DF243E} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{439AFD47-8DE2-4CF1-909F-52F215CFE80} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43BA9D8A-DFE-45B6-91A7-7C2781A9EB1F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43C716E1-D3B3-4E20-B115-5E4D61406226} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{44A6D7FF-5AE1-448E-8475-8E93E5452046} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{44E5BAAF-C656-4BF2-9029-99BD9D6CC9C3} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{47B4DE55-FB95-41EB-8E9D-9A6436601859} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{489F7956-4DC8-42CF-A494-2BDF5B7D6979} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4962336E-FC9-49DB-BC37-BFEA94C07CDA} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{49C1FD40-5673-41C0-B05B-FA13DA1250D5} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{49FD4349-D8F7-4D13-AB56-66BAE5315DFF} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4A4413B5-8314-4652-815D-86B25D914343} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4AA23138-278A-4467-92A6-312942BA4CEA} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4BE58C6B-A6F6-4B44-82CA-D4172F9E6B5B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4C50FFA3-2845-44A0-8271-5748BB6526A0} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4D61416D-9B8B-403D-8DCB-A5AB282FB7EF} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4E1F9144-D93D-4BC1-B441-FE7AAAFE2C6} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{515EF2FF-5E70-4050-A4C-5BD5E6E5513} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51BE8D82-9440-4AFF-9164-6286060BC7B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{530EDDAD-368A-4252-B713-98B5E51C8FA2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{538C6B1D-B85D-4655-AE69-3B090ECBD} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5492907A-CFC5-464B-8EF7-2D205F5F5E7} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{552D3F46-2D0-4061-816F-1D74DCDF3AB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{555D459D-A725-4E54-A4C6-20D826496C2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5671F7B3-1FFD-4B76-86F-ACDDD75EC2E} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{56D4B10B-4AE1-4F95-977E-4D23236F8D94} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{570EED50-C833-4DE2-A1E4-9E7BEBEBB043} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{585CD300-A1DB-45AF-AE3-1EB66B93E020} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59295788-F75F-4A72-9380-CBF7D277C9D} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5A7590F8-5F9C-4258-9863-39E9FB57A1C2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5D558CB0-C82-4588-9B23-C88B3DEBED88} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5DA7AE76-4732-4E35-938A-DEE4B7A3AF6B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E2E3A7F-EFE0-4354-88BF-7A47132A8E86} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E49C457-B648-428C-A79D-634019F6E3D} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E84DD52-AADF-46D7-A163-7493BA6F1DB8} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5EA9E6BE-460F-4752-BBD9-BE495AA45E99} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5FD48DFD-3F71-4437-982E-9F972345CCA8} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{603B3EBD-6FD7-45BF-9A36-E2443AE19E85} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6124665E-1342-416A-8DA0-81EE86E1C1F5} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62192CAE-9A4D-4E3B-A126-424ED65A138B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62A7E511-AAAC-4C7A-A598-5BE93C46259F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62EF0BEA-D25A-4784-A8E7-4ACA95C8290} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{636CAA22-7EEB-4093-A441-5697B56E3D1} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{63BE5705-DE3F-46AD-BBDE-BB78A971524} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{650BD429-609F-43A7-954F-68ED3EFEFBDB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{66B602EA-614A-4FC1-AB31-AAA58FD5C43A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{66DCAEA3-3967-4B9E-98EB-F3645EA64BA5} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{67741392-F692-41DC-8312-61D451EB78B0} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{679FE4F8-4651-4EA9-B5F3-1FDE288864A6} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{67C49896-E128-406F-84E0-D9EF1D482C13} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68074268-D96D-4D86-8A97-C0960EF4AD4} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{691C4EEC-937-4683-A155-B7912371CE23} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6B294ABA-621C-4C47-B9BD-F0B5E75DA91} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6BE412D2-39B6-4644-82D-449C27F923B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6CEEA9FF-E554-441F-836-BA95D47F7911} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6DA06562-9097-453F-83C3-612F9F1CDFEB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6EEE0A78-6494-4006-9C99-AD377AE53D4A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6F4A4957-5CD4-407D-921C-D3F7773F9E2C} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{739D7D7A-9AE8-4E64-8A16-6FC13F4126B5} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7442F049-A2DB-40E9-BFCC-944770C27AC1} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{74EA4BBE-137A-48B0-B72C-CDD4689B1B4C} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{77850EB5-7BC-4183-8349-CD2CAD273A67} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7AA2D779-17A1-4488-B348-E01358EA8744} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7C1612B7-5E65-430D-BE39-6AEC2A6E6426} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7C784665-4174-4E6D-B687-8DF145EB984} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7DC68E6-57A9-4D21-84A2-701899CB373} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F02B9ED-19FA-44CD-B6F0-9968F0E2B87A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F4D6963-7751-4A76-8FF0-2645B1CB11} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F626EEC-335F-4E95-AB18-4D5D69CFB1E} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F66AFD8-56D8-4A1A-8226-CF8FBAA35868} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{81775B72-35ED-4616-B6B6-E14D29DB1F7} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{822843BC-597B-4877-BC21-836CC1116F7} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8259E727-4FB6-4B87-8149-B65F3E3EF52F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{84AC65E4-8BB-4907-8720-C79EE402B9E} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85D282C-277D-4C0A-ABF5-624E86721250} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85EF67D3-DE38-475A-9811-15B58D8BED35} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{87F35B8B-7DC0-4D20-A019-A75EB6181FA0} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{881277F1-F41A-4439-801A-BE62D9BB60C2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{885CC1EA-A39F-4977-90B-A8C6925B8A5} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8B5AC9D4-A5D0-4B45-BC89-5B901A38FB49} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8B9B7227-1B0D-480E-B24E-97BF166E61} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8BADDC0-82D5-4E05-88BB-D48A2C14FC99} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8D95D301-1BAD-4F30-95A0-23EA9F48B0DC} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8DBA6008-A1DB-4AFD-9237-A899DF28A1D1} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8ED9AC8-F028-4FFA-B72A-961DFD819E2A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8FE5E64F-E2AC-49C9-9F76-9864E524B093} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{90FF9A7F-EA78-4054-AA21-36151E13A9} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{939ECA39-9D37-4ADA-83B1-13F171D2F282} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{93F74819-591C-447E-9480-8285C6C7400} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{94CAC22F-FA3D-40FD-8CEC-BE3056381EA1} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{98B6C656-6739-4243-961-ACF0124137B8} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9B881CB1-E860-4DE8-B681-B7CD76445A22} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C829498-8C21-48C0-81F9-EBB7AFB146AB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9FA0DD1E-6A4F-4422-863E-60D495AEB2B7} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A2C8C817-92A2-4DDF-BB8F-279168DD5E6E} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A4BFCD08-7E-4544-A7E4-B03914899F8E} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A50DCB2C-2ED0-4784-92AF-EBD7B24617F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A59123E1-6192-49F7-B739-F8B9F2EAF9FD} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A95A10E3-8813-4846-9B1B-B6AD75EEF2C4} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A98FBB2A-F389-4D57-B1FE-EB2F76278712} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A99CEF7B-270-4087-9483-3BDA8144B2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ABB510C9-F432-4A93-9772-D0A9A435B1C} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AC6C93C6-9E2A-43E8-9C6C-9BEC636FA6} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AF014436-2193-49ED-B6D3-44A0A86E4C7B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AFF81444-84CE-4D23-8BD2-C6D95FF76979} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B01A6DE3-6C50-422D-9FFD-89C859A061B3} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B081255F-4039-4052-9D2A-89AF1269093} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B0F206A8-4457-4188-B758-AB2C3C233F2C} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B594CBB1-C9F3-4AB2-AFE9-73A58F15E47} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B605A8F8-EA1E-4402-95AB-5241B8C2481} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B7C94475-B4AB-43D2-B78F-9336FA22658} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B91823B-4CDB-497A-9ABD-11BCDAAE31} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BAD394E1-189E-4079-9E3F-746338298C31} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BBAF161D-5AB7-43B6-B765-FBDF9AA58E9} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BD55350-13E4-4DCA-B67-D087F639BD70} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C1CEE807-E4E8-4F1A-B883-479ABFD73B72} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C1F62870-BC02-42AE-B857-F69F6B5ADDB5} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C243F3FF-FF75-4C68-990-BB79867F373} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C2B02F4A-C283-4D9D-ABC5-129E2A3AA9F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C5909FE6-9B1B-4A9B-AF49-B834D85969} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C5C90C8D-7B5B-4008-9B29-E8054857DC4} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C604FA85-57F7-424A-BA59-837796CC25C} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C70B64AA-D5DA-495E-B31B-CBC46CF597E6} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7944101-7708-40B0-85E7-4514A48EAA57} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CB1FF48C-DAD1-44C3-BF34-1B6C1790B5FE} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CB475B4C-6337-47CE-92DE-7DE7FF55785D} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCDC5360-18AF-4B54-AC4E-7CC44CC2CEBF} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CD9F160C-A4FF-4A2A-923F-DDA92DFEB987} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFB20D16-EE84-46D4-8FCA-C6DBCB84BE31} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D032F5B6-E67F-4A5A-915E-AB3F6BB4458} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D0DA2F6A-DD8-4E00-B0C8-5EF3874AF5A8} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D3D3E89F-9CF9-4275-83D9-9825C1295A8E} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D52A3D2A-B93A-488E-9639-BBFAB25ED30} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D5DE0FC4-83CB-45BD-9B66-279DC49C3B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D5FCC730-4DE-46CD-BCC9-F7A98494A05A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D654FE45-87A4-4B5D-AAC5-0D095E72C} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D6AA609-3D0A-4A59-866D-1D38FBFEB3EB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D8222841-FE0F-4E45-A2FD-5AB4851D408A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D8E2DA86-5735-4CE4-BF25-9F669A5B30C3} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D90C2343-EE8B-4C35-8BE5-D4134789AC36} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DD4D0F04-2B3E-4767-912D-0D57A32657A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDFB4192-3B69-4ADC-B418-8A6E331915} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DEE8C017-7135-4AE7-9240-3263EE829DD2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DFFADE71-8DFF-4BFC-B237-AD141FB695CC} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E10AF7E1-C15-4460-A85D-271EDAE5E6B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E1AB361-EC76-4E44-B313-EB401912FDD} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E1CCD71D-BFCB-4AA4-89CB-BFE2C094EE59} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E1CCF842-6E5E-4384-B942-E0CC5C852DEA} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E24E4303-46DB-48ED-9CC-BC5E9972D4A8} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E48F2A-A0EC-4153-A0B2-54446695E02E} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E5D7EFC3-FE57-4230-9B4D-193E53F6A43} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E832635A-8350-4D38-ABEF-7D269C26EFFB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E902A230-3637-49DD-999C-9ED9BA21697} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E98270EB-8548-4A2B-8C61-A19919D5F23} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EA0CF19D-13FA-4072-AEAC-527B70AD1818} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EA8AB1E5-BE80-4D91-9E78-5FB5DE6F759B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EBBB1421-6805-4E82-A733-195476B87072} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EC38203D-E352-463A-8BE-C2472F6A7565} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ECA7C5EB-7E4B-4BE7-837A-94DFD64E2B7} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ECC2DFAA-E4-4FC2-9A7-7A66298894B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ED0645C7-CFFB-43B3-8769-C1E4BF8F3A7} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EE1A61B1-9E18-4FDB-935E-96998DD35AF} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EF02BC13-2BBF-464C-ADA7-92A622202A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EF4B46F9-5F23-44CE-B264-1B1C1BDBC224} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F0E566AB-4769-4C24-9777-9AF48664DC8D} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F0FA8F11-9A25-48AA-8846-70CCCCC0A10} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F2858707-660E-47D2-854A-2F9DEA51DE71} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F2B9AC73-6BFC-4A3A-A26A-9AC7F22C9B1A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F4C034F5-94BF-435F-AA62-EC847854345D} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F77DCD98-6FB5-4968-9B36-76AE504889EB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F78408E8-C276-4C4F-9A5B-51637B34B462} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F7C326F1-32B4-4755-8A1D-893DED50A71} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FA09AD8-BC39-4052-B9C7-1A5718F92393} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FD2757D3-86D7-48B1-828F-BBD760BCE1} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{1824FF90-C98E-48A6-838F-E3B6572B0C77} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{11111111-1111-1111-1111-110311551110} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{11111111-1111-1111-1111-110411821192} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{11111111-1111-1111-1111-110311281150} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{11111111-1111-1111-1111-110611571143} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LiveUpdateSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\LiveUpdateSvc deleted successfully

==== Deleting Files \ Folders ======================

C:\Program Files\AGEIA Technologies not found
C:\Program Files\BikeXperience not found
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\ohkicocmigjkbelajpcnpkgmidoecnem not found
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} not found
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} not found
C:\Program Files\WindowsUpdate deleted
C:\WINDOWS\system32\config\systemprofile\AppData\LocalLow\{32E4F043-0497-CF5D-3375-79B7A206EBEC} deleted
C:\Program Files\Wondershare deleted
C:\Program Files\Common Files\Wondershare deleted
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\spds90.txt deleted
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\Wondershare Video Converter Ultimate deleted
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\ProductData deleted
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\InstallMate deleted
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\Package Cache deleted
C:\DOCUME~1\ALLUSE~1.WIN\NABDKA~1\Programy\Wondershare deleted
C:\WINDOWS\wininit.ini deleted
C:\WINDOWS\system32\GroupPolicy\Adm deleted
C:\WINDOWS\system32\GroupPolicy\Machine deleted
C:\WINDOWS\system32\GroupPolicy\User deleted
C:\WINDOWS\system32\GroupPolicy\gpt.ini deleted
C:\WINDOWS\System32\OLD35E.tmp deleted
C:\WINDOWS\System32\SET1FC.tmp deleted
C:\WINDOWS\System32\SET208.tmp deleted
C:\WINDOWS\System32\InstallUtil.InstallLog deleted
C:\WINDOWS\System32\searchplugins deleted
C:\WINDOWS\System32\Extensions deleted
"C:\WINDOWS\Installer\192958d.msi" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"web2pdfextension@web2pdf.adobedotcom"="C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn" [14. 04. 2015 09:32]

==== Chromium Look ======================

Google Chrome Version: 43.0.2357.130

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
efaidnbmnnnibpcajpcglclefindmkaj - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[23. 09. 2012 19:43]
fknfdieimobmimhdkfkheeejenmdjhoe - No path found[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
lmjegmlicamnimmfhcmpkclmigmmcbeh - No path found[]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.seeklatin.com/"
"SearchMigratedDefaultURL"="http://search.yahoo.com/search?p={searc ... 8&fr=b1ie7"
"Default_Page_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.google.com"
"Default_Search_URL"="http://www.google.com"
"Search Page"="http://www.google.com"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com"
"CustomizeSearch"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"SearchMigratedDefaultURL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.seeklatin.com/"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"CustomizeSearch"="http://ie.search.msn.com/{SUB_RFC1766}/ ... chcust.htm"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{09EFB0A3-79FA-49BA-A497-EC6794EA6AFC} Novinky.cz Url="http://www.novinky.cz/hledej?w={searchT ... arch_13014"
{19294AB0-B218-408F-8F1C-D1B0A14C947F} Firmy.cz Url="http://www.firmy.cz/?q={searchTerms}&so ... arch_13014"
{39F81375-11FA-4ABC-B863-B6334A4902F3} Zboží.cz Url="http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13014"
{3B1B7753-8C53-44BF-A98D-74584C74CDC9} Encyklopedie Seznam Url="http://encyklopedie.seznam.cz/search?q= ... arch_13014"
{445C3016-616E-4A0B-B1C2-7377CF97EC50} Seznam TV Program Url="http://tv.seznam.cz/hledej?w={searchTer ... arch_13014"
{5CEB7A10-FB9B-4944-88EA-1E6E8707EA19} Google Url="https://www.google.com/search?q={searchTerms}"
{63FA79C9-B640-4FCB-B521-B649B2407500} Slovník EN/CZ Url="http://slovnik.seznam.cz/?q={searchTerm ... arch_13014"
{7E8FA1FB-109E-4CB0-8B5C-C05123927A76} Seznam Url="http://search.seznam.cz/?q={searchTerms ... arch_13014"
{A37D5BAA-FCA3-4168-913B-FA4464D4E2E4} Slovník CZ/EN Url="http://slovnik.seznam.cz/?q={searchTerm ... arch_13014"
{C7E886B6-EA2F-4397-8D2E-CFEC691E4C6F} Mapy.cz Url="http://www.mapy.cz/?query={searchTerms} ... arch_13014"

==== Reset Google Chrome ======================

Nothing found to reset

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{8D150B8F-EFE8-45a3-A4A3-053020F48FAC} deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D26544E40535A600677A7A857BC05100 deleted successfully
HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4E44562D-5350-006A-76A7-A758B70C1500} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\VMidi deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\D26544E40535A600677A7A857BC05100 deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BrowserPlugInHelper deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartSoft PDF Printer (demo) Agent deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartSoft PDF Printer (demo) virtual printer agent deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wondershare Helper Compact.exe deleted successfully

==== Empty IE Cache ======================

C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Default User.WINDOWS\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService.NT AUTHORITY\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService.NT AUTHORITY.000\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService.NT AUTHORITY\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService.NT AUTHORITY.000\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\postgres\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\postgres(2)\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\LocalService.NT AUTHORITY.000\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\HENRIC~2.DOM\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1182 folders=101 188840907 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\HENRIC~2.DOM\LOCALS~1\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\RECYCLER successfully emptied

==== Deleting Files / Folders ======================

"C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Documents and Settings\LocalService.NT AUTHORITY.000\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Documents and Settings\HENRIC~2.DOM\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on ne 05. 07. 2015 at 13:36:03,43 ======================

od **10.10.10**

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Henrich on ne 05. 07. 2015 at 13:01:16,01.
Systém Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

5. 7. 2015 13:03:18 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\Program Files\AGEIA Technologies deleted successfully
C:\Program Files\BikeXperience deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\Application Data deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\AVAST Software deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\DAEMON Tools Ult deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\Desktop deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\Freemake deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\Guitar Pro 6 deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\Hitman Pro deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\IDM deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\nView_Profiles deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\ohkicocmigjkbelajpcnpkgmidoecnem deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\regid.1986-12.com.adobe deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\SSScan deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\Start Menu deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} deleted successfully
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\SearchScopes\{B34C8B52-8174-4F9D-8AED-61ECB15FB22A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\SearchScopes\{CF3B62E1-F1E5-4F44-A093-2B695FAD5863} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110311281150} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11164C35-BE4E-400E-81C8-C9FC1B5A1ABF} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{130CDDD-9237-4E64-B054-E31B28C491B6} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{13B816F8-73A-41BC-B9D5-D476284984C6} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{145D2577-298D-4580-B2E4-C2AD41EA4A93} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{17683618-95F2-495D-818C-45FBB4F9D71D} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1786D28B-463B-417E-9D56-C3D9C6795C2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{182C145F-DCE4-43EB-9E95-406E34D1C5F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{19142D44-BC2D-40D4-8126-6E524753287C} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1A659074-FD7F-4883-9F5-B69719C123D0} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1A7865AC-F10F-4F4E-9E93-EA3A8D51935} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1B627CA8-B2E6-402C-9937-7D5EECD0842F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1BCA3ADF-C9D-4501-A769-70F1FC5E9D} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1F51D966-2D77-4FF4-A436-E5F2E13C5354} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2084B28A-F010-4167-A5A7-693F7190A3C0} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{20AC417C-78B6-46A4-B969-52758C6922E3} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{20B37B96-CC97-449B-9BE2-BCA7DCA87AA} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{20B887B2-51EB-40F0-BEDE-ACCAF87FE6BB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{22A4432A-24BC-4CD3-9837-2B93CFE6712} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{22C0E13D-EA14-4FC4-851D-C0F4F5CE261F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{235D423B-DE50-4743-943D-EB78BAECCA58} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{23B405DF-5E6A-4163-8BD1-1F70FD702FD8} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{283A2695-8C82-4124-9AB2-2BFBEED7E6DA} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{284B7FE5-7981-4EF4-B843-A80D217BEE2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{290F6CCA-23E9-4065-959A-71946BAB3B61} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2C4A9764-E378-41FA-AC1-38D3B0DAA3F1} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2C67A705-8C0D-4CC7-B757-43AC12609F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2D025643-EC53-42C3-B090-7C832A39DB8} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2D69271A-79A1-48F9-92F1-646A64C8F6F2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{305DF3C1-232F-46E7-966E-3F519C3689FA} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{30E7A285-64A-40FB-A247-227BFA966591} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31188AE0-9221-48DA-8EDF-BB9BBBF3756A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{35DEAC9F-F0E6-46D9-8444-66918D6D6C38} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3818BF1-E58E-4602-89AC-87D71316348F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3A5DA025-B15A-42D1-B657-DEC2EF435BCA} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3B23BC3F-16AA-4019-AD53-6A2BD8C2628B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3B940467-57B8-4BEC-ADE-E2C3FF621D8D} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3CCE0EE1-CC57-4417-A756-4F9862A5366B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3CF2BC79-E777-4AE2-AA8D-8F24D68B379A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D048552-CED5-451B-BA9A-6B3C6BE78EF} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3E476E8A-AB5D-4D9D-AC46-A52ECF15A8CB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4160ABC0-C918-406D-8C46-852985BEA578} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4172B058-5254-4C36-8078-C0E454D7AC13} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{422220C5-4594-45EA-872D-A7F92596E2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{42F36D41-47E5-4F8F-9475-1F5885DF27D4} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4324DAA-FE1A-485E-AE1A-D4576A7B3B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43300171-F36-4F8F-A281-7DB811267E12} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{435F9CF1-B4AC-4B60-8825-B44DF243E} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{439AFD47-8DE2-4CF1-909F-52F215CFE80} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43BA9D8A-DFE-45B6-91A7-7C2781A9EB1F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43C716E1-D3B3-4E20-B115-5E4D61406226} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{44A6D7FF-5AE1-448E-8475-8E93E5452046} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{44E5BAAF-C656-4BF2-9029-99BD9D6CC9C3} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{47B4DE55-FB95-41EB-8E9D-9A6436601859} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{489F7956-4DC8-42CF-A494-2BDF5B7D6979} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4962336E-FC9-49DB-BC37-BFEA94C07CDA} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{49C1FD40-5673-41C0-B05B-FA13DA1250D5} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{49FD4349-D8F7-4D13-AB56-66BAE5315DFF} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4A4413B5-8314-4652-815D-86B25D914343} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4AA23138-278A-4467-92A6-312942BA4CEA} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4BE58C6B-A6F6-4B44-82CA-D4172F9E6B5B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4C50FFA3-2845-44A0-8271-5748BB6526A0} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4D61416D-9B8B-403D-8DCB-A5AB282FB7EF} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4E1F9144-D93D-4BC1-B441-FE7AAAFE2C6} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{515EF2FF-5E70-4050-A4C-5BD5E6E5513} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51BE8D82-9440-4AFF-9164-6286060BC7B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{530EDDAD-368A-4252-B713-98B5E51C8FA2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{538C6B1D-B85D-4655-AE69-3B090ECBD} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5492907A-CFC5-464B-8EF7-2D205F5F5E7} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{552D3F46-2D0-4061-816F-1D74DCDF3AB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{555D459D-A725-4E54-A4C6-20D826496C2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5671F7B3-1FFD-4B76-86F-ACDDD75EC2E} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{56D4B10B-4AE1-4F95-977E-4D23236F8D94} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{570EED50-C833-4DE2-A1E4-9E7BEBEBB043} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{585CD300-A1DB-45AF-AE3-1EB66B93E020} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59295788-F75F-4A72-9380-CBF7D277C9D} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5A7590F8-5F9C-4258-9863-39E9FB57A1C2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5D558CB0-C82-4588-9B23-C88B3DEBED88} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5DA7AE76-4732-4E35-938A-DEE4B7A3AF6B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E2E3A7F-EFE0-4354-88BF-7A47132A8E86} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E49C457-B648-428C-A79D-634019F6E3D} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E84DD52-AADF-46D7-A163-7493BA6F1DB8} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5EA9E6BE-460F-4752-BBD9-BE495AA45E99} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5FD48DFD-3F71-4437-982E-9F972345CCA8} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{603B3EBD-6FD7-45BF-9A36-E2443AE19E85} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6124665E-1342-416A-8DA0-81EE86E1C1F5} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62192CAE-9A4D-4E3B-A126-424ED65A138B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62A7E511-AAAC-4C7A-A598-5BE93C46259F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62EF0BEA-D25A-4784-A8E7-4ACA95C8290} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{636CAA22-7EEB-4093-A441-5697B56E3D1} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{63BE5705-DE3F-46AD-BBDE-BB78A971524} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{650BD429-609F-43A7-954F-68ED3EFEFBDB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{66B602EA-614A-4FC1-AB31-AAA58FD5C43A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{66DCAEA3-3967-4B9E-98EB-F3645EA64BA5} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{67741392-F692-41DC-8312-61D451EB78B0} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{679FE4F8-4651-4EA9-B5F3-1FDE288864A6} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{67C49896-E128-406F-84E0-D9EF1D482C13} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68074268-D96D-4D86-8A97-C0960EF4AD4} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{691C4EEC-937-4683-A155-B7912371CE23} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6B294ABA-621C-4C47-B9BD-F0B5E75DA91} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6BE412D2-39B6-4644-82D-449C27F923B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6CEEA9FF-E554-441F-836-BA95D47F7911} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6DA06562-9097-453F-83C3-612F9F1CDFEB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6EEE0A78-6494-4006-9C99-AD377AE53D4A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6F4A4957-5CD4-407D-921C-D3F7773F9E2C} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{739D7D7A-9AE8-4E64-8A16-6FC13F4126B5} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7442F049-A2DB-40E9-BFCC-944770C27AC1} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{74EA4BBE-137A-48B0-B72C-CDD4689B1B4C} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{77850EB5-7BC-4183-8349-CD2CAD273A67} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7AA2D779-17A1-4488-B348-E01358EA8744} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7C1612B7-5E65-430D-BE39-6AEC2A6E6426} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7C784665-4174-4E6D-B687-8DF145EB984} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7DC68E6-57A9-4D21-84A2-701899CB373} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F02B9ED-19FA-44CD-B6F0-9968F0E2B87A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F4D6963-7751-4A76-8FF0-2645B1CB11} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F626EEC-335F-4E95-AB18-4D5D69CFB1E} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F66AFD8-56D8-4A1A-8226-CF8FBAA35868} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{81775B72-35ED-4616-B6B6-E14D29DB1F7} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{822843BC-597B-4877-BC21-836CC1116F7} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8259E727-4FB6-4B87-8149-B65F3E3EF52F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{84AC65E4-8BB-4907-8720-C79EE402B9E} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85D282C-277D-4C0A-ABF5-624E86721250} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85EF67D3-DE38-475A-9811-15B58D8BED35} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{87F35B8B-7DC0-4D20-A019-A75EB6181FA0} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{881277F1-F41A-4439-801A-BE62D9BB60C2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{885CC1EA-A39F-4977-90B-A8C6925B8A5} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8B5AC9D4-A5D0-4B45-BC89-5B901A38FB49} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8B9B7227-1B0D-480E-B24E-97BF166E61} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8BADDC0-82D5-4E05-88BB-D48A2C14FC99} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8D95D301-1BAD-4F30-95A0-23EA9F48B0DC} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8DBA6008-A1DB-4AFD-9237-A899DF28A1D1} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8ED9AC8-F028-4FFA-B72A-961DFD819E2A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8FE5E64F-E2AC-49C9-9F76-9864E524B093} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{90FF9A7F-EA78-4054-AA21-36151E13A9} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{939ECA39-9D37-4ADA-83B1-13F171D2F282} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{93F74819-591C-447E-9480-8285C6C7400} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{94CAC22F-FA3D-40FD-8CEC-BE3056381EA1} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{98B6C656-6739-4243-961-ACF0124137B8} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9B881CB1-E860-4DE8-B681-B7CD76445A22} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C829498-8C21-48C0-81F9-EBB7AFB146AB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9FA0DD1E-6A4F-4422-863E-60D495AEB2B7} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A2C8C817-92A2-4DDF-BB8F-279168DD5E6E} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A4BFCD08-7E-4544-A7E4-B03914899F8E} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A50DCB2C-2ED0-4784-92AF-EBD7B24617F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A59123E1-6192-49F7-B739-F8B9F2EAF9FD} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A95A10E3-8813-4846-9B1B-B6AD75EEF2C4} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A98FBB2A-F389-4D57-B1FE-EB2F76278712} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A99CEF7B-270-4087-9483-3BDA8144B2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ABB510C9-F432-4A93-9772-D0A9A435B1C} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AC6C93C6-9E2A-43E8-9C6C-9BEC636FA6} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AF014436-2193-49ED-B6D3-44A0A86E4C7B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AFF81444-84CE-4D23-8BD2-C6D95FF76979} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B01A6DE3-6C50-422D-9FFD-89C859A061B3} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B081255F-4039-4052-9D2A-89AF1269093} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B0F206A8-4457-4188-B758-AB2C3C233F2C} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B594CBB1-C9F3-4AB2-AFE9-73A58F15E47} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B605A8F8-EA1E-4402-95AB-5241B8C2481} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B7C94475-B4AB-43D2-B78F-9336FA22658} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B91823B-4CDB-497A-9ABD-11BCDAAE31} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BAD394E1-189E-4079-9E3F-746338298C31} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BBAF161D-5AB7-43B6-B765-FBDF9AA58E9} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BD55350-13E4-4DCA-B67-D087F639BD70} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C1CEE807-E4E8-4F1A-B883-479ABFD73B72} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C1F62870-BC02-42AE-B857-F69F6B5ADDB5} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C243F3FF-FF75-4C68-990-BB79867F373} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C2B02F4A-C283-4D9D-ABC5-129E2A3AA9F} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C5909FE6-9B1B-4A9B-AF49-B834D85969} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C5C90C8D-7B5B-4008-9B29-E8054857DC4} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C604FA85-57F7-424A-BA59-837796CC25C} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C70B64AA-D5DA-495E-B31B-CBC46CF597E6} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7944101-7708-40B0-85E7-4514A48EAA57} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CB1FF48C-DAD1-44C3-BF34-1B6C1790B5FE} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CB475B4C-6337-47CE-92DE-7DE7FF55785D} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCDC5360-18AF-4B54-AC4E-7CC44CC2CEBF} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CD9F160C-A4FF-4A2A-923F-DDA92DFEB987} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFB20D16-EE84-46D4-8FCA-C6DBCB84BE31} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D032F5B6-E67F-4A5A-915E-AB3F6BB4458} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D0DA2F6A-DD8-4E00-B0C8-5EF3874AF5A8} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D3D3E89F-9CF9-4275-83D9-9825C1295A8E} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D52A3D2A-B93A-488E-9639-BBFAB25ED30} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D5DE0FC4-83CB-45BD-9B66-279DC49C3B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D5FCC730-4DE-46CD-BCC9-F7A98494A05A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D654FE45-87A4-4B5D-AAC5-0D095E72C} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D6AA609-3D0A-4A59-866D-1D38FBFEB3EB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D8222841-FE0F-4E45-A2FD-5AB4851D408A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D8E2DA86-5735-4CE4-BF25-9F669A5B30C3} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D90C2343-EE8B-4C35-8BE5-D4134789AC36} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DD4D0F04-2B3E-4767-912D-0D57A32657A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDFB4192-3B69-4ADC-B418-8A6E331915} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DEE8C017-7135-4AE7-9240-3263EE829DD2} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DFFADE71-8DFF-4BFC-B237-AD141FB695CC} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E10AF7E1-C15-4460-A85D-271EDAE5E6B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E1AB361-EC76-4E44-B313-EB401912FDD} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E1CCD71D-BFCB-4AA4-89CB-BFE2C094EE59} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E1CCF842-6E5E-4384-B942-E0CC5C852DEA} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E24E4303-46DB-48ED-9CC-BC5E9972D4A8} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E48F2A-A0EC-4153-A0B2-54446695E02E} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E5D7EFC3-FE57-4230-9B4D-193E53F6A43} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E832635A-8350-4D38-ABEF-7D269C26EFFB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E902A230-3637-49DD-999C-9ED9BA21697} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E98270EB-8548-4A2B-8C61-A19919D5F23} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EA0CF19D-13FA-4072-AEAC-527B70AD1818} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EA8AB1E5-BE80-4D91-9E78-5FB5DE6F759B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EBBB1421-6805-4E82-A733-195476B87072} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EC38203D-E352-463A-8BE-C2472F6A7565} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ECA7C5EB-7E4B-4BE7-837A-94DFD64E2B7} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ECC2DFAA-E4-4FC2-9A7-7A66298894B} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ED0645C7-CFFB-43B3-8769-C1E4BF8F3A7} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EE1A61B1-9E18-4FDB-935E-96998DD35AF} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EF02BC13-2BBF-464C-ADA7-92A622202A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EF4B46F9-5F23-44CE-B264-1B1C1BDBC224} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F0E566AB-4769-4C24-9777-9AF48664DC8D} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F0FA8F11-9A25-48AA-8846-70CCCCC0A10} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F2858707-660E-47D2-854A-2F9DEA51DE71} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F2B9AC73-6BFC-4A3A-A26A-9AC7F22C9B1A} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F4C034F5-94BF-435F-AA62-EC847854345D} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F77DCD98-6FB5-4968-9B36-76AE504889EB} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F78408E8-C276-4C4F-9A5B-51637B34B462} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F7C326F1-32B4-4755-8A1D-893DED50A71} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FA09AD8-BC39-4052-B9C7-1A5718F92393} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FD2757D3-86D7-48B1-828F-BBD760BCE1} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{1824FF90-C98E-48A6-838F-E3B6572B0C77} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{11111111-1111-1111-1111-110311551110} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{11111111-1111-1111-1111-110411821192} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{11111111-1111-1111-1111-110311281150} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{11111111-1111-1111-1111-110611571143} deleted successfully
HKEY_USERS\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LiveUpdateSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\LiveUpdateSvc deleted successfully

==== Deleting Files \ Folders ======================

C:\Program Files\AGEIA Technologies not found
C:\Program Files\BikeXperience not found
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\ohkicocmigjkbelajpcnpkgmidoecnem not found
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} not found
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} not found
C:\Program Files\WindowsUpdate deleted
C:\WINDOWS\system32\config\systemprofile\AppData\LocalLow\{32E4F043-0497-CF5D-3375-79B7A206EBEC} deleted
C:\Program Files\Wondershare deleted
C:\Program Files\Common Files\Wondershare deleted
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\spds90.txt deleted
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\Wondershare Video Converter Ultimate deleted
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\ProductData deleted
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\InstallMate deleted
C:\DOCUME~1\ALLUSE~1.WIN\DATAAP~1\Package Cache deleted
C:\DOCUME~1\ALLUSE~1.WIN\NABDKA~1\Programy\Wondershare deleted
C:\WINDOWS\wininit.ini deleted
C:\WINDOWS\system32\GroupPolicy\Adm deleted
C:\WINDOWS\system32\GroupPolicy\Machine deleted
C:\WINDOWS\system32\GroupPolicy\User deleted
C:\WINDOWS\system32\GroupPolicy\gpt.ini deleted
C:\WINDOWS\System32\OLD35E.tmp deleted
C:\WINDOWS\System32\SET1FC.tmp deleted
C:\WINDOWS\System32\SET208.tmp deleted
C:\WINDOWS\System32\InstallUtil.InstallLog deleted
C:\WINDOWS\System32\searchplugins deleted
C:\WINDOWS\System32\Extensions deleted
"C:\WINDOWS\Installer\192958d.msi" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"web2pdfextension@web2pdf.adobedotcom"="C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn" [14. 04. 2015 09:32]

==== Chromium Look ======================

Google Chrome Version: 43.0.2357.130

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
efaidnbmnnnibpcajpcglclefindmkaj - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[23. 09. 2012 19:43]
fknfdieimobmimhdkfkheeejenmdjhoe - No path found[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
lmjegmlicamnimmfhcmpkclmigmmcbeh - No path found[]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.seeklatin.com/"
"SearchMigratedDefaultURL"="http://search.yahoo.com/search?p={searc ... 8&fr=b1ie7"
"Default_Page_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.google.com"
"Default_Search_URL"="http://www.google.com"
"Search Page"="http://www.google.com"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com"
"CustomizeSearch"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"SearchMigratedDefaultURL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.seeklatin.com/"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"CustomizeSearch"="http://ie.search.msn.com/{SUB_RFC1766}/ ... chcust.htm"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{09EFB0A3-79FA-49BA-A497-EC6794EA6AFC} Novinky.cz Url="http://www.novinky.cz/hledej?w={searchT ... arch_13014"
{19294AB0-B218-408F-8F1C-D1B0A14C947F} Firmy.cz Url="http://www.firmy.cz/?q={searchTerms}&so ... arch_13014"
{39F81375-11FA-4ABC-B863-B6334A4902F3} Zboží.cz Url="http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13014"
{3B1B7753-8C53-44BF-A98D-74584C74CDC9} Encyklopedie Seznam Url="http://encyklopedie.seznam.cz/search?q= ... arch_13014"
{445C3016-616E-4A0B-B1C2-7377CF97EC50} Seznam TV Program Url="http://tv.seznam.cz/hledej?w={searchTer ... arch_13014"
{5CEB7A10-FB9B-4944-88EA-1E6E8707EA19} Google Url="https://www.google.com/search?q={searchTerms}"
{63FA79C9-B640-4FCB-B521-B649B2407500} Slovník EN/CZ Url="http://slovnik.seznam.cz/?q={searchTerm ... arch_13014"
{7E8FA1FB-109E-4CB0-8B5C-C05123927A76} Seznam Url="http://search.seznam.cz/?q={searchTerms ... arch_13014"
{A37D5BAA-FCA3-4168-913B-FA4464D4E2E4} Slovník CZ/EN Url="http://slovnik.seznam.cz/?q={searchTerm ... arch_13014"
{C7E886B6-EA2F-4397-8D2E-CFEC691E4C6F} Mapy.cz Url="http://www.mapy.cz/?query={searchTerms} ... arch_13014"

==== Reset Google Chrome ======================

Nothing found to reset

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{8D150B8F-EFE8-45a3-A4A3-053020F48FAC} deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D26544E40535A600677A7A857BC05100 deleted successfully
HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4E44562D-5350-006A-76A7-A758B70C1500} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\VMidi deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\D26544E40535A600677A7A857BC05100 deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BrowserPlugInHelper deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartSoft PDF Printer (demo) Agent deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartSoft PDF Printer (demo) virtual printer agent deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wondershare Helper Compact.exe deleted successfully

==== Empty IE Cache ======================

C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Default User.WINDOWS\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService.NT AUTHORITY\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService.NT AUTHORITY.000\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService.NT AUTHORITY\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService.NT AUTHORITY.000\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\postgres\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\postgres(2)\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\LocalService.NT AUTHORITY.000\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\HENRIC~2.DOM\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1182 folders=101 188840907 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\HENRIC~2.DOM\LOCALS~1\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\RECYCLER successfully emptied

==== Deleting Files / Folders ======================

"C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Documents and Settings\LocalService.NT AUTHORITY.000\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Documents and Settings\HENRIC~2.DOM\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on ne 05. 07. 2015 at 13:36:03,43 ======================

Poprosim o novy log z FRST a dejte prosim oba (FRST.txt i Addition.txt)

od **10.10.10**

FRST.txt:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 04-07-2015
Ran by Henrich (administrator) on DOMA-9C5ACA6348 on 05-07-2015 14:10:48
Running from C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha
Loaded Profiles: Henrich (Available Profiles: Henrich & postgres)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
() C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe
() C:\WINDOWS\twain_32\Samsung\SCX4600\Scan2Pc.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.27.5\GoogleCrashHandler.exe
(Nalpeiron Ltd.) C:\WINDOWS\system32\ASTSRV.EXE
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Nalpeiron Ltd.) C:\WINDOWS\system32\NLSSRV32.EXE
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(forum.viry.cz) C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20145368 2013-12-13] (Realtek Semiconductor Corp.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM\...\Run: [nwiz] => nwiz.exe /install
HKLM\...\Run: [Samsung PanelMgr] => C:\WINDOWS\Samsung\PanelMgr\ssmmgr.exe [688128 2011-07-13] ()
HKLM\...\Run: [4600 Scan2PC] => C:\WINDOWS\Twain_32\Samsung\SCX4600\Scan2pc.exe [1990144 2011-06-24] ()
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2014-12-17] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5088456 2014-10-01] (ESET)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-18] (Adobe Systems Incorporated)
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3478752 2012-12-18] (Adobe Systems Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\Run: [Advanced SystemCare 8] => "C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto
HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files\DAEMON Tools Pro\DTAgent.exe [3129560 2014-02-24] (Disc Soft Ltd)
HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\MountPoints2: {535f715d-8f9d-11e2-8764-806d6172696f} - E:\Run.exe
HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\Winlogon: [Shell] C:\WINDOWS\explorer.exe [1034240 2008-04-14] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-299502267-1085031214-839522115-1003\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [9216 2008-04-14] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
BootExecute: bootdeletebootdelete

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seeklatin.com/
HKU\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = https://www.google.sk/
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <======= ATTENTION
SearchScopes: HKLM -> {7BDD16DA-7640-4368-AA75-C04518F5F635} URL = ${SEARCH_URL}{searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {09EFB0A3-79FA-49BA-A497-EC6794EA6AFC} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13014
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {19294AB0-B218-408F-8F1C-D1B0A14C947F} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13014
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {39F81375-11FA-4ABC-B863-B6334A4902F3} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13014
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {3B1B7753-8C53-44BF-A98D-74584C74CDC9} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13014
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {445C3016-616E-4A0B-B1C2-7377CF97EC50} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13014
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {5CEB7A10-FB9B-4944-88EA-1E6E8707EA19} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {63FA79C9-B640-4FCB-B521-B649B2407500} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13014
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {7E8FA1FB-109E-4CB0-8B5C-C05123927A76} URL = http://search.seznam.cz/?q={searchTerms ... arch_13014
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {A37D5BAA-FCA3-4168-913B-FA4464D4E2E4} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13014
SearchScopes: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> {C7E886B6-EA2F-4397-8D2E-CFEC691E4C6F} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13014
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-07-05] (Oracle Corporation)
BHO: Adobe Acrobat Create PDF Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-07-05] (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKU\.DEFAULT -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2008-04-14] (Společnost Microsoft)
Toolbar: HKU\S-1-5-21-299502267-1085031214-839522115-1003 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/wind ... 2625641765
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.201.1.2 10.201.1.254
Tcpip\..\Interfaces\{22C53D6C-ACEA-4068-8049-A6CF21C3AD9D}: [DhcpNameServer] 10.201.1.2 10.201.1.254

FireFox:
========
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-03-30] (Google)
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-07-05] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-07-05] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll No File
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-02-16] (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-05-24]
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2015-04-14]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Google Translate) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-02-01]
CHR Extension: (Translator for all languages) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\amdeidgbmcliegnpcbbkhlflkbdpomhk [2015-04-28]
CHR Extension: (Google Drive) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-12]
CHR Extension: (No Name) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-04-28]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2015-04-14]
CHR Extension: (AdBlock) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-02-01]
CHR Extension: (No Name) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ihmgiclibbndffejedjimfjmfoabpcke [2015-05-14]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2014-11-24]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-01]
CHR Extension: (No Name) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\noaijdpnepcgjemiklgfkcfbkokogabh [2015-04-28]
CHR Extension: (Gmail) - C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-28]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2012-09-23]
CHR HKLM\...\Chrome\Extension: [fknfdieimobmimhdkfkheeejenmdjhoe] - No Path Or update_url value
CHR HKU\S-1-5-21-299502267-1085031214-839522115-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - https://clients2.google.com/service/update2/crx

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1349576 2014-10-01] (ESET)
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2014-02-24] (Macrovision Europe Ltd.) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-12-22] (Oracle Corporation)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MDM; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S2 nvda; C:\Program Files\NVDA\nvda_service.exe [40040 2014-11-27] (NV Access Limited)
S2 postgresql-8.4; c:\postgreSQL\bin\pg_ctl.exe [81920 2013-04-02] (PostgreSQL Global Development Group) [File not signed]
S3 Samsung UPD Service2; C:\WINDOWS\system32\SUPDSvc2.exe [129536 2012-04-06] (Samsung Electronics)
S2 AdvancedSystemCareService8; C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2014-03-17] (Creative)
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [36864 2013-12-13] (Advanced Micro Devices)
R3 anvsnddrv; C:\WINDOWS\System32\drivers\anvsnddrv.sys [32896 2011-11-28] (AnvSoft Inc.) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R2 DgiVecp; C:\WINDOWS\system32\Drivers\DgiVecp.sys [38400 2009-02-16] (Samsung Electronics Co., Ltd.) [File not signed]
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2014-12-03] (Disc Soft Ltd)
S3 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [191928 2014-10-10] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [135296 2014-10-10] (ESET)
R2 epfw; C:\WINDOWS\System32\DRIVERS\epfw.sys [176448 2014-10-10] (ESET)
R3 Epfwndis; C:\WINDOWS\System32\DRIVERS\Epfwndis.sys [39464 2014-10-10] (ESET)
R1 epfwtdi; C:\WINDOWS\System32\DRIVERS\epfwtdi.sys [63160 2014-10-10] (ESET)
R1 Eve; C:\WINDOWS\System32\DRIVERS\eve.sys [33624 2013-03-28] ()
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2014-12-22] (REALiX(tm))
S3 MAGicKB; C:\WINDOWS\System32\DRIVERS\MAGicKB.sys [24608 2011-05-11] (Freedom Scientific, Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2014-03-17] (Creative Technology Ltd.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35088 2010-07-16] (CACE Technologies, Inc.)
S0 nvata; C:\WINDOWS\System32\DRIVERS\nvata.sys [105472 2006-10-18] (NVIDIA Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [70912 2013-12-13] (NVIDIA Corporation)
R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [168040 2013-12-13] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13824 2013-12-13] (NVIDIA Corporation)
S3 pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [16472 2010-08-16] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [11104 2010-08-16] ()
S3 snpstd2; C:\WINDOWS\System32\DRIVERS\snpstd2.sys [334080 2004-07-28] ()
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [320120 2014-03-23] (Duplex Secure Ltd.)
S3 ssudserd; C:\WINDOWS\System32\DRIVERS\ssudserd.sys [184192 2014-06-16] (DEVGURU Co., LTD.(http://www.devguru.co.kr))
R1 tStLib; C:\WINDOWS\System32\drivers\tStLib.sys [55224 2014-03-18] (StdLib)
R3 WsAudio_Device; C:\WINDOWS\System32\drivers\VirtualAudio.sys [27496 2013-03-25] (Wondershare)
S3 a2acc; No ImagePath
S1 A2DDA; \??\C:\EEK\bin\a2ddax86.sys [X]
S1 a2injectiondriver; No ImagePath
S1 a2util; No ImagePath
S3 cleanhlp; \??\C:\EEK\bin\cleanhlp32.sys [X]
S3 cpuz137; \??\C:\DOCUME~1\HENRIC~2.DOM\LOCALS~1\Temp\cpuz137\cpuz137_x32.sys [X]
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S2 SSPORT; No ImagePath
S2 StarOpen; No ImagePath
S3 TotRec8; No ImagePath
S3 WinRing0_1_2_0; No ImagePath
S2 zumbus; system32\DRIVERS\zumbus.sys [X]
U3 av11e9hn; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-05 14:10 - 2015-07-05 14:11 - 00020487 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\FRST.txt
2015-07-05 14:08 - 2015-07-05 14:08 - 01636352 _____ (Farbar) C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\FRST.exe
2015-07-05 14:08 - 2015-07-05 14:08 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\FRSTLauncher.exe
2015-07-05 13:34 - 2015-07-05 14:11 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Temp
2015-07-05 13:34 - 2015-07-05 13:01 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2015-07-05 13:03 - 2015-07-05 13:36 - 00056127 _____ C:\zoek-results.log
2015-07-05 13:01 - 2015-07-05 13:27 - 00000000 ____D C:\zoek_backup
2015-07-05 12:44 - 2015-07-05 12:44 - 01308672 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\zoek.exe
2015-07-05 12:23 - 2015-07-05 12:26 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\noha
2015-07-05 12:04 - 2015-07-05 12:04 - 00000784 _____ C:\Documents and Settings\All Users.WINDOWS\Plocha\Malwarebytes Anti-Malware.lnk
2015-07-05 12:04 - 2015-07-05 12:04 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2015-07-05 12:04 - 2015-07-05 12:04 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\Malwarebytes
2015-07-05 12:04 - 2015-07-05 12:04 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Malwarebytes' Anti-Malware
2015-07-05 12:04 - 2015-07-05 12:04 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Malwarebytes' Anti-Malware
2015-07-05 12:04 - 2015-07-05 12:04 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Malwarebytes
2015-07-05 12:04 - 2015-07-05 12:04 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Malwarebytes
2015-07-05 12:04 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-07-05 11:55 - 2015-07-05 11:55 - 00000000 ____D C:\Program Files\Common Files\Java
2015-07-05 11:53 - 2015-07-05 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Oracle
2015-07-05 11:53 - 2015-07-05 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Oracle
2015-07-05 11:12 - 2015-07-05 11:42 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\patfyz
2015-07-05 10:01 - 2015-07-05 10:01 - 00006790 _____ C:\WINDOWS\FaxSetup.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00006490 _____ C:\WINDOWS\iis6.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00004591 _____ C:\WINDOWS\tsoc.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00002438 _____ C:\WINDOWS\comsetup.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00001891 _____ C:\WINDOWS\imsins.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00001854 _____ C:\WINDOWS\msmqinst.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00001786 _____ C:\WINDOWS\ntdtcsetup.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00001592 _____ C:\WINDOWS\netfxocm.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000719 _____ C:\WINDOWS\MedCtrOC.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000479 _____ C:\WINDOWS\msgsocm.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000469 _____ C:\WINDOWS\ocmsn.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000311 _____ C:\WINDOWS\tabletoc.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000000 _____ C:\WINDOWS\setupact.log
2015-07-05 10:00 - 2015-07-05 10:01 - 00005816 _____ C:\WINDOWS\ocgen.log
2015-07-05 03:49 - 2015-07-05 03:49 - 00321848 _____ (Malwarebytes Corporation) C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\mbam-clean-2.1.1.1001.exe
2015-07-05 03:34 - 2015-07-05 03:34 - 00347816 _____ (Microsoft Corporation) C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\MicrosoftFixit.ProgramInstallUninstall.RNP.199359490845381433.1.1.Run.exe
2015-07-05 03:20 - 2015-07-05 03:21 - 03768088 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-07-05 03:16 - 2015-07-05 03:16 - 00105496 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2015-07-05 02:58 - 2015-07-05 14:10 - 00000000 ____D C:\FRST
2015-07-05 02:51 - 2015-07-05 12:46 - 00000616 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\Nový objekt - Textový dokument.txt
2015-07-04 16:08 - 2015-07-04 16:09 - 00421376 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\Z_Londýna-šokující.pps
2015-07-04 10:53 - 2015-07-04 11:34 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\fotky
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 __RHD C:\Documents and Settings\postgres\Data aplikací
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ___RD C:\Documents and Settings\postgres\Nabídka Start\Programy\Příslušenství
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ___RD C:\Documents and Settings\postgres\Nabídka Start\Programy\Po spuštění
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ___RD C:\Documents and Settings\postgres\Nabídka Start\Programy
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ___RD C:\Documents and Settings\postgres\Nabídka Start
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ___HD C:\Documents and Settings\postgres\Šablony
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ___HD C:\Documents and Settings\postgres\Okolní tiskárny
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ___HD C:\Documents and Settings\postgres\Okolní síť
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\postgres\Plocha
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\postgres\Oblíbené položky
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\postgres\Local Settings\Temp
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\postgres\Dokumenty
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\postgres\Data aplikací\Macromedia
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\GlarySoft
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Dokumenty\NativeFus_Log
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Davar3
2015-07-02 11:53 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikac
2015-07-02 11:26 - 2015-07-05 02:41 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\theWord
2015-07-02 11:26 - 2015-07-05 02:41 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\theWord
2015-07-02 11:26 - 2015-07-04 21:29 - 00000000 ____D C:\Documents and Settings\postgres
2015-07-02 11:26 - 2015-07-02 11:53 - 00000000 ___HD C:\Documents and Settings\postgres\Local Settings\Data aplikací
2015-07-02 11:26 - 2015-07-02 11:53 - 00000000 ____D C:\Documents and Settings\Henrich
2015-07-02 11:26 - 2015-07-02 11:26 - 00000000 ____D C:\Program Files\The Word
2015-07-02 11:26 - 2015-07-02 11:26 - 00000000 ____D C:\Program Files\ScanSoft
2015-07-02 11:26 - 2015-07-02 11:26 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\The Word
2015-07-02 11:26 - 2015-07-02 11:26 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\The Word
2015-07-02 11:26 - 2015-07-02 11:26 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\The Word
2015-06-30 20:52 - 2015-07-02 11:26 - 00000000 ___SD C:\Documents and Settings\postgres(2)
2015-06-30 20:52 - 2015-07-02 11:26 - 00000000 ____D C:\Documents and Settings\postgres(2)\Šablony
2015-06-30 20:52 - 2015-07-02 11:26 - 00000000 ____D C:\Documents and Settings\postgres(2)\Data aplikací
2015-06-30 20:52 - 2015-04-25 21:24 - 00000000 ____D C:\Documents and Settings\postgres(2)\Local Settings\Data aplikací\Google
2015-06-30 20:52 - 2015-04-25 21:24 - 00000000 ____D C:\Documents and Settings\postgres(2)\Local Settings\Data aplikací
2015-06-30 20:52 - 2014-02-24 21:36 - 00000000 ____D C:\Documents and Settings\postgres(2)\Data aplikací\Macromedia
2015-06-30 20:52 - 2013-03-18 11:35 - 00000000 ___HD C:\Documents and Settings\postgres(2)\Okolní síť
2015-06-30 20:52 - 2013-03-18 11:35 - 00000000 ____D C:\Documents and Settings\postgres(2)\Oblíbené položky
2015-06-30 20:52 - 2013-03-18 11:35 - 00000000 ____D C:\Documents and Settings\postgres(2)\Local Settings\Temp
2015-06-30 20:52 - 2013-03-18 11:35 - 00000000 ____D C:\Documents and Settings\postgres(2)\Dokumenty
2015-06-30 20:50 - 2015-07-02 11:26 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2
2015-06-30 14:34 - 2015-06-30 14:34 - 00000000 ____D C:\Documents and Settings\Henrich(2)
2015-06-30 14:03 - 2015-07-05 13:57 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-06-30 14:03 - 2015-07-05 13:57 - 00000050 _____ C:\WINDOWS\wiaservc.log
2015-06-30 14:03 - 2015-06-30 14:03 - 00000000 ____N C:\WINDOWS\Sti_Trace.log
2015-06-30 14:02 - 2015-07-05 13:57 - 00032144 _____ C:\WINDOWS\SchedLgU.Txt
2015-06-30 13:58 - 2015-07-02 11:53 - 00000000 ____D C:\EEK
2015-06-30 13:57 - 2015-07-05 10:23 - 00000000 ____D C:\AdwCleaner
2015-06-25 09:52 - 2015-06-25 09:52 - 00000022 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\Nový objekt - Textový dokument (2).txt
2015-06-23 22:41 - 2015-07-05 13:57 - 00000284 _____ C:\WINDOWS\Tasks\ASC8_PerformanceMonitor.job
2015-06-22 21:57 - 2015-06-22 21:57 - 00000000 ____D C:\Documents and Settings\LocalService.NT AUTHORITY.000\Data aplikací\IObit
2015-06-21 21:45 - 2015-06-21 21:45 - 00074308 ____H C:\WINDOWS\system32\mlfcache.dat
2015-06-17 15:43 - 2015-06-30 21:37 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\foto

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-05 14:10 - 2013-03-18 10:50 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha
2015-07-05 14:09 - 2013-03-18 10:50 - 00000000 ___HD C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací
2015-07-05 14:00 - 2015-02-18 11:59 - 00000178 ___SH C:\Documents and Settings\postgres\ntuser.ini
2015-07-05 13:58 - 2013-03-18 10:43 - 01654587 _____ C:\WINDOWS\WindowsUpdate.log
2015-07-05 13:57 - 2014-11-25 16:40 - 00000282 _____ C:\WINDOWS\Tasks\Game_Booster_AutoUpdate.job
2015-07-05 13:57 - 2014-06-23 20:45 - 00000920 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-05 13:57 - 2014-05-14 11:00 - 00000288 _____ C:\WINDOWS\Tasks\HitsBlender Update Service.job
2015-07-05 13:57 - 2014-03-18 15:48 - 00000226 _____ C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-07-05 13:57 - 2013-12-13 11:42 - 00047214 _____ C:\WINDOWS\system32\nvAppTimestamps
2015-07-05 13:57 - 2013-03-18 10:49 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-07-05 13:57 - 2013-03-18 09:46 - 00000000 ____D C:\WINDOWS\Driver Cache
2015-07-05 13:56 - 2013-03-18 10:50 - 00000178 ___SH C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\ntuser.ini
2015-07-05 13:54 - 2013-04-03 14:21 - 00001050 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1085031214-839522115-1003UA.job
2015-07-05 13:54 - 2013-03-18 11:34 - 00000000 __RHD C:\Documents and Settings\All Users.WINDOWS\Data aplikací
2015-07-05 13:54 - 2013-03-18 10:50 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací
2015-07-05 13:42 - 2013-06-20 20:16 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-07-05 13:38 - 2014-01-30 14:33 - 00000008 __RSH C:\Documents and Settings\All Users.WINDOWS\ntuser.pol
2015-07-05 13:38 - 2013-03-18 11:34 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS
2015-07-05 13:28 - 2014-06-23 20:45 - 00000924 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-05 13:27 - 2014-01-30 14:33 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-07-05 13:27 - 2013-03-18 11:35 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy
2015-07-05 13:27 - 2013-03-18 11:35 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy
2015-07-05 12:04 - 2013-03-18 11:35 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Plocha
2015-07-05 11:54 - 2014-12-22 11:38 - 00146432 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2015-07-05 11:54 - 2014-12-22 11:38 - 00096352 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2015-07-05 11:53 - 2014-12-22 11:37 - 00000000 ____D C:\Program Files\Java
2015-07-05 10:44 - 2013-12-17 13:45 - 00002565 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\Microsoft Office Word 2007.lnk
2015-07-05 10:04 - 2014-04-02 18:12 - 00000000 ____D C:\Program Files\IObit
2015-07-05 07:54 - 2013-04-03 14:21 - 00000998 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1085031214-839522115-1003Core.job
2015-07-05 03:19 - 2014-03-17 23:15 - 00065536 _____ C:\WINDOWS\system32\config\WindowsPowerShell.evt
2015-07-05 03:19 - 2014-03-17 23:15 - 00065536 _____ C:\WINDOWS\system32\config\EventForwarding-Operational.Evt
2015-07-05 03:19 - 2013-03-18 15:25 - 00065536 _____ C:\WINDOWS\system32\config\ODiag.evt
2015-07-05 03:19 - 2013-03-18 11:36 - 00065536 _____ C:\WINDOWS\system32\config\Internet.evt
2015-07-05 03:18 - 2014-04-06 19:58 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\IObit
2015-07-05 02:42 - 2014-03-23 15:44 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\DAEMON Tools Pro
2015-07-05 02:41 - 2013-03-18 11:06 - 00000000 __SHD C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\UserData
2015-07-05 02:41 - 2013-03-18 10:50 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348
2015-07-04 22:37 - 2013-03-21 18:49 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\OCO
2015-07-04 21:29 - 2013-03-18 10:49 - 00000000 __SHD C:\Documents and Settings\LocalService.NT AUTHORITY.000
2015-07-04 21:29 - 2013-03-18 10:48 - 00000000 __SHD C:\Documents and Settings\NetworkService.NT AUTHORITY.000
2015-07-04 21:28 - 2013-03-18 08:57 - 00000000 ____D C:\WINDOWS\Registration
2015-07-03 22:47 - 2001-10-25 17:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2015-07-02 20:31 - 2015-05-14 22:18 - 00001825 _____ C:\Documents and Settings\All Users.WINDOWS\Plocha\Google Chrome.lnk
2015-07-02 12:42 - 2013-06-20 20:16 - 00778416 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-07-02 12:42 - 2013-06-20 20:16 - 00142512 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-07-02 11:54 - 2014-11-24 18:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Google Drive
2015-07-02 11:54 - 2014-11-24 18:53 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Google Drive
2015-07-02 11:53 - 2013-03-18 11:35 - 00000000 ___RD C:\Documents and Settings\All Users.WINDOWS\Dokumenty
2015-07-02 11:51 - 2013-09-11 16:17 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\IObit
2015-07-02 11:51 - 2013-09-11 16:17 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\IObit
2015-07-02 09:33 - 2013-03-19 21:54 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP
2015-07-02 09:33 - 2013-03-19 21:54 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP
2015-07-01 21:24 - 2013-03-18 10:50 - 00000000 ___RD C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Dokumenty
2015-06-30 20:50 - 2013-12-17 10:08 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Spybot - Search & Destroy
2015-06-30 20:50 - 2013-12-17 10:08 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Spybot - Search & Destroy
2015-06-30 13:12 - 2015-01-05 19:17 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\MPC-HC
2015-06-30 12:56 - 2013-12-13 13:16 - 41447424 _____ C:\WINDOWS\system32\config\software.iobit
2015-06-30 12:56 - 2013-12-13 13:16 - 00643072 _____ C:\WINDOWS\system32\config\default.iobit
2015-06-30 12:56 - 2013-12-13 13:16 - 00081920 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2015-06-30 12:56 - 2013-12-13 13:16 - 00028672 _____ C:\WINDOWS\system32\config\SAM.iobit
2015-06-23 22:41 - 2013-03-18 10:50 - 00000000 ___HD C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Šablony
2015-06-17 13:11 - 2015-05-20 19:23 - 00011199 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\SmarThruOptions.xml
2015-06-08 15:00 - 2014-03-18 15:48 - 00000220 _____ C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job

==================== Files in the root of some directories =======

2015-01-11 22:10 - 2009-08-27 18:50 - 0000701 _____ () C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\init.dll
2014-12-23 12:26 - 2014-12-23 14:47 - 0000115 _____ () C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\LogFile.txt
2015-05-20 19:23 - 2015-06-17 13:11 - 0011199 _____ () C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\SmarThruOptions.xml
2015-01-11 22:10 - 2009-09-15 10:14 - 0000701 _____ () C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\sound.dll
2015-01-11 22:10 - 2009-09-11 17:33 - 0000006 _____ () C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\SYSTEM32.dll
2015-01-11 22:11 - 2015-01-11 22:11 - 0000048 _____ () C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\tigersetting.dll
2015-01-06 23:09 - 2015-01-07 23:11 - 0005632 _____ () C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-03-31 22:00 - 2014-03-31 22:02 - 0000024 _____ () C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\pdfshaper.ini

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:45.21 GB) (Free:16.46 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:29.32 GB) (Free:8.69 GB) NTFS

Available physical RAM: 1504.61 MB
Total physical RAM: 2047.48 MB
Percentage of memory in use: 26%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 74.5 GB) (Disk ID: 27592758)
Partition 1: (Active) - (Size=45.2 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=29.3 GB) - (Type=OF Extended)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\ASC8_PerformanceMonitor.job => C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe
Task: C:\WINDOWS\Tasks\Game_Booster_AutoUpdate.job => C:\Program Files\IObit\Game Booster 3\AutoUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1085031214-839522115-1003Core.job => C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1085031214-839522115-1003UA.job => C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HitsBlender Update Service.job => C:\Program Files\HitsBlenderUpdater\HitsBlenderupdater.exehttp:/www.hitsblender.com
Task: C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\WINDOWS:AstInfo
AlternateDataStreams: C:\WINDOWS:nlsPreferences
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:373E1720
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:5F64C164
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:862BDB1A
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:B804E799
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:C8B8CEBD
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:CE225E1E
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:F10A4358
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:373E1720
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:5F64C164
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:862BDB1A
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:B804E799
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:C8B8CEBD
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:CE225E1E
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:F10A4358

==================== Security Center ==================

AV: ESET Smart Security 8.0 (Disabled - Up to date) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET Personálny Firewall (Disabled) {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha" je 1327 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\4600 Scan2PC
"C:\WINDOWS\Twain_32\Samsung\SCX4600\scan2pc.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0
"C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0
"C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeFlashPlayer
wscript "C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikac\Adobe\Flash Player\Cache\IDMcache.vbs" "C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikac\Adobe\Flash Player\Cache\IDMcache.bat" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE
C:\WINDOWS\system32\ctfmon.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent
"C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\emsisoft anti-malware
c:\program files\microsoft office\office12\groovemonitor.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor
RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon
wscript "C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikac\Adobe\Flash Player\File Cache\file.vbs" "C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikac\Adobe\Flash Player\File Cache\rss.bat" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RSS
C:\WINDOWS\Samsung\PanelMgr\ssmmgr.exe /autorun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Samsung PanelMgr
c:\windows\twain_32\samsung\scx4600\scan2pc.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SCX4600_Scan2Pc
"C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype
c:\windows\vsnpstd2.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SNPSTD2
"c:\program files\real\realplayer\update\realsched.exe" -osboot [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe
"C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate
"C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Service 16
Reim ECHO je vypnut.

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Henrich.DOMA-9C5ACA6348^Nabdka Start^Programy^Po sputn^Orezva obrazovky a spa programu OneNote 2007.lnk
C:\PROGRA~1\MICROS~2\Office12\ONENOTEM.EXE

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Ace Translator\\AceTrans.exe"="C:\\Program Files\\Ace Translator\\AceTrans.exe:*:Enabled:Ace Translator"
"C:\\DOCUME~1\\HENRIC~2.DOM\\LOCALS~1\\Temp\\Rar$EX04.938\\Mohager to ALLAH Translator v6.4\\crack\\AceTrans.exe"="C:\\DOCUME~1\\HENRIC~2.DOM\\LOCALS~1\\Temp\\Rar$EX04.938\\Mohager to ALLAH Translator v6.4\\crack\\AceTrans.exe:*:Enabled:Ace Translator"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Samsung\\Samsung Universal Print Driver 2\\PrinterSelector\\SUPDApp.exe"="C:\\Program Files\\Samsung\\Samsung Universal Print Driver 2\\PrinterSelector\\SUPDApp.exe:*:Enabled:Samsung Universal Print Driver 2"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\WINDOWS\\system32\\SUPDSvc2.exe"="C:\\WINDOWS\\system32\\SUPDSvc2.exe:*:Enabled:Samsung UPD Service2"
"C:\\WINDOWS\\twain_32\\Samsung\\ScanMgr.exe"="C:\\WINDOWS\\twain_32\\Samsung\\ScanMgr.exe:*:Enabled:Scan Manger"
"C:\\WINDOWS\\twain_32\\Samsung\\SCX4600\\Scan2Pc.exe"="C:\\WINDOWS\\twain_32\\Samsung\\SCX4600\\Scan2Pc.exe:*:Enabled:ScanToPC"
"C:\\WINDOWS\\twain_32\\Samsung\\SCX4600\\Sscan2io.exe"="C:\\WINDOWS\\twain_32\\Samsung\\SCX4600\\Sscan2io.exe:*:Enabled:SScanToIO"
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\WINDOWS\\system32\\dpvsetup.exe"="C:\\WINDOWS\\system32\\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\\WINDOWS\\system32\\rundll32.exe"="C:\\WINDOWS\\system32\\rundll32.exe:*:Enabled:Run a DLL as an App"
"F:\\FIFA 2013\\fifa\\Game\\fifa13.exe"="F:\\FIFA 2013\\fifa\\Game\\fifa13.exe:*:Disabled:FIFA 13"
"C:\\Program Files\\Samsung\\Samsung Universal Print Driver 2\\PrinterSelector\\SUPDApp.exe"="C:\\Program Files\\Samsung\\Samsung Universal Print Driver 2\\PrinterSelector\\SUPDApp.exe:*:Enabled:Samsung Universal Print Driver 2"
"C:\\Program Files\\Java\\jre7\\bin\\javaw.exe"="C:\\Program Files\\Java\\jre7\\bin\\javaw.exe:*:Disabled:Java(TM) Platform SE binary"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"5432:TCP"="5432:TCP:*:Enabled:postgres"
"5985:TCP"="5985:TCP:*:Disabled:Vzdlen sprva systmu Windows "
"80:TCP"="80:TCP:*:Disabled:Vzdlen sprva systmu Windows - reim kompatibility (HTTP-In) "

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000

==================== End Of Log ==============================

Addition.txt:

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 04-07-2015
Ran by Henrich at 2015-07-05 14:11:44
Running from C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-299502267-1085031214-839522115-500 - Administrator - Enabled)
ASPNET (S-1-5-21-299502267-1085031214-839522115-1081 - Limited - Enabled)
Guest (S-1-5-21-299502267-1085031214-839522115-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-299502267-1085031214-839522115-1000 - Limited - Disabled)
Henrich (S-1-5-21-299502267-1085031214-839522115-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Henrich.DOMA-9C5ACA6348
postgres (S-1-5-21-299502267-1085031214-839522115-1080 - Limited - Enabled) => %SystemDrive%\Documents and Settings\postgres
SUPPORT_388945a0 (S-1-5-21-299502267-1085031214-839522115-1002 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Smart Security 8.0 (Disabled - Up to date) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET Personálny Firewall (Disabled) {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ACD/Labs Software in C:\Program Files\ACDFREE12\ (HKLM\...\ACDLabs in C__Program_Files_ACDFREE12_) (Version: v12.00, FREE - ACD/Labs)
Adobe Acrobat XI Pro (HKLM\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.02 - Adobe Systems)
Adobe Flash Player 17 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 17.0.0.190 - Adobe Systems Incorporated)
Aktualizace systému Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows Internet Explorer 8 (KB2632503) (HKLM\...\KB2632503-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2909210) (HKLM\...\KB2909210-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2925418) (HKLM\...\KB2925418-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2936068) (HKLM\...\KB2936068-IE8) (Version: 1 - Microsoft Corporation)
Allok Video Joiner 4.6.0511 (HKLM\...\Allok Video Joiner_is1) (Version: - Allok Soft Inc.)
Any Video Converter Ultimate 5.7.5 (HKLM\...\Any Video Converter Ultimate_is1) (Version: - Any-Video-Converter.com)
Ashampoo Burning Studio 14 v.14.0.9 (HKLM\...\{91B33C97-7BCF-CDFE-4321-58EBF3E8641C}_is1) (Version: 14.0.9 - Ashampoo GmbH & Co. KG)
Audacity 2.0.3 (HKLM\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
Balabolka (HKLM\...\Balabolka) (Version: 2.10.0.576 - Ilya Morozov)
CCleaner (HKLM\...\CCleaner) (Version: 4.05 - Piriform)
CMS PROFESSIONAL (HKLM\...\{16D0769B-0650-4F2E-B684-E23423F66526}) (Version: 3.0 - ALNET SYSTEMS)
DAEMON Tools Pro (HKLM\...\DAEMON Tools Pro) (Version: 5.5.0.0388 - Disc Soft Ltd)
ePub Converter (HKLM\...\ePubConverter) (Version: 1.2.1 - eBook Converter)
Freedom Scientific MAGic Keyboard (HKLM\...\MAGicKb) (Version: 1.0.107.101 - Freedom Scientific)
Freedom Scientific MAGic Keyboard (Version: 1.0.107.101 - Freedom Scientific) Hidden
Fuse Drivers FPS-xx (HKLM\...\{97610367-01D9-4A75-B998-1E698A406155}) (Version: 11.37.0 - Nokia)
Google Drive (HKLM\...\{CBC9F5FD-5CFA-4A33-81CD-369EAB77E3A6}) (Version: 1.22.9403.0223 - Google, Inc.)
Google Earth (HKLM\...\{1A295C25-6E02-49FB-826B-F0D2C56FFA4E}) (Version: 7.1.4.1529 - Google)
Google Earth Pro (HKLM\...\{5BAA8884-F661-464B-B5B2-5C6C632BFC21}) (Version: 7.1.4.1529 - Google)
Google Chrome (HKLM\...\Google Chrome) (Version: 43.0.2357.130 - Spoločnosť Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.27.5 - Google Inc.) Hidden
Internet Banking Payment Assistant 2.2 (HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\Internet Banking Payment Assistant) (Version: 2.2 - Citadel Commerce)
Java 7 Update 72 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217072FF}) (Version: 7.0.720 - Oracle)
Java 8 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
K-Lite Mega Codec Pack 10.9.0 (HKLM\...\KLiteCodecPack_is1) (Version: 10.9.0 - )
KobaSpeech 2 - NVDA driver version 1.0 (HKLM\...\{3F3FAE4E-6F43-4884-B35C-74C829308710}_is1) (Version: 1.0 - KOBA Vision)
KobaSpeech 2 With Vocalizer Laura - Slovak (HKLM\...\{FB15FE4E-458C-417E-81A9-E8ABF98E1C9A}) (Version: 002.001.00000 - Koba Vision BVBA)
KobaSpeech 2 With Vocalizer Zuzana - Czech (HKLM\...\{9EDA8BDF-F4AE-4948-9A01-2DF6A4D029D0}) (Version: 002.001.00000 - Koba Vision BVBA)
LAME v3.99.3 (for Windows) (HKLM\...\LAME_is1) (Version: - )
Maintenance Samsung SCX-4600 Series (HKLM\...\Samsung SCX-4600 Series) (Version: - Samsung Electronics CO.,LTD)
Malwarebytes Anti-Malware verze 1.75.0.1300 (HKLM\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30730 - Microsoft Corporation)
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY (HKLM\...\{A2C9CD1B-2551-3AED-B244-6698FB929FA6}) (Version: 2.2.30730 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30730 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY (HKLM\...\{546C143E-68DC-314D-97BC-1E454E3BA429}) (Version: 3.2.30730 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - csy) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft SAPI 5.1 (HKLM\...\{A40DDC9B-4FEB-4352-8BC8-7E5FBC548E64}) (Version: 5.1.4324 - )
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Text-to-Speech Engine 4.0 (English) (HKLM\...\MSTTS) (Version: - )
Microsoft User-Mode Driver Framework Feature Pack 1.9 (HKLM\...\Wudf01009) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft WinUsb 2.0 (HKLM\...\winusb0200) (Version: - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 6.0 Parser (KB933579) (HKLM\...\{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}) (Version: 6.10.1200.0 - Microsoft Corporation)
Nokia Connectivity Cable Driver (HKLM\...\{0FF1922C-B6C4-40BB-AF30-BEF75A482444}) (Version: 6.82.4.0 - Nokia)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.57.35 - NVIDIA Corporation)
NVIDIA PhysX (HKLM\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Oprava hotfix pro produkt Microsoft .NET Framework 3.5 Language Pack SP1 - enu (KB960043) (HKLM\...\{DD73CA82-EA82-38AA-863D-9A24A018DC96}.KB960043) (Version: 1 - Microsoft Corporation)
Ovládací panel NVIDIA 327.23 (Version: 327.23 - NVIDIA Corporation) Hidden
PC Connectivity Solution (HKLM\...\{6B722793-E77B-41F5-BAB3-6C9832274E75}) (Version: 12.0.76.0 - Nokia)
PostgreSQL 8.4 (HKLM\...\PostgreSQL 8.4) (Version: 8.4 - PostgreSQL Global Development Group)
Readiris Pro 10 (HKLM\...\{14D08502-FEE4-40E5-90D3-8A967A1D8BA2}) (Version: - )
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.7111 - Realtek Semiconductor Corp.)
Samsung Kies (HKLM\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14123.5 - Samsung Electronics Co., Ltd.)
Samsung Kies (Version: 2.6.3.14123.5 - Samsung Electronics Co., Ltd.) Hidden
Samsung Universal Print Driver 2 (HKLM\...\Samsung Universal Print Driver 2) (Version: 2.50.05.00 - Samsung Electronics Co., Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
SAPI51 (Version: 1.00.0000 - Default Company Name) Hidden
Seznam Software (HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\SeznamInstall) (Version: - Seznam.cz)
SK Buildings Slovakia (HKLM\...\{BFED85F3-CBF9-4182-A551-2842FB9E1515}) (Version: 1.00 - Název společnosti:)
Skype™ 6.14 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
SmarThru 4 (HKLM\...\{90F1943D-EA4A-4460-B59F-30023F3BA69A}) (Version: - )
Spevník Spievajme Hospodinovi (HKLM\...\Spevník Spievajme Hospodinovi) (Version: - )
Surfing Protection (HKLM\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
theWord (HKLM\...\The Word) (Version: 4.0.0.1342 - Costas Stergiou)
TotalAudioConverter (HKLM\...\Total Audio Converter_is1) (Version: - Softplicity, Inc.)
TTS (HKLM\...\{62AAFC0A-00B8-4663-98D8-96AE9F3BA058}) (Version: 1.0.0.0 - ZoomCommerce Co., Ltd.)
Turistické trasy 2.31 (HKLM\...\Turistické trasy 2.31) (Version: - )
VideoCAM Look (HKLM\...\{EADAA6F7-991F-4CE9-B5CE-FCF3D81F7C7D}) (Version: 4.7.5.4 - )
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation)
Windows Imaging Component (HKLM\...\WIC) (Version: 3.0.0.0 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Management Framework Core (HKLM\...\KB968930) (Version: - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031517 - Microsoft Corporation)
WinHTTrack Website Copier 3.43-9D (HKLM\...\WinHTTrack Website Copier_is1) (Version: 3.43.12 - HTTrack)
WinPcap 4.1.2 (HKLM\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinUSB Compatible ID Drivers (HKLM\...\{8ADD5526-3DEC-4151-AC39-DEE5CADBCFDC}) (Version: 1.1.7.1433 - Nokia)
WinX HD Video Converter Deluxe 5.0.6 (HKLM\...\WinX HD Video Converter Deluxe_is1) (Version: - Digiarty Software, Inc.)
Wondershare Video Converter Ultimate(Build 6.8.0.2) (HKLM\...\Wondershare Video Converter Ultimate_is1) (Version: 6.8.0.2 - Wondershare Software)
XML Paper Specification Shared Components Language Pack 1.0 (Version: - Microsoft Corporation) Hidden
Zoner Photo Studio 16 (HKLM\...\ZonerPhotoStudio16_SK_is1) (Version: 16.0.1.5 - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Restore Points =========================

02-07-2015 11:59:06 Operace obnovení
03-07-2015 23:03:51 Kontrolní bod systému
04-07-2015 21:28:07 Operace obnovení
04-07-2015 21:35:03 dobry
05-07-2015 13:03:18 zoek.exe restore point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-05 13:03 - 2015-07-05 13:03 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\ASC8_PerformanceMonitor.job => C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe
Task: C:\WINDOWS\Tasks\Game_Booster_AutoUpdate.job => C:\Program Files\IObit\Game Booster 3\AutoUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1085031214-839522115-1003Core.job => C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1085031214-839522115-1003UA.job => C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HitsBlender Update Service.job => C:\Program Files\HitsBlenderUpdater\HitsBlenderupdater.exehttp:/www.hitsblender.com
Task: C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe

==================== Loaded Modules (Whitelisted) ==============

2007-06-28 18:43 - 2007-06-28 18:43 - 01474560 _____ () C:\WINDOWS\system32\nview.dll
2015-01-11 22:09 - 2002-01-11 15:59 - 00094274 _____ () C:\WINDOWS\system32\HPBHealr.dll
2015-01-11 22:09 - 2001-10-28 18:43 - 00116736 _____ () C:\WINDOWS\system32\redmonnt.dll
2013-03-18 14:08 - 2011-04-11 07:26 - 00024064 _____ () C:\WINDOWS\system32\spd__l.dll
2013-03-18 14:10 - 2009-02-18 14:44 - 00026624 _____ () C:\WINDOWS\system32\sso1ml3.dll
2014-12-23 12:11 - 2014-04-16 10:22 - 00025600 _____ () C:\WINDOWS\system32\usp01l.dll
2013-03-18 14:10 - 2011-07-13 14:22 - 00688128 _____ () C:\WINDOWS\Samsung\PanelMgr\ssmmgr.exe
2013-03-18 14:12 - 2011-06-24 06:40 - 01990144 _____ () C:\WINDOWS\Twain_32\Samsung\SCX4600\Scan2pc.exe
2013-03-18 14:12 - 2009-02-19 04:17 - 01384520 _____ () C:\WINDOWS\Twain_32\Samsung\SCX4600\ssole.dll
2012-09-23 19:44 - 2012-09-23 19:44 - 00010240 _____ () C:\Program Files\Adobe\Acrobat 11.0\Acrobat\locale\cs_cz\Acrotray.cze
2007-06-28 18:43 - 2007-06-28 18:43 - 00466944 _____ () C:\WINDOWS\system32\nvshell.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS:AstInfo
AlternateDataStreams: C:\WINDOWS:nlsPreferences
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:373E1720
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:5F64C164
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:862BDB1A
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:B804E799
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:C8B8CEBD
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:CE225E1E
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:F10A4358
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:373E1720
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:5F64C164
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:862BDB1A
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:B804E799
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:C8B8CEBD
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:CE225E1E
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:F10A4358

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{1a3e09be-1e45-494b-9174-d7385b45bbf5} => ""=""

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\100sexlinks.com -> 100sexlinks.com

There are 4788 more restricted sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-299502267-1085031214-839522115-1003\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
DNS Servers: 10.201.1.2 - 10.201.1.254

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^Documents and Settings^Henrich.DOMA-9C5ACA6348^Nabídka Start^Programy^Po spuštění^Orezávač obrazovky a spúšťač programu OneNote 2007.lnk => C:\WINDOWS\pss\Orezávač obrazovky a spúšťač programu OneNote 2007.lnkStartup
MSCONFIG\startupreg: 4600 Scan2PC => "C:\WINDOWS\Twain_32\Samsung\SCX4600\scan2pc.exe"
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeFlashPlayer => wscript "C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\Adobe\Flash Player\Cache\IDMcache.vbs" "C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\Adobe\Flash Player\Cache\IDMcache.bat"
MSCONFIG\startupreg: CTFMON.EXE => C:\WINDOWS\system32\ctfmon.exe
MSCONFIG\startupreg: DAEMON Tools Pro Agent => "C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun
MSCONFIG\startupreg: emsisoft anti-malware => "a2Guard.exe" /d=60
MSCONFIG\startupreg: GrooveMonitor => c:\program files\microsoft office\office12\groovemonitor.exe
MSCONFIG\startupreg: NvCplDaemon => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
MSCONFIG\startupreg: RSS => wscript "C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\Adobe\Flash Player\File Cache\file.vbs" "C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\Adobe\Flash Player\File Cache\rss.bat"
MSCONFIG\startupreg: Samsung PanelMgr => C:\WINDOWS\Samsung\PanelMgr\ssmmgr.exe /autorun
MSCONFIG\startupreg: SCX4600_Scan2Pc => c:\windows\twain_32\samsung\scx4600\scan2pc.exe
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SNPSTD2 => c:\windows\vsnpstd2.exe
MSCONFIG\startupreg: TkBellExe => "c:\program files\real\realplayer\update\realsched.exe" -osboot
MSCONFIG\startupreg: Zoner Photo Studio Autoupdate => "C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE"
MSCONFIG\startupreg: Zoner Photo Studio Service 16 => "C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

DomainProfile\AuthorizedApplications: [C:\Program Files\Ace Translator\AceTrans.exe] => Enabled:Ace Translator
DomainProfile\AuthorizedApplications: [C:\DOCUME~1\HENRIC~2.DOM\LOCALS~1\Temp\Rar$EX04.938\Mohager to ALLAH Translator v6.4\crack\AceTrans.exe] => C:\DOCUME~1\HENRIC~2.DOM\LOCALS~1\Temp\Rar$EX04.938\Mohager to ALLAH Translator v6.4\crack\AceTrans.exe:*:Enabled:Ace Translator
DomainProfile\AuthorizedApplications: [C:\Program Files\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe] => Enabled:Samsung Universal Print Driver 2
StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\SUPDSvc2.exe] => Enabled:Samsung UPD Service2
StandardProfile\AuthorizedApplications: [C:\WINDOWS\twain_32\Samsung\ScanMgr.exe] => Enabled:Scan Manger
StandardProfile\AuthorizedApplications: [C:\WINDOWS\twain_32\Samsung\SCX4600\Scan2Pc.exe] => Enabled:ScanToPC
StandardProfile\AuthorizedApplications: [C:\WINDOWS\twain_32\Samsung\SCX4600\Sscan2io.exe] => Enabled:SScanToIO
StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE] => Enabled:Microsoft Office Outlook
StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\GROOVE.EXE] => Enabled:Microsoft Office Groove
StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE] => Enabled:Microsoft Office OneNote
StandardProfile\AuthorizedApplications: [C:\Program Files\Skype\Phone\Skype.exe] => Enabled:Skype
StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\dpvsetup.exe] => Enabled:Microsoft DirectPlay Voice Test
StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\rundll32.exe] => Enabled:Run a DLL as an App
StandardProfile\AuthorizedApplications: [F:\FIFA 2013\fifa\Game\fifa13.exe] => Disabled:FIFA 13
StandardProfile\AuthorizedApplications: [C:\Program Files\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe] => Enabled:Samsung Universal Print Driver 2
StandardProfile\AuthorizedApplications: [C:\Program Files\Java\jre7\bin\javaw.exe] => Disabled:Java(TM) Platform SE binary
StandardProfile\AuthorizedApplications: [C:\Program Files\Google\Chrome\Application\chrome.exe] => Enabled:Google Chrome
StandardProfile\GloballyOpenPorts: [5432:TCP] => Enabled:postgres
StandardProfile\GloballyOpenPorts: [5985:TCP] => Disabled:Vzdálená správa systému Windows
StandardProfile\GloballyOpenPorts: [80:TCP] => Disabled:Vzdálená správa systému Windows – režim kompatibility (HTTP-In)

==================== Faulty Device Manager Devices =============

Name: A4TIK5QI IDE Controller
Description: A4TIK5QI IDE Controller
Class Guid: {4D36E97B-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard mass storage controllers)
Service: av11e9hn
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

==================== Event log errors: =========================

Application errors:
==================
Error: (07/05/2015 02:00:01 PM) (Source: PostgreSQL) (EventID: 0) (User: )
Description: Timed out waiting for server startup

Error: (07/05/2015 01:57:56 PM) (Source: PostgreSQL) (EventID: 0) (User: )
Description: postgres cannot access the server configuration file "c:/postgreSQL/data/postgresql.conf": No such file or directory

Error: (07/05/2015 01:38:34 PM) (Source: PostgreSQL) (EventID: 0) (User: )
Description: Timed out waiting for server startup

Error: (07/05/2015 01:36:29 PM) (Source: PostgreSQL) (EventID: 0) (User: )
Description: postgres cannot access the server configuration file "c:/postgreSQL/data/postgresql.conf": No such file or directory

Error: (07/05/2015 00:54:58 PM) (Source: PostgreSQL) (EventID: 0) (User: )
Description: Timed out waiting for server startup

Error: (07/05/2015 00:52:56 PM) (Source: PostgreSQL) (EventID: 0) (User: )
Description: postgres cannot access the server configuration file "c:/postgreSQL/data/postgresql.conf": No such file or directory

Error: (07/05/2015 00:06:04 PM) (Source: nview_info) (EventID: 1) (User: )
Description: NVIEW : mbam: WAIT_TIMEOUT, while waiting for a read to clear - resetting read event

Error: (07/05/2015 00:04:58 PM) (Source: PostgreSQL) (EventID: 0) (User: )
Description: Timed out waiting for server startup

Error: (07/05/2015 00:02:53 PM) (Source: PostgreSQL) (EventID: 0) (User: )
Description: postgres cannot access the server configuration file "c:/postgreSQL/data/postgresql.conf": No such file or directory

Error: (07/05/2015 11:59:58 AM) (Source: nview_info) (EventID: 1) (User: )
Description: NVIEW : mbam-setup: WAIT_TIMEOUT, while waiting for a read to clear - resetting read event

System errors:
=============
Error: (07/05/2015 02:00:02 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
a2injectiondriver
nvata

Error: (07/05/2015 01:58:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SSPORT neuspěla při spuštění v důsledku následující chyby:
%%2

Error: (07/05/2015 01:58:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba nvda neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (07/05/2015 01:58:11 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Vypršel časový limit (30000 milisekund) čekání na připojení služby nvda.

Error: (07/05/2015 01:58:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Zune Bus Enumerator Driver neuspěla při spuštění v důsledku následující chyby:
%%2

Error: (07/05/2015 01:58:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba StarOpen neuspěla při spuštění v důsledku následující chyby:
%%2

Error: (07/05/2015 01:58:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Advanced SystemCare Service 8 neuspěla při spuštění v důsledku následující chyby:
%%2

Error: (07/05/2015 01:57:46 PM) (Source: 0) (EventID: 1) (User: )
Description: 0xC0000001HarddiskVolume1

Error: (07/05/2015 01:38:35 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
a2injectiondriver

Error: (07/05/2015 01:36:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SSPORT neuspěla při spuštění v důsledku následující chyby:
%%2

Microsoft Office:
=========================

==================== Memory info ===========================

Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 4800+
Percentage of memory in use: 26%
Total physical RAM: 2047.48 MB
Available physical RAM: 1504.61 MB
Total Virtual: 3939.67 MB
Available Virtual: 3502.63 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:45.21 GB) (Free:16.46 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:29.32 GB) (Free:8.69 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 74.5 GB) (Disk ID: 27592758)
Partition 1: (Active) - (Size=45.2 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=29.3 GB) - (Type=OF Extended)

==================== End of log ============================

Tvorba fixlistu pro FRST

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2014-12-17] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-18] (Adobe Systems Incorporated)
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3478752 2012-12-18] (Adobe Systems Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\Run: [Advanced SystemCare 8] => "C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto
HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files\DAEMON Tools Pro\DTAgent.exe [3129560 2014-02-24] (Disc Soft Ltd)
HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\MountPoints2: {535f715d-8f9d-11e2-8764-806d6172696f} - E:\Run.exe
HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\Winlogon: [Shell] C:\WINDOWS\explorer.exe [1034240 2008-04-14] (Microsoft Corporation) <==== ATTENTION 

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <======= ATTENTION
SearchScopes: HKLM -> {7BDD16DA-7640-4368-AA75-C04518F5F635} URL = ${SEARCH_URL}{searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

CHR HKLM\...\Chrome\Extension: [fknfdieimobmimhdkfkheeejenmdjhoe] - No Path Or update_url value

S2 AdvancedSystemCareService8; C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe [X]
S3 a2acc; No ImagePath
S1 A2DDA; \??\C:\EEK\bin\a2ddax86.sys [X]
S1 a2injectiondriver; No ImagePath
S1 a2util; No ImagePath
S3 cleanhlp; \??\C:\EEK\bin\cleanhlp32.sys [X]
S3 cpuz137; \??\C:\DOCUME~1\HENRIC~2.DOM\LOCALS~1\Temp\cpuz137\cpuz137_x32.sys [X]
S4 IntelIde; No ImagePath
S2 SSPORT; No ImagePath
S2 StarOpen; No ImagePath
S3 TotRec8; No ImagePath
S3 WinRing0_1_2_0; No ImagePath
S2 zumbus; system32\DRIVERS\zumbus.sys [X]
U3 av11e9hn; No ImagePath

C:\Program Files\IObit
2015-07-05 14:10 - 2015-07-05 14:11 - 00020487 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\FRST.txt
2015-07-05 14:08 - 2015-07-05 14:08 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\FRSTLauncher.exe
2015-07-05 13:34 - 2015-07-05 14:11 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Temp
2015-07-05 13:34 - 2015-07-05 13:01 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2015-07-05 13:03 - 2015-07-05 13:36 - 00056127 _____ C:\zoek-results.log
2015-07-05 13:01 - 2015-07-05 13:27 - 00000000 ____D C:\zoek_backup
2015-07-05 12:44 - 2015-07-05 12:44 - 01308672 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\zoek.exe
2015-07-05 10:01 - 2015-07-05 10:01 - 00006790 _____ C:\WINDOWS\FaxSetup.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00006490 _____ C:\WINDOWS\iis6.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00004591 _____ C:\WINDOWS\tsoc.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00002438 _____ C:\WINDOWS\comsetup.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00001891 _____ C:\WINDOWS\imsins.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00001854 _____ C:\WINDOWS\msmqinst.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00001786 _____ C:\WINDOWS\ntdtcsetup.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00001592 _____ C:\WINDOWS\netfxocm.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000719 _____ C:\WINDOWS\MedCtrOC.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000479 _____ C:\WINDOWS\msgsocm.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000469 _____ C:\WINDOWS\ocmsn.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000311 _____ C:\WINDOWS\tabletoc.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000000 _____ C:\WINDOWS\setupact.log
2015-07-05 10:00 - 2015-07-05 10:01 - 00005816 _____ C:\WINDOWS\ocgen.log
2015-07-05 03:49 - 2015-07-05 03:49 - 00321848 _____ (Malwarebytes Corporation) C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\mbam-clean-2.1.1.1001.exe
2015-07-05 03:34 - 2015-07-05 03:34 - 00347816 _____ (Microsoft Corporation) C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\MicrosoftFixit.ProgramInstallUninstall.RNP.199359490845381433.1.1.Run.exe
2015-06-30 20:50 - 2015-07-02 11:26 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2
2015-06-30 14:03 - 2015-07-05 13:57 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-06-30 14:03 - 2015-07-05 13:57 - 00000050 _____ C:\WINDOWS\wiaservc.log
2015-06-30 14:03 - 2015-06-30 14:03 - 00000000 ____N C:\WINDOWS\Sti_Trace.log
2015-06-30 14:02 - 2015-07-05 13:57 - 00032144 _____ C:\WINDOWS\SchedLgU.Txt
2015-06-30 13:57 - 2015-07-05 10:23 - 00000000 ____D C:\AdwCleaner
2015-06-25 09:52 - 2015-06-25 09:52 - 00000022 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\Nový objekt - Textový dokument (2).txt
2015-06-23 22:41 - 2015-07-05 13:57 - 00000284 _____ C:\WINDOWS\Tasks\ASC8_PerformanceMonitor.job
2015-06-22 21:57 - 2015-06-22 21:57 - 00000000 ____D C:\Documents and Settings\LocalService.NT AUTHORITY.000\Data aplikací\IObit
2015-07-05 03:18 - 2014-04-06 19:58 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\IObit
2015-07-02 11:51 - 2013-09-11 16:17 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\IObit
2015-07-02 11:51 - 2013-09-11 16:17 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\IObit
2015-06-30 20:50 - 2013-12-17 10:08 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Spybot - Search & Destroy
2015-06-30 20:50 - 2013-12-17 10:08 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Spybot - Search & Destroy
2015-06-30 12:56 - 2013-12-13 13:16 - 41447424 _____ C:\WINDOWS\system32\config\software.iobit
2015-06-30 12:56 - 2013-12-13 13:16 - 00643072 _____ C:\WINDOWS\system32\config\default.iobit
2015-06-30 12:56 - 2013-12-13 13:16 - 00081920 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2015-06-30 12:56 - 2013-12-13 13:16 - 00028672 _____ C:\WINDOWS\system32\config\SAM.iobit

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\ASC8_PerformanceMonitor.job => C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe
Task: C:\WINDOWS\Tasks\Game_Booster_AutoUpdate.job => C:\Program Files\IObit\Game Booster 3\AutoUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1085031214-839522115-1003Core.job => C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1085031214-839522115-1003UA.job => C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HitsBlender Update Service.job => C:\Program Files\HitsBlenderUpdater\HitsBlenderupdater.exehttp:/www.hitsblender.com
Task: C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe

AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:373E1720
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:5F64C164
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:862BDB1A
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:B804E799
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:C8B8CEBD
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:CE225E1E
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:F10A4358
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:373E1720
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:5F64C164
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:862BDB1A
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:B804E799
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:C8B8CEBD
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:CE225E1E
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:F10A4358

DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeFlashPlayer
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\emsisoft anti-malware
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RSS
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Service 16

DomainProfile\AuthorizedApplications: [C:\DOCUME~1\HENRIC~2.DOM\LOCALS~1\Temp\Rar$EX04.938\Mohager to ALLAH Translator v6.4\crack\AceTrans.exe] => C:\DOCUME~1\HENRIC~2.DOM\LOCALS~1\Temp\Rar$EX04.938\Mohager to ALLAH Translator v6.4\crack\AceTrans.exe:*:Enabled:Ace Translator
StandardProfile\GloballyOpenPorts: [5432:TCP] => Enabled:postgres
StandardProfile\GloballyOpenPorts: [5985:TCP] => Disabled:Vzdálená správa systému Windows 
StandardProfile\GloballyOpenPorts: [80:TCP] => Disabled:Vzdálená správa systému Windows – režim kompatibility (HTTP-In) 

Hosts:
EmptyTemp:
Reboot:
End

Ulozte vytvoreny TXT jako fixlist.txt
Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

Kliknete na Fix
Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

od **10.10.10**

Nech sa páči

Fix result of Farbar Recovery Scan Tool (x86) Version: 04-07-2015
Ran by Henrich at 2015-07-06 01:40:11 Run:1
Running from C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha
Loaded Profiles: Henrich (Available Profiles: Henrich & postgres)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2014-12-17] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-18] (Adobe Systems Incorporated)
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3478752 2012-12-18] (Adobe Systems Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\Run: [Advanced SystemCare 8] => "C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto
HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files\DAEMON Tools Pro\DTAgent.exe [3129560 2014-02-24] (Disc Soft Ltd)
HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\MountPoints2: {535f715d-8f9d-11e2-8764-806d6172696f} - E:\Run.exe
HKU\S-1-5-21-299502267-1085031214-839522115-1003\...\Winlogon: [Shell] C:\WINDOWS\explorer.exe [1034240 2008-04-14] (Microsoft Corporation) <==== ATTENTION

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <======= ATTENTION
SearchScopes: HKLM -> {7BDD16DA-7640-4368-AA75-C04518F5F635} URL = ${SEARCH_URL}{searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

CHR HKLM\...\Chrome\Extension: [fknfdieimobmimhdkfkheeejenmdjhoe] - No Path Or update_url value

S2 AdvancedSystemCareService8; C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe [X]
S3 a2acc; No ImagePath
S1 A2DDA; \??\C:\EEK\bin\a2ddax86.sys [X]
S1 a2injectiondriver; No ImagePath
S1 a2util; No ImagePath
S3 cleanhlp; \??\C:\EEK\bin\cleanhlp32.sys [X]
S3 cpuz137; \??\C:\DOCUME~1\HENRIC~2.DOM\LOCALS~1\Temp\cpuz137\cpuz137_x32.sys [X]
S4 IntelIde; No ImagePath
S2 SSPORT; No ImagePath
S2 StarOpen; No ImagePath
S3 TotRec8; No ImagePath
S3 WinRing0_1_2_0; No ImagePath
S2 zumbus; system32\DRIVERS\zumbus.sys [X]
U3 av11e9hn; No ImagePath

C:\Program Files\IObit
2015-07-05 14:10 - 2015-07-05 14:11 - 00020487 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\FRST.txt
2015-07-05 14:08 - 2015-07-05 14:08 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\FRSTLauncher.exe
2015-07-05 13:34 - 2015-07-05 14:11 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Temp
2015-07-05 13:34 - 2015-07-05 13:01 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2015-07-05 13:03 - 2015-07-05 13:36 - 00056127 _____ C:\zoek-results.log
2015-07-05 13:01 - 2015-07-05 13:27 - 00000000 ____D C:\zoek_backup
2015-07-05 12:44 - 2015-07-05 12:44 - 01308672 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\zoek.exe
2015-07-05 10:01 - 2015-07-05 10:01 - 00006790 _____ C:\WINDOWS\FaxSetup.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00006490 _____ C:\WINDOWS\iis6.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00004591 _____ C:\WINDOWS\tsoc.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00002438 _____ C:\WINDOWS\comsetup.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00001891 _____ C:\WINDOWS\imsins.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00001854 _____ C:\WINDOWS\msmqinst.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00001786 _____ C:\WINDOWS\ntdtcsetup.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00001592 _____ C:\WINDOWS\netfxocm.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000719 _____ C:\WINDOWS\MedCtrOC.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000479 _____ C:\WINDOWS\msgsocm.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000469 _____ C:\WINDOWS\ocmsn.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000311 _____ C:\WINDOWS\tabletoc.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-07-05 10:01 - 2015-07-05 10:01 - 00000000 _____ C:\WINDOWS\setupact.log
2015-07-05 10:00 - 2015-07-05 10:01 - 00005816 _____ C:\WINDOWS\ocgen.log
2015-07-05 03:49 - 2015-07-05 03:49 - 00321848 _____ (Malwarebytes Corporation) C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\mbam-clean-2.1.1.1001.exe
2015-07-05 03:34 - 2015-07-05 03:34 - 00347816 _____ (Microsoft Corporation) C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\MicrosoftFixit.ProgramInstallUninstall.RNP.199359490845381433.1.1.Run.exe
2015-06-30 20:50 - 2015-07-02 11:26 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2
2015-06-30 14:03 - 2015-07-05 13:57 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-06-30 14:03 - 2015-07-05 13:57 - 00000050 _____ C:\WINDOWS\wiaservc.log
2015-06-30 14:03 - 2015-06-30 14:03 - 00000000 ____N C:\WINDOWS\Sti_Trace.log
2015-06-30 14:02 - 2015-07-05 13:57 - 00032144 _____ C:\WINDOWS\SchedLgU.Txt
2015-06-30 13:57 - 2015-07-05 10:23 - 00000000 ____D C:\AdwCleaner
2015-06-25 09:52 - 2015-06-25 09:52 - 00000022 _____ C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\Nový objekt - Textový dokument (2).txt
2015-06-23 22:41 - 2015-07-05 13:57 - 00000284 _____ C:\WINDOWS\Tasks\ASC8_PerformanceMonitor.job
2015-06-22 21:57 - 2015-06-22 21:57 - 00000000 ____D C:\Documents and Settings\LocalService.NT AUTHORITY.000\Data aplikací\IObit
2015-07-05 03:18 - 2014-04-06 19:58 - 00000000 ____D C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\IObit
2015-07-02 11:51 - 2013-09-11 16:17 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\IObit
2015-07-02 11:51 - 2013-09-11 16:17 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\IObit
2015-06-30 20:50 - 2013-12-17 10:08 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Spybot - Search & Destroy
2015-06-30 20:50 - 2013-12-17 10:08 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Spybot - Search & Destroy
2015-06-30 12:56 - 2013-12-13 13:16 - 41447424 _____ C:\WINDOWS\system32\config\software.iobit
2015-06-30 12:56 - 2013-12-13 13:16 - 00643072 _____ C:\WINDOWS\system32\config\default.iobit
2015-06-30 12:56 - 2013-12-13 13:16 - 00081920 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2015-06-30 12:56 - 2013-12-13 13:16 - 00028672 _____ C:\WINDOWS\system32\config\SAM.iobit

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\ASC8_PerformanceMonitor.job => C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe
Task: C:\WINDOWS\Tasks\Game_Booster_AutoUpdate.job => C:\Program Files\IObit\Game Booster 3\AutoUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1085031214-839522115-1003Core.job => C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1085031214-839522115-1003UA.job => C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HitsBlender Update Service.job => C:\Program Files\HitsBlenderUpdater\HitsBlenderupdater.exehttp:/www.hitsblender.com
Task: C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe

AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:373E1720
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:5F64C164
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:862BDB1A
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:B804E799
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:C8B8CEBD
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:CE225E1E
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:F10A4358
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:373E1720
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:5F64C164
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:862BDB1A
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:B804E799
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:C8B8CEBD
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:CE225E1E
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:F10A4358

DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeFlashPlayer
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\emsisoft anti-malware
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RSS
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Service 16

DomainProfile\AuthorizedApplications: [C:\DOCUME~1\HENRIC~2.DOM\LOCALS~1\Temp\Rar$EX04.938\Mohager to ALLAH Translator v6.4\crack\AceTrans.exe] => C:\DOCUME~1\HENRIC~2.DOM\LOCALS~1\Temp\Rar$EX04.938\Mohager to ALLAH Translator v6.4\crack\AceTrans.exe:*:Enabled:Ace Translator
StandardProfile\GloballyOpenPorts: [5432:TCP] => Enabled:postgres
StandardProfile\GloballyOpenPorts: [5985:TCP] => Disabled:Vzdálená správa systému Windows
StandardProfile\GloballyOpenPorts: [80:TCP] => Disabled:Vzdálená správa systému Windows – režim kompatibility (HTTP-In)

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\KiesTrayAgent => value removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Acrobat Assistant 8.0 => value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully.
HKU\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Run\\Advanced SystemCare 8 => value removed successfully.
HKU\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Pro Agent => value removed successfully.
"HKU\S-1-5-21-299502267-1085031214-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{535f715d-8f9d-11e2-8764-806d6172696f}" => key removed successfully.
HKCR\CLSID\{535f715d-8f9d-11e2-8764-806d6172696f} => key not found.
HKU\S-1-5-21-299502267-1085031214-839522115-1003\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => value removed successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\Tabs => value restored successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{7BDD16DA-7640-4368-AA75-C04518F5F635}" => key removed successfully.
HKCR\CLSID\{7BDD16DA-7640-4368-AA75-C04518F5F635} => key not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
"HKLM\SOFTWARE\Google\Chrome\Extensions\fknfdieimobmimhdkfkheeejenmdjhoe" => key removed successfully.
AdvancedSystemCareService8 => Service removed successfully.
a2acc => Service removed successfully.
A2DDA => Service removed successfully.
a2injectiondriver => Service removed successfully.
a2util => Service removed successfully.
cleanhlp => Service removed successfully.
cpuz137 => Service removed successfully.
IntelIde => Service removed successfully.
SSPORT => Service removed successfully.
StarOpen => Service removed successfully.
TotRec8 => Service removed successfully.
WinRing0_1_2_0 => Service removed successfully.
zumbus => Service removed successfully.
av11e9hn => Service not found.
C:\Program Files\IObit => moved successfully.
C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\FRST.txt => moved successfully.
C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\FRSTLauncher.exe => moved successfully.
C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Local Settings\Temp => moved successfully.
C:\WINDOWS\zoek-delete.exe => moved successfully.
C:\zoek-results.log => moved successfully.
C:\zoek_backup => moved successfully.
C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\zoek.exe => moved successfully.
C:\WINDOWS\FaxSetup.log => moved successfully.
C:\WINDOWS\iis6.log => moved successfully.
C:\WINDOWS\tsoc.log => moved successfully.
C:\WINDOWS\comsetup.log => moved successfully.
C:\WINDOWS\imsins.log => moved successfully.
C:\WINDOWS\msmqinst.log => moved successfully.
C:\WINDOWS\ntdtcsetup.log => moved successfully.
C:\WINDOWS\netfxocm.log => moved successfully.
C:\WINDOWS\MedCtrOC.log => moved successfully.
C:\WINDOWS\msgsocm.log => moved successfully.
C:\WINDOWS\ocmsn.log => moved successfully.
C:\WINDOWS\tabletoc.log => moved successfully.
C:\WINDOWS\setuperr.log => moved successfully.
C:\WINDOWS\setupact.log => moved successfully.
C:\WINDOWS\ocgen.log => moved successfully.
"C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\mbam-clean-2.1.1.1001.exe" => File/Folder not found.
C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\MicrosoftFixit.ProgramInstallUninstall.RNP.199359490845381433.1.1.Run.exe => moved successfully.
C:\Program Files\Spybot - Search & Destroy 2 => moved successfully.
Could not move "C:\WINDOWS\wiadebug.log" => Scheduled to move on reboot.
Could not move "C:\WINDOWS\wiaservc.log" => Scheduled to move on reboot.
Could not move "C:\WINDOWS\Sti_Trace.log" => Scheduled to move on reboot.
Could not move "C:\WINDOWS\SchedLgU.Txt" => Scheduled to move on reboot.
C:\AdwCleaner => moved successfully.
C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Plocha\Nový objekt - Textový dokument (2).txt => moved successfully.
C:\WINDOWS\Tasks\ASC8_PerformanceMonitor.job => moved successfully.
C:\Documents and Settings\LocalService.NT AUTHORITY.000\Data aplikací\IObit => moved successfully.
C:\Documents and Settings\Henrich.DOMA-9C5ACA6348\Data aplikací\IObit => moved successfully.
C:\Documents and Settings\All Users.WINDOWS\Data aplikací\IObit => moved successfully.
"C:\Documents and Settings\All Users.WINDOWS\Data aplikací\IObit" => File/Folder not found.
C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Spybot - Search & Destroy => moved successfully.
"C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Spybot - Search & Destroy" => File/Folder not found.
C:\WINDOWS\system32\config\software.iobit => moved successfully.
C:\WINDOWS\system32\config\default.iobit => moved successfully.
C:\WINDOWS\system32\config\SECURITY.iobit => moved successfully.
C:\WINDOWS\system32\config\SAM.iobit => moved successfully.
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => moved successfully.
C:\WINDOWS\Tasks\ASC8_PerformanceMonitor.job not found.
C:\WINDOWS\Tasks\Game_Booster_AutoUpdate.job => moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1085031214-839522115-1003Core.job => moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-299502267-1085031214-839522115-1003UA.job => moved successfully.
C:\WINDOWS\Tasks\HitsBlender Update Service.job => moved successfully.
C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => moved successfully.
C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job => moved successfully.
C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP => ":373E1720" ADS removed successfully..
C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP => ":5F64C164" ADS removed successfully..
C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP => ":862BDB1A" ADS removed successfully..
C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP => ":B804E799" ADS removed successfully..
C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP => ":C8B8CEBD" ADS removed successfully..
C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP => ":CE225E1E" ADS removed successfully..
C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP => ":F10A4358" ADS removed successfully..
"C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP" => ":373E1720" ADS not found.
"C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP" => ":5F64C164" ADS not found.
"C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP" => ":862BDB1A" ADS not found.
"C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP" => ":B804E799" ADS not found.
"C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP" => ":C8B8CEBD" ADS not found.
"C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP" => ":CE225E1E" ADS not found.
"C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP" => ":F10A4358" ADS not found.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0 => key removed successfully.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM => key removed successfully.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0 => key removed successfully.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeFlashPlayer => key removed successfully.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent => key removed successfully.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\emsisoft anti-malware => key removed successfully.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RSS => key removed successfully.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype => key removed successfully.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe => key removed successfully.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate => key removed successfully.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Service 16 => key removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List\\C:\DOCUME~1\HENRIC~2.DOM\LOCALS~1\Temp\Rar$EX04.938\Mohager to ALLAH Translator v6.4\crack\AceTrans.exe => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\5432:TCP => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\5985:TCP => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\80:TCP => value removed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully.
Hosts restored successfully.
EmptyTemp: => 352.4 MB temporary data Removed.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-07-06 01:42:46)<=

"C:\WINDOWS\wiadebug.log" => Could not move
"C:\WINDOWS\wiaservc.log" => Could not move
"C:\WINDOWS\Sti_Trace.log" => Could not move
"C:\WINDOWS\SchedLgU.Txt" => Could not move

==== End of Fixlog 01:42:47 ====

Jak se chova PC? Jsou nejake problemy?

od **10.10.10**

Spočiatku neboli žiadne problémy, no po ďalšom zapnutí PC opäť nenačítava disk F. Kde by mohla byť chyba ?

Jak vite ze je ten disk F:\ hardwareove v poradku? je to pevny nebo extreni disk?

VIRY.CZ

nenačitáva jeden z diskov (F), spomalený PC

nenačitáva jeden z diskov (F), spomalený PC

Re: nenačitáva jeden z diskov (F), spomalený PC

Re: nenačitáva jeden z diskov (F), spomalený PC

Re: nenačitáva jeden z diskov (F), spomalený PC

Re: nenačitáva jeden z diskov (F), spomalený PC

Re: nenačitáva jeden z diskov (F), spomalený PC

Re: nenačitáva jeden z diskov (F), spomalený PC

Re: nenačitáva jeden z diskov (F), spomalený PC

Re: nenačitáva jeden z diskov (F), spomalený PC

Re: nenačitáva jeden z diskov (F), spomalený PC

Re: nenačitáva jeden z diskov (F), spomalený PC

Re: nenačitáva jeden z diskov (F), spomalený PC

Re: nenačitáva jeden z diskov (F), spomalený PC

Re: nenačitáva jeden z diskov (F), spomalený PC

Re: nenačitáva jeden z diskov (F), spomalený PC