VIRY.CZ

Dobrý den, potřál bych pomoc můj disk neustále zatížen na 99% nejvíce těmito procesy: Anti Malware Executable, Hostitel služby: Místní systém (1... , Log: Additional scan result of Farbar Recovery Scan Tool (x64) Version:17-12-2015
Ran by Prokop (2015-12-18 14:37:45)
Running from C:\Users\Prokop\Desktop
Windows 8.1 Pro (X64) (2014-11-22 12:49:21)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3629202705-644254634-1653428242-500 - Administrator - Disabled)
Guest (S-1-5-21-3629202705-644254634-1653428242-501 - Limited - Disabled)
kluci (S-1-5-21-3629202705-644254634-1653428242-1001 - Administrator - Enabled) => C:\Users\kluci
Prokop (S-1-5-21-3629202705-644254634-1653428242-1002 - Administrator - Enabled) => C:\Users\Prokop
Vojtík (S-1-5-21-3629202705-644254634-1653428242-1003 - Limited - Enabled) => C:\Users\Vojtík

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3629202705-644254634-1653428242-1002\...\uTorrent) (Version: 3.4.6.41506 - BitTorrent Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9120 - Adobe Systems Inc.)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.3.0.151 - Adobe Systems Incorporated)
Adobe Flash Player 20 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 20.0.0.228 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0.1 - Adobe Systems Incorporated)
Adobe Photoshop CS5 (HKLM-x32\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.8.158 - Adobe Systems, Inc.)
Aktualizace NVIDIA 2.7.4.10 (Version: 2.7.4.10 - NVIDIA Corporation) Hidden
Andy OS (HKLM-x32\...\Andy OS) (Version: 0.43 - Andy OS, Inc)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Audiosurf (HKLM-x32\...\{D801B39E-CE01-409F-8E7C-B7976EA3C9DC}_is1) (Version: 33 - All of Nothing)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.9.17.5013 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{156392EB-92FD-43C7-BD01-7F4CED006A84}) (Version: 0.9.17.5013 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Call of Duty: Advanced Warfare - Multiplayer (HKLM-x32\...\Steam App 209660) (Version: - Sledgehammer Games)
Camtasia Studio 8 (HKLM-x32\...\{5303CFB5-D635-44F0-A94B-9611E81F07C4}) (Version: 8.3.0.1471 - TechSmith Corporation)
CommView for WiFi (HKLM-x32\...\{CDED9EF0-D072-11DF-2EA6-0104A00B0BB3}) (Version: 7.0 - TamoSoft)
Counter-Strike Global Offensive WaRzOnE (HKU\S-1-5-21-3629202705-644254634-1653428242-1002\...\CSGO) (Version: - CS WaRzOnE)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DeleteAd (HKLM-x32\...\{37476589-E48E-439E-A706-56189E2ED4C4}_is1) (Version: - DeleteAd) <==== ATTENTION
DNS Unlocker version 1.4 (HKLM-x32\...\{E1527582-8509-4011-B922-29E3FB548882}_is1) (Version: 1.4 - www.dnsunlocker.com) <==== ATTENTION
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
FlatOut (HKLM-x32\...\{84BAD30E-07CD-496A-AC88-EE9C8DFE2327}_is1) (Version: 1.0 - US - ACTION, s.r.o.)
FlatOut (HKLM-x32\...\Steam App 6220) (Version: - Bugbear Entertainment)
FlatOut 2 (HKLM-x32\...\Steam App 2990) (Version: - Bugbear Entertainment)
Flatout 3 (HKLM-x32\...\Steam App 201510) (Version: - Team 6 Studios)
FlatOut: Ultimate Carnage (HKLM-x32\...\Steam App 12360) (Version: - Bugbear Entertainment)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Freemake Video Converter verze 4.1.5 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.5 - Ellora Assets Corporation)
Gnomoria (HKLM-x32\...\Steam App 224500) (Version: - Robotronic Games)
Google Chrome (HKLM-x32\...\{6A21C1E8-DAC1-3C18-BCDC-2DBB4B352AD8}) (Version: 47.0.2526.106 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
gpedt.msc 1.0 (HKLM-x32\...\{10B9C608-BF7C-4CCF-A658-C01D969DCA21}_is1) (Version: - Richard)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version: - Reto-Moto)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4226 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Java 7 Update 55 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417055FF}) (Version: 7.0.550 - Oracle)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Killing Floor (HKLM-x32\...\Steam App 1250) (Version: - Tripwire Interactive)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.377 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.377 - LogMeIn, Inc.) Hidden
McPixel (HKLM-x32\...\Steam App 220860) (Version: - Sos)
Microsoft OneDrive (HKU\S-1-5-21-3629202705-644254634-1653428242-1002\...\OneDriveSetup.exe) (Version: 17.3.6281.1202 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MPC-HC 1.7.7 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.7 - MPC-HC Team)
NFS: Most Wanted CZ (HKLM-x32\...\NFS: Most Wanted) (Version: CZ - Sub - Zero)
NVIDIA GeForce Experience 2.7.4.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.7.4.10 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 359.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 359.06 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Opera Stable 34.0.2036.25 (HKLM-x32\...\Opera 34.0.2036.25) (Version: 34.0.2036.25 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 9.5.20.5318 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 359.06 (Version: 359.06 - NVIDIA Corporation) Hidden
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version: - Daybreak Games)
PlanetSide 2 (HKU\S-1-5-21-3629202705-644254634-1653428242-1002\...\DG0-PlanetSide 2) (Version: - Sony Online Entertainment)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.20 - Qualcomm Atheros Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.370.70 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7514 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 4.1.0240 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.7.4.10 - NVIDIA Corporation) Hidden
SHOUTcast Source DSP 1.9.0 (remove only) (HKLM-x32\...\SHOUTcastDSP) (Version: - )
Skype™ 7.15 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.15.103 - Skype Technologies S.A.)
SlimDrivers (HKLM-x32\...\{746AB259-6474-4111-8966-1C62F9A6E063}) (Version: 2.3.1 - SlimWare Utilities, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.1.45.0 - Synaptics Incorporated)
System Requirements Lab (HKLM-x32\...\{0F659036-14C7-4622-9505-35A0DC93526A}) (Version: 6.1.3.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKU\S-1-5-21-3629202705-644254634-1653428242-1002\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.41459 - TeamViewer)
UmmyVideoDownloader (HKLM-x32\...\{E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1) (Version: 1.4.0.1 - )
Unity Web Player (HKU\S-1-5-21-3629202705-644254634-1653428242-1002\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
UNiuDealse (HKLM-x32\...\{11F6D5AB-263F-388E-74DE-E3DECD390E3F}) (Version: - ) <==== ATTENTION
Vegas Pro 13.0 (64-bit) (HKLM\...\{CDA02BF0-BFBC-11E3-AFA0-F04DA23A5C58}) (Version: 13.0.290 - Sony)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Warframe (HKLM-x32\...\Steam App 230410) (Version: - Digital Extremes)
webiums modpack 0.9.12 v9.12.06 (HKLM-x32\...\{B64D8CE9-11B2-469D-A347-9A13C2BCA423}_is1) (Version: 9.12.06 - myWOTmods.com)
webiums modpack CT 0.9.7 Common Test v0.4 (HKLM-x32\...\{B64D8CE9-11B2-469D-A347-9A13C2BCA423-CT}_is1) (Version: 0.4 - myWOTmods.com)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.11 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
Wireshark 1.12.8 (64-bit) (HKLM-x32\...\Wireshark) (Version: 1.12.8 - The Wireshark developer community, hxxp://www.wireshark.org)
World of Tanks - Common Test (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812CT}_is1) (Version: - Wargaming.net)
World of Tanks - Common Test (HKU\S-1-5-21-3629202705-644254634-1653428242-1002\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812ct}_is1) (Version: - Wargaming.net)
World of Warplanes (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C813EU}_is1) (Version: - Wargaming.net)
WorldPainter 1.10.4 (HKLM-x32\...\4144-4862-0472-7103) (Version: 1.10.4 - pepsoft.org)
WorldPainter 1.11.1 (HKLM\...\4144-4862-0472-7103) (Version: 1.11.1 - pepsoft.org)
youtubeadblocker (HKLM-x32\...\{4820778D-AB0D-6D18-C316-52A6A0E1D507}) (Version: - ) <==== ATTENTION

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3629202705-644254634-1653428242-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-3629202705-644254634-1653428242-1002_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)

==================== Restore Points =========================

28-11-2015 18:13:18 Naplánovaný kontrolní bod
09-12-2015 18:50:15 Windows Update
17-12-2015 22:26:11 SlimDrivers Installing Drivers
17-12-2015 22:52:27 SlimDrivers Installing Drivers
17-12-2015 22:56:28 Instalováno Realtek Card Reader
17-12-2015 22:58:47 SlimDrivers Installing Drivers
17-12-2015 23:15:40 SlimDrivers Installing Drivers
17-12-2015 23:20:07 Instalováno Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast EthsŃŰ
17-12-2015 23:22:14 SlimDrivers Installing Drivers
17-12-2015 23:24:53 Instalováno Realtek High Definition Audio Driver
17-12-2015 23:35:00 SlimDrivers Installing Drivers
17-12-2015 23:38:42 SlimDrivers Installing Drivers
17-12-2015 23:41:25 SlimDrivers Installing Drivers
17-12-2015 23:44:28 SlimDrivers Installing Drivers
17-12-2015 23:48:00 SlimDrivers Installing Drivers
17-12-2015 23:52:36 Instalováno Qualcomm Atheros WLAN and Bluetooth Client Installat�㪋Տ蠀€

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2015-05-16 20:08 - 00001788 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 hl2rcv.adobe.com

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1F327720-8D01-438D-9C8A-BE30E9069794} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-28] (Google Inc.)
Task: {3F7CF1BD-4694-44E7-A699-431D31A06674} - System32\Tasks\Start PC Reviver for kluci_PC@Prokop(logon) => C:\Program Files\ReviverSoft\PC Reviver\PC Reviver.exe
Task: {3FA44F55-864A-4BDF-86C3-E5367414D48D} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2015-08-19] (SlimWare Utilities, Inc.)
Task: {43949971-A7CE-4101-8C3F-BF7949985210} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2000-01-01] (Synaptics Incorporated)
Task: {58AA15A7-0FEB-4EDC-BFA5-F6C1B9E7084D} - System32\Tasks\Superclean => c:\programdata\{626f85e8-0723-0820-626f-f85e807217a0}\hqghumeaylnlf.exe [2014-08-25] (Super PC Tools Ltd) <==== ATTENTION
Task: {6A0851A0-3534-477E-993F-1207AF1B68B4} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_19_0_0_245_pepper.exe
Task: {72D8F65C-A73F-47BF-BC7F-DF3103190460} - System32\Tasks\CommView for WiFi Update => C:\Users\Prokop\Downloads\Updater.exe [2014-04-15] (TamoSoft)
Task: {7D2371FC-2C3B-4C70-9FB7-CFE9E70D8898} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-28] (Google Inc.)
Task: {820BFFDE-87D7-41CC-88D3-6FEA4990712A} - System32\Tasks\FUB => C:\Program Files\Acer\FUB\FUB.bat [2012-05-31] ()
Task: {96B2CFBA-B0A4-4A6C-B844-23E0EF059866} - System32\Tasks\DNSHUSHPUCKENA => C:\Program Files (x86)\DNS Unlocker\dnshushpuckena.exe [2015-10-11] ()
Task: {9A88D9F4-9297-467E-B07C-72D37F5911F6} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-12-09] (Microsoft Corporation)
Task: {D3D1325B-8BCA-4640-87A3-98CE2F9AE467} - System32\Tasks\ACC => C:\Program Files\Acer\FUB\FUB_Send.bat [2015-01-06] ()
Task: {DF42E0FD-A5F8-4F3D-9AF7-2182992C6D6E} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3629202705-644254634-1653428242-1002 => C:\Users\Prokop\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-09] (Microsoft Corporation)
Task: {F18D815F-2131-4620-9ED2-B93F91860033} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-09] (Adobe Systems Incorporated)
Task: {FF6BEDBD-B133-4F52-935F-5861CC2A067A} - System32\Tasks\Opera scheduled Autoupdate 1429900898 => C:\Program Files (x86)\Opera\launcher.exe [2015-12-04] (Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_19_0_0_245_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
Task: C:\Windows\Tasks\Start PC Reviver for kluci_PC@Prokop(logon).job => C:\Program Files\ReviverSoft\PC Reviver\PC Reviver.exe
Task: C:\Windows\Tasks\Superclean.job => c:\programdata\{626f85e8-0723-0820-626f-f85e807217a0}\hqghumeaylnlf.exe <==== ATTENTION

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-12-17 22:41 - 2015-11-24 19:40 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-03-20 17:12 - 2015-03-20 17:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-03-20 17:12 - 2015-03-20 17:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-09-11 19:02 - 2015-09-11 19:02 - 00803488 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2015-10-15 16:40 - 2015-10-11 08:47 - 00538624 _____ () C:\Program Files (x86)\DNS Unlocker\dnshushpuckena.exe
2015-01-08 14:29 - 2015-01-08 14:29 - 00100072 _____ () C:\Program Files\Acer\FUB\LiveUpdateChecker.exe
2015-01-08 14:29 - 2015-01-08 14:29 - 00015080 _____ () C:\Program Files\Acer\FUB\LogDebug.dll
2015-01-08 14:29 - 2015-01-08 14:29 - 00116968 _____ () C:\Program Files\Acer\FUB\LiveUpdate.dll
2015-01-08 14:29 - 2015-01-08 14:29 - 00076008 _____ () C:\Program Files\Acer\FUB\ACCUtilities.dll
2015-01-08 14:29 - 2015-01-08 14:29 - 00018152 _____ () C:\Program Files\Acer\FUB\ACCPlugin.dll
2015-01-08 14:29 - 2015-01-08 14:29 - 00236776 _____ () C:\Program Files\Acer\FUB\ManagedNativeUtilities.dll
2015-12-17 23:40 - 2000-01-01 01:00 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-12-09 14:42 - 2015-12-09 14:42 - 61547128 _____ () C:\Program Files (x86)\Opera\34.0.2036.25\opera.dll
2015-12-09 14:42 - 2015-12-09 14:41 - 01983096 _____ () C:\Program Files (x86)\Opera\34.0.2036.25\libglesv2.dll
2015-12-09 14:42 - 2015-12-09 14:41 - 00081528 _____ () C:\Program Files (x86)\Opera\34.0.2036.25\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:{4B9A1497-0817-47C4-9612-D6A1C53ACF57}
AlternateDataStreams: C:\Users\Prokop:Heroes & Generals

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3629202705-644254634-1653428242-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Prokop\Pictures\shoj.jpg
DNS Servers: 199.203.131.152 - 82.163.143.182
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "RtHDVBg_Dolby"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "AdobeCS5ServiceManager"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "BlueStacks Agent"
HKLM\...\StartupApproved\Run32: => "Andy"
HKU\S-1-5-21-3629202705-644254634-1653428242-1002\...\StartupApproved\Run: => "uTorrent"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [TCP Query User{14AB65F4-19E8-4169-BD90-ED8F9625EF48}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [UDP Query User{8C61E1E4-D78E-42CD-A886-DD1AC0BEAE98}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [TCP Query User{20B296FE-032B-4FFA-8E21-5C8ECA873FB1}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{AADC9FE9-F0E6-4B15-9AF4-B677D5B60B66}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [TCP Query User{A3B25F6D-2F41-4085-8053-4771B4362C3D}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{39DD9F94-8D4E-49D7-A096-8F58B3425895}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [{E84B722C-298D-438F-92D7-CF5A99C1E721}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{FF4349AC-1B22-4970-8F78-E016415A059A}] => (Allow) LPort=2869
FirewallRules: [{5B8D8A7F-1D78-46C6-89E0-78812A583423}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{83B0F3D3-2E29-4FDA-8D6F-CD9D56129FDF}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{5E8B4A26-75DC-4421-9DAC-0394F94C32DB}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{BF1007F2-C2D3-4D4D-981F-6C457ECF2B00}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{0B95F499-4C76-4BDF-B151-4A2F6E833FED}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{32985271-6A51-4A2A-9550-DF9E34BAB68A}C:\games\world_of_warplanes\wowplauncher.exe] => (Allow) C:\games\world_of_warplanes\wowplauncher.exe
FirewallRules: [UDP Query User{6E7A79A3-4A87-4194-98B2-98E1E0720ED6}C:\games\world_of_warplanes\wowplauncher.exe] => (Allow) C:\games\world_of_warplanes\wowplauncher.exe
FirewallRules: [{E382DE5F-23A8-41B5-B0EC-723CCCF18B73}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{2999D049-546C-4899-8FAD-148A72B5069F}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [TCP Query User{7EB2DDC0-85DF-4E27-8935-B7D2137CF23F}C:\program files (x86)\audiosurf\engine\questviewer.exe] => (Allow) C:\program files (x86)\audiosurf\engine\questviewer.exe
FirewallRules: [UDP Query User{F54F1527-83AD-42FC-8E9C-CFA758080939}C:\program files (x86)\audiosurf\engine\questviewer.exe] => (Allow) C:\program files (x86)\audiosurf\engine\questviewer.exe
FirewallRules: [TCP Query User{A975D68E-F9D2-4502-9C99-86F792C04CDE}C:\program files\flatout\flatout.exe] => (Block) C:\program files\flatout\flatout.exe
FirewallRules: [UDP Query User{7D18D91F-0EE8-47CE-8869-60BAB19EE2B1}C:\program files\flatout\flatout.exe] => (Block) C:\program files\flatout\flatout.exe
FirewallRules: [{FBFC75AF-F468-4F25-B655-901D2836538B}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{1C8096F4-8B2F-42B8-B236-42E53BA2DEDF}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{E5E52FD8-F24E-4E70-8432-47EDF344DF49}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{1B5D37F8-0BC6-4A6A-BCC9-949D1433085A}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{1CA90690-807C-4CA1-BDEC-3071D3ECF970}] => (Allow) LPort=8317
FirewallRules: [TCP Query User{FE1F6ABE-F248-4F65-BEEA-FC21E3896DE3}C:\users\prokop\appdata\roaming\utorrent\updates\3.4.2_38803.exe] => (Allow) C:\users\prokop\appdata\roaming\utorrent\updates\3.4.2_38803.exe
FirewallRules: [UDP Query User{367CD3DE-3CBF-457D-96B1-EA0D2FD6D19E}C:\users\prokop\appdata\roaming\utorrent\updates\3.4.2_38803.exe] => (Allow) C:\users\prokop\appdata\roaming\utorrent\updates\3.4.2_38803.exe
FirewallRules: [{D573F3FB-787E-4424-BEEB-A7B6C4362B99}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{818336A9-FCCB-4246-9112-FD4F8E8AAD56}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C9A3E797-E169-4E27-8ACA-9E95FF9E1B16}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{FE07621E-992F-4634-BC5A-54386AF65BE0}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F11D4B9B-EF7A-4414-B2D6-BAB211933A6C}] => (Allow) C:\Users\kluci\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{5B33D667-94A1-4FF2-8782-9DF663165FD2}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [TCP Query User{E935C79A-5FE4-480D-972D-A07614860962}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe
FirewallRules: [UDP Query User{035AFFE1-7889-4E4A-8988-16A81CFCD9F2}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe
FirewallRules: [TCP Query User{31556A74-6B22-47AC-B35E-486FABD2AEE1}C:\users\prokop\appdata\roaming\utorrent\updates\3.4.2_39424.exe] => (Block) C:\users\prokop\appdata\roaming\utorrent\updates\3.4.2_39424.exe
FirewallRules: [UDP Query User{377E079D-73FB-45C6-A408-6A22EA0262C7}C:\users\prokop\appdata\roaming\utorrent\updates\3.4.2_39424.exe] => (Block) C:\users\prokop\appdata\roaming\utorrent\updates\3.4.2_39424.exe
FirewallRules: [{0FFC2DEA-36AC-49F0-86B7-AA204EF980F7}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{BA3E862C-AD24-47CC-A63C-E4AC7D097392}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{411A1146-C10B-4C63-8686-206A31967CC7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{AB219FEF-48C0-4926-B445-F3F332705451}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E5F4047E-327A-4629-B401-D5E5EBA2BD38}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{8FE6144D-2826-4E51-A0F0-2F743A51C4DA}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{9902DBCF-085D-4AAD-A17D-F9A4E7981F7B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\KillingFloor\System\KillingFloor.exe
FirewallRules: [{6FB3B58F-7970-46B8-B343-1C949AAD65D9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\KillingFloor\System\KillingFloor.exe
FirewallRules: [TCP Query User{A43563CD-119E-45FE-A536-7B6EEB58FE07}C:\games\world_of_tanks_ct\wotlauncher.exe] => (Allow) C:\games\world_of_tanks_ct\wotlauncher.exe
FirewallRules: [UDP Query User{63A4EAE3-A3B5-45CA-9F0F-4D953276A6C3}C:\games\world_of_tanks_ct\wotlauncher.exe] => (Allow) C:\games\world_of_tanks_ct\wotlauncher.exe
FirewallRules: [TCP Query User{F71B1928-9969-4DF7-A083-41F86C40376C}C:\games\world_of_tanks_ct\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_ct\worldoftanks.exe
FirewallRules: [UDP Query User{CC7115F2-507C-4F97-9E45-6F0C7DD55E7E}C:\games\world_of_tanks_ct\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_ct\worldoftanks.exe
FirewallRules: [{48363D6A-FFB5-44AD-8501-23636F315E7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{975A3848-9C00-40A7-A660-2EA7BBB295F8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{A80C271E-4F94-4117-AE50-AFD8B6DF410A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{2FCC0A63-B6E9-478D-AA37-FC55A0DFCCE9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{755C64D7-CFA9-4609-B141-1E46170B2AD4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gnomoria\Gnomoria.exe
FirewallRules: [{A158FC24-2BDB-43E9-85F0-DF7B664EFF90}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gnomoria\Gnomoria.exe
FirewallRules: [{5A9D2491-6971-4067-9DDC-3D7CE67FF8FC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\mcpixel\McLauncher.exe
FirewallRules: [{F72F28CC-491F-4D41-921A-8120FCC2E3B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\mcpixel\McLauncher.exe
FirewallRules: [{25644E79-C876-4703-8C14-6AD80C36F6F8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [{EB90ADF4-9BCE-471C-8E21-16968D94C9DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [{C1FD2A56-DCD7-4FCA-8F8C-726B52C3DF62}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{EF7AC86A-DFDC-468C-8B11-7993B5F2AE55}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{312C2D26-FC35-45FF-8976-344663E409E3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{4267ED2E-6D29-4DFB-9ADF-A60966CE222F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{4F8E8538-EA80-4B19-829A-A5606A754C4F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FlatOut2\FlatOut2.exe
FirewallRules: [{1C1ACCE4-618B-4049-B0D0-3324825C8E5E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FlatOut2\FlatOut2.exe
FirewallRules: [{19864754-E81F-46CE-966A-F093417CE5D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Flatout 3\Flatout.exe
FirewallRules: [{C92390A1-22E6-45D1-8C66-8EE5CADAE0F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Flatout 3\Flatout.exe
FirewallRules: [{74C83F44-DD6E-4F0B-AE8B-28F99BD4BBC3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FlatOut\flatout.exe
FirewallRules: [{591FBDF4-7A05-4FD8-BE86-60F555D30C80}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FlatOut\flatout.exe
FirewallRules: [{95EBF111-1FD9-4747-A259-6A1F76849223}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FlatOut Ultimate Carnage\launcher.exe
FirewallRules: [{BABDAEF6-660E-44D6-B038-E4DED956A9AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FlatOut Ultimate Carnage\launcher.exe
FirewallRules: [TCP Query User{FC06613F-F17C-43D0-B0BF-9CD6E3B52730}C:\users\prokop\appdata\roaming\utorrent\updates\3.4.3_40324.exe] => (Allow) C:\users\prokop\appdata\roaming\utorrent\updates\3.4.3_40324.exe
FirewallRules: [UDP Query User{05D3A209-24BE-4594-BED8-CF52A00975AA}C:\users\prokop\appdata\roaming\utorrent\updates\3.4.3_40324.exe] => (Allow) C:\users\prokop\appdata\roaming\utorrent\updates\3.4.3_40324.exe
FirewallRules: [{24B3FE00-9A84-456C-984A-8491A2B9DC55}] => (Allow) C:\Users\Prokop\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{7FF80EE1-FF5E-44F7-831A-178C4C111D88}] => (Allow) C:\Users\Prokop\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{1EE2AA98-CA6B-49FA-A3E2-6146C428D7C2}C:\program files\strogino cs portal\counter-strike global offensive\csgo.exe] => (Allow) C:\program files\strogino cs portal\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{C632915E-BEAA-4059-AD83-8854F87EB144}C:\program files\strogino cs portal\counter-strike global offensive\csgo.exe] => (Allow) C:\program files\strogino cs portal\counter-strike global offensive\csgo.exe
FirewallRules: [TCP Query User{6CEBBA2F-8322-457B-B8F2-E179F2CA6942}C:\games\counter-strike global offensive\csgo.exe] => (Block) C:\games\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{CC34F42A-2EF7-4DD4-920C-3BD114AA5033}C:\games\counter-strike global offensive\csgo.exe] => (Block) C:\games\counter-strike global offensive\csgo.exe
FirewallRules: [TCP Query User{D6C12B59-3C62-484C-8B6E-7D9EAB9FA6DA}C:\users\prokop\desktop\fifa 12\game\fifa.exe] => (Block) C:\users\prokop\desktop\fifa 12\game\fifa.exe
FirewallRules: [UDP Query User{C48A52FA-DAEC-42DE-95DB-AA4DBF5B07B6}C:\users\prokop\desktop\fifa 12\game\fifa.exe] => (Block) C:\users\prokop\desktop\fifa 12\game\fifa.exe
FirewallRules: [TCP Query User{C4CC3681-3340-461C-BBD2-140F0E66DBAE}C:\programdata\electronic arts\need for speed world\data\nfsw.exe] => (Block) C:\programdata\electronic arts\need for speed world\data\nfsw.exe
FirewallRules: [UDP Query User{8A7E6E34-0160-4B21-A3DD-09B5AC64AC7F}C:\programdata\electronic arts\need for speed world\data\nfsw.exe] => (Block) C:\programdata\electronic arts\need for speed world\data\nfsw.exe
FirewallRules: [TCP Query User{667C8CA5-295A-4DFF-B73A-6868CF171827}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{05F23140-B749-41D7-8191-4E8A037BB118}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{9A0C33C4-B1B0-4EEE-BAB0-334D8F382C95}C:\users\prokop\desktop\counter-strike global offensive\csgo.exe] => (Allow) C:\users\prokop\desktop\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{5BA0E04F-A99B-4CD9-A1FB-EC2CF8250C1A}C:\users\prokop\desktop\counter-strike global offensive\csgo.exe] => (Allow) C:\users\prokop\desktop\counter-strike global offensive\csgo.exe
FirewallRules: [TCP Query User{50DFF98A-7F95-4678-B342-AA4D80B4DE80}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{5EE6F307-2C88-4A9B-8989-B33ED95212E2}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [{20287900-6D39-404D-A5D6-85C45F48F41F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{05C9AC46-53F1-4FAC-9E19-98509EA24362}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [TCP Query User{99DFF8BA-0D12-4B00-91BB-89BCB6F3330B}C:\program files (x86)\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{A0460987-4C74-4E35-B615-F9E556EAF643}C:\program files (x86)\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe
FirewallRules: [{3F5480AD-D914-46FB-BE5B-84499E5A3867}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{2B269555-A75D-4D36-BBA0-16DB5D334226}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{4531D8DD-07F9-460B-AC31-17D969E0F252}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{575384D0-C60A-4536-9AB3-1A1E7EA5B2F6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{BAC22782-7B90-464B-ADAF-457A8F2F3524}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{E9C3DB8F-E1EF-4602-87E2-D5CC62575C9D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{4AA50C68-1103-40FD-A188-325C42B06B8E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A71BFAE4-6E70-488D-87F5-928124F68EE6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe

==================== Faulty Device Manager Devices =============

Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/18/2015 01:59:24 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program rundll32.exe verze 6.3.9600.17415 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: b04

Čas spuštění: 01d139936e4fd661

Čas ukončení: 326

Cesta k aplikaci: C:\Windows\system32\rundll32.exe

ID hlášení: 16bf71e2-a587-11e5-82c4-54bef7724d09

Úplný název chybujícího balíčku:

ID aplikace související s chybujícím balíčkem:

Error: (12/18/2015 12:02:34 AM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Službu nelze spustit. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
v BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
v System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (12/17/2015 11:52:39 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (12/17/2015 11:48:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: IAStorDataMgrSvc.exe, verze: 12.9.0.1001, časové razítko: 0x526ed2ab
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x010096b1
ID chybujícího procesu: 0x8ac
Čas spuštění chybující aplikace: 0xIAStorDataMgrSvc.exe0
Cesta k chybující aplikaci: IAStorDataMgrSvc.exe1
Cesta k chybujícímu modulu: IAStorDataMgrSvc.exe2
ID zprávy: IAStorDataMgrSvc.exe3
Úplný název chybujícího balíčku: IAStorDataMgrSvc.exe4
ID aplikace související s chybujícím balíčkem: IAStorDataMgrSvc.exe5

Error: (12/17/2015 11:48:05 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: IAStorDataMgrSvc.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.NullReferenceException
Zásobník:
na IAStorDataMgr.EventRelay.SetSystemState(PSI.PsiSystemDataModel)
na IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
na System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
na System.Threading.ThreadPoolWorkQueue.Dispatch()
na System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (12/17/2015 11:48:01 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (12/17/2015 11:47:04 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: rdyboost4

Error: (12/17/2015 11:44:29 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (12/17/2015 11:41:27 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (12/17/2015 11:38:43 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.


System errors:
=============
Error: (12/18/2015 12:02:34 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba BlueStacks Android Service byla ukončena s následující chybou:
%%1064

Error: (12/18/2015 12:02:10 AM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x0000003b (0x00000000c0000005, 0xfffff960001f207e, 0xffffd00021496fd0, 0x0000000000000000)C:\Windows\MEMORY.DMP121815-226000-01

Error: (12/18/2015 12:01:54 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (23:31:20, ‎17. ‎12. ‎2015) bylo neočekávané.

Error: (12/17/2015 11:32:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (12/17/2015 11:32:29 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Presentation Foundation Font Cache 3.0.0.0 bylo dosaženo časového limitu (30000 ms).

Error: (12/17/2015 11:21:50 PM) (Source: Tcpip) (EventID: 4199) (User: )
Description: Systém zjistil konflikt IP adresy 10.0.0.147 se systémem,
jehož síťová hardwarová adresa je 40-16-7E-04-25-B1. Síťové operace v systému mohou
být přerušeny.

Error: (12/17/2015 11:15:13 PM) (Source: Tcpip) (EventID: 4199) (User: )
Description: Systém zjistil konflikt IP adresy 10.0.0.144 se systémem,
jehož síťová hardwarová adresa je 08-62-66-03-03-DC. Síťové operace v systému mohou
být přerušeny.

Error: (12/17/2015 11:13:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (12/17/2015 11:13:53 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Presentation Foundation Font Cache 3.0.0.0 bylo dosaženo časového limitu (30000 ms).

Error: (12/17/2015 11:11:21 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby FontCache3.0.0.0 bylo dosaženo časového limitu (30000 ms).


CodeIntegrity:
===================================
Date: 2015-12-18 14:31:59.108
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-18 14:31:58.339
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-18 00:01:37.343
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\athwbx.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-12-16 15:56:02.912
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-16 15:56:02.105
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-16 15:56:01.037
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-16 15:55:05.336
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-16 15:55:04.119
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-16 15:55:02.417
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-12-16 15:55:00.512
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentage of memory in use: 55%
Total physical RAM: 3914.35 MB
Available physical RAM: 1733.13 MB
Total Virtual: 7882.35 MB
Available Virtual: 5271.32 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:293.37 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 4D24A92C)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Zdravím"
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

# AdwCleaner v5.025 - Logfile created 20/12/2015 at 18:37:11
# Updated 13/12/2015 by Xplode
# Database : 2015-12-13.2 [Server]
# Operating system : Windows 8.1 Pro (x64)
# Username : Prokop - FJAKIN
# Running from : C:\Users\Prokop\Desktop\adwcleaner_5.025.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : swdumon

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\DeltaFix
[-] Folder Deleted : C:\Program Files (x86)\DNS Unlocker
[-] Folder Deleted : C:\Program Files (x86)\tampainit
[-] Folder Deleted : C:\Program Files (x86)\50Coupuons
[-] Folder Deleted : C:\Program Files (x86)\5a0CCoupons
[-] Folder Deleted : C:\Program Files (x86)\CChieaupMMee
[-] Folder Deleted : C:\Program Files (x86)\DEALEXpreess
[-] Folder Deleted : C:\Program Files (x86)\ExsatraCouupOn
[-] Folder Deleted : C:\Program Files (x86)\EXSStraCouPPon
[-] Folder Deleted : C:\Program Files (x86)\Fun2Soave
[-] Folder Deleted : C:\Program Files (x86)\GreatSAve4UU
[-] Folder Deleted : C:\Program Files (x86)\GReatSiave4U
[-] Folder Deleted : C:\Program Files (x86)\IsavaEr
[-] Folder Deleted : C:\Program Files (x86)\IsaVerr
[-] Folder Deleted : C:\Program Files (x86)\MInaimumPrice
[-] Folder Deleted : C:\Program Files (x86)\NeToCouPoN
[-] Folder Deleted : C:\Program Files (x86)\RegularDeAls
[!] Folder Not Deleted : C:\Program Files (x86)\TampaInit
[-] Folder Deleted : C:\Program Files (x86)\unIsaleos
[-] Folder Deleted : C:\Program Files (x86)\UNiuDealse
[-] Folder Deleted : C:\Program Files (x86)\uunisales
[-] Folder Deleted : C:\ProgramData\DeleteAd
[-] Folder Deleted : C:\ProgramData\14769550497205741121
[-] Folder Deleted : C:\ProgramData\64f9dc5300000faa
[-] Folder Deleted : C:\ProgramData\{41dfbab2-15b2-d021-41df-fbab215beac8}
[-] Folder Deleted : C:\ProgramData\{626f85e8-0723-0820-626f-f85e807217a0}
[-] Folder Deleted : C:\ProgramData\{6357765c-073b-759e-6357-7765c073d970}
[-] Folder Deleted : C:\ProgramData\{cfecae2f-d02d-0f6a-cfec-cae2fd02b8bf}
[-] Folder Deleted : C:\ProgramData\{edd826bd-b09c-28cf-edd8-826bdb099af6}
[-] Folder Deleted : C:\ProgramData\{f483a238-6704-2074-f483-3a23867088e1}
[-] Folder Deleted : C:\ProgramData\akknapgkamhicncfdkhdanceghepckgf
[-] Folder Deleted : C:\ProgramData\eipkmemkjankjniioklenpminpnfgcoe
[-] Folder Deleted : C:\ProgramData\jnkghdkphhhomedlndeloklfpiohmpcc
[-] Folder Deleted : C:\ProgramData\njapjkimdigbficcaaadjmplpfgbgpok
[-] Folder Deleted : C:\ProgramData\ohgiahgckgonbpbljcnbanodgkifkoem
[-] Folder Deleted : C:\Users\kluci\AppData\Local\FileViewPro
[-] Folder Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Extensions\bphkilcpnjgeegfnmifeifcmkgjngknk
[!] Folder Not Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Extensions\bphkilcpnjgeegfnmifeifcmkgjngknk
[-] Folder Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffieaadkkhencgelmgbbmkkipeocbcbg
[-] Folder Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Extensions\gipnlpdeieaidmmeaichnddnmjmcakoe
[-] Folder Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipfpfhnlkoddglhimhdbboidjcfjlkji
[!] Folder Not Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffieaadkkhencgelmgbbmkkipeocbcbg
[!] Folder Not Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Extensions\gipnlpdeieaidmmeaichnddnmjmcakoe
[!] Folder Not Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipfpfhnlkoddglhimhdbboidjcfjlkji
[-] Folder Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd
[!] Folder Not Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd
[-] Folder Deleted : C:\Users\kluci\AppData\Roaming\OpenCandy
[-] Folder Deleted : C:\Users\kluci\AppData\Roaming\Solvusoft
[-] Folder Deleted : C:\Users\kluci\AppData\Roaming\RHEng
[-] Folder Deleted : C:\Users\Prokop\AppData\Local\StormFall
[-] Folder Deleted : C:\Users\Prokop\AppData\Local\slimware utilities inc
[-] Folder Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffieaadkkhencgelmgbbmkkipeocbcbg
[-] Folder Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\gipnlpdeieaidmmeaichnddnmjmcakoe
[-] Folder Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipfpfhnlkoddglhimhdbboidjcfjlkji
[!] Folder Not Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffieaadkkhencgelmgbbmkkipeocbcbg
[!] Folder Not Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\gipnlpdeieaidmmeaichnddnmjmcakoe
[!] Folder Not Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipfpfhnlkoddglhimhdbboidjcfjlkji
[-] Folder Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd
[!] Folder Not Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd
[-] Folder Deleted : C:\Users\Prokop\AppData\Roaming\EZDownloader
[-] Folder Deleted : C:\Users\Prokop\AppData\Roaming\OpenCandy

***** [ Files ] *****

[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bphkilcpnjgeegfnmifeifcmkgjngknk_0.localstorage
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bphkilcpnjgeegfnmifeifcmkgjngknk_0.localstorage-journal
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ogminpmldncgcmokldnmmapddoccmhfl_0.localstorage
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bphkilcpnjgeegfnmifeifcmkgjngknk_0.localstorage
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bphkilcpnjgeegfnmifeifcmkgjngknk_0.localstorage-journal
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ffieaadkkhencgelmgbbmkkipeocbcbg_0.localstorage
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ffieaadkkhencgelmgbbmkkipeocbcbg_0.localstorage-journal
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gipnlpdeieaidmmeaichnddnmjmcakoe_0.localstorage
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gipnlpdeieaidmmeaichnddnmjmcakoe_0.localstorage-journal
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gipnlpdeieaidmmeaichnddnmjmcakoe
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ipfpfhnlkoddglhimhdbboidjcfjlkji_0.localstorage
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ipfpfhnlkoddglhimhdbboidjcfjlkji_0.localstorage-journal
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ffieaadkkhencgelmgbbmkkipeocbcbg_0.localstorage
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ffieaadkkhencgelmgbbmkkipeocbcbg_0.localstorage-journal
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gipnlpdeieaidmmeaichnddnmjmcakoe_0.localstorage
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gipnlpdeieaidmmeaichnddnmjmcakoe_0.localstorage-journal
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gipnlpdeieaidmmeaichnddnmjmcakoe
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ipfpfhnlkoddglhimhdbboidjcfjlkji_0.localstorage
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ipfpfhnlkoddglhimhdbboidjcfjlkji_0.localstorage-journal
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage-journal
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage-journal
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_ad.turn.com_0.localstorage
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_ad.turn.com_0.localstorage-journal
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cdn.turn.com_0.localstorage
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cdn.turn.com_0.localstorage-journal
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cs.reimageplus.com_0.localstorage
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cs.reimageplus.com_0.localstorage-journal
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cs.reimageplus.com_0.localstorage
[-] File Deleted : C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cs.reimageplus.com_0.localstorage-journal
[-] File Deleted : C:\Users\kluci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\optimizerpro.lnk
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ogminpmldncgcmokldnmmapddoccmhfl_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ffieaadkkhencgelmgbbmkkipeocbcbg_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ffieaadkkhencgelmgbbmkkipeocbcbg_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gipnlpdeieaidmmeaichnddnmjmcakoe_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gipnlpdeieaidmmeaichnddnmjmcakoe_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gipnlpdeieaidmmeaichnddnmjmcakoe
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ipfpfhnlkoddglhimhdbboidjcfjlkji_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ipfpfhnlkoddglhimhdbboidjcfjlkji_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ffieaadkkhencgelmgbbmkkipeocbcbg_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ffieaadkkhencgelmgbbmkkipeocbcbg_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gipnlpdeieaidmmeaichnddnmjmcakoe_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gipnlpdeieaidmmeaichnddnmjmcakoe_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gipnlpdeieaidmmeaichnddnmjmcakoe
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ipfpfhnlkoddglhimhdbboidjcfjlkji_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ipfpfhnlkoddglhimhdbboidjcfjlkji_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cs.reimageplus.com_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cs.reimageplus.com_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_audiosurf.cs.softonic.com_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_audiosurf.cs.softonic.com_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cs.reimageplus.com_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cs.reimageplus.com_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_eliteunzip.dl.tb.ask.com_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_eliteunzip.dl.tb.ask.com_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_en.softonic.com_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_en.softonic.com_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_forums.winamp.com_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_forums.winamp.com_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_fraps.en.softonic.com_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_fraps.en.softonic.com_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_radiorage.dl.tb.ask.com_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_radiorage.dl.tb.ask.com_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_winampplugins.co.uk_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_winampplugins.co.uk_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage-journal
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.winamp.com_0.localstorage
[-] File Deleted : C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.winamp.com_0.localstorage-journal
[-] File Deleted : C:\Windows\SysNative\roboot64.exe
[-] File Deleted : C:\Windows\SysNative\drivers\swdumon.sys

***** [ DLLs ] *****


***** [ Shortcuts ] *****

[-] Shortcut Disinfected : C:\Users\Prokop\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk

***** [ Scheduled tasks ] *****

[-] Task Deleted : LaunchPreSignup
[-] Task Deleted : Superclean
[-] Task Deleted : DNSHUSHPUCKENA

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\P05338030_4ddc_4f59_aa82_2ff7dccc6bb7_.P05338030_4ddc_4f59_aa82_2ff7dccc6bb7_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P05338030_4ddc_4f59_aa82_2ff7dccc6bb7_.P05338030_4ddc_4f59_aa82_2ff7dccc6bb7_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\P209ae5ba_8890_41d9_bb1f_10a77d270aaa_.P209ae5ba_8890_41d9_bb1f_10a77d270aaa_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P209ae5ba_8890_41d9_bb1f_10a77d270aaa_.P209ae5ba_8890_41d9_bb1f_10a77d270aaa_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\P375741dd_7236_4688_9134_b853f451aeb3_.P375741dd_7236_4688_9134_b853f451aeb3_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P375741dd_7236_4688_9134_b853f451aeb3_.P375741dd_7236_4688_9134_b853f451aeb3_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\P4e9c8923_cec5_47ad_a903_80b3d09821dc_.P4e9c8923_cec5_47ad_a903_80b3d09821dc_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P4e9c8923_cec5_47ad_a903_80b3d09821dc_.P4e9c8923_cec5_47ad_a903_80b3d09821dc_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\P53566a7d_b6e9_4a8b_92a2_0cbf02842812_.P53566a7d_b6e9_4a8b_92a2_0cbf02842812_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P53566a7d_b6e9_4a8b_92a2_0cbf02842812_.P53566a7d_b6e9_4a8b_92a2_0cbf02842812_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\P7eda682f_1729_4674_bba3_e095af2c7ce3_.P7eda682f_1729_4674_bba3_e095af2c7ce3_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P7eda682f_1729_4674_bba3_e095af2c7ce3_.P7eda682f_1729_4674_bba3_e095af2c7ce3_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\P8ef9c7f4_be14_42b3_ac31_2488ce15dde2_.P8ef9c7f4_be14_42b3_ac31_2488ce15dde2_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P8ef9c7f4_be14_42b3_ac31_2488ce15dde2_.P8ef9c7f4_be14_42b3_ac31_2488ce15dde2_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\Pc1ea2c9c_a208_4419_9ee3_a5d762045297_.Pc1ea2c9c_a208_4419_9ee3_a5d762045297_
[-] Key Deleted : HKLM\SOFTWARE\Classes\Pc1ea2c9c_a208_4419_9ee3_a5d762045297_.Pc1ea2c9c_a208_4419_9ee3_a5d762045297_.9
[-] Key Deleted : HKLM\SOFTWARE\5da059a482fd494db3f252126fbc3d5b
[-] Key Deleted : HKLM\SOFTWARE\fd82b4c9-e09a-790e-1b08-019bd92b2b68
[-] Key Deleted : HKCU\Software\Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{05338030-4ddc-4f59-aa82-2ff7dccc6bb7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{209ae5ba-8890-41d9-bb1f-10a77d270aaa}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{375741dd-7236-4688-9134-b853f451aeb3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4e9c8923-cec5-47ad-a903-80b3d09821dc}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{53566a7d-b6e9-4a8b-92a2-0cbf02842812}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7eda682f-1729-4674-bba3-e095af2c7ce3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8ef9c7f4-be14-42b3-ac31-2488ce15dde2}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{c1ea2c9c-a208-4419-9ee3-a5d762045297}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B08006D8-1D22-458E-9370-F459542E5AF2}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B7298E57-3046-4F2A-B8C6-78CC8A60020C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CB747D69-2EE7-40C0-BE35-BA6ED3EEA8A3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DB559C6A-03B9-4961-9BC3-80D769710C2D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{002FF249-4A02-44F8-BD0F-7389AC5F3E70}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{02706E60-E3E6-48FC-B741-08569531CE7B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0347B640-EC8E-4F40-AFAE-E4B4285C61BE}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03FF7591-BAC2-4ECE-9B67-BB2AF2978B7D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0F19EF48-CB8C-416A-B84C-C33B02970632}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{138E44EF-8988-4DC7-8F48-FBC4FCEF83D1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1A771F38-7C84-4AF1-87BB-6EAB01D9E2AD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23BB5035-EDB0-46C9-8ECD-833F85B2631F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{311AACFA-3DB4-4EEC-B430-E9FFF3C3F4EB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{37F4ED91-B1B0-49C9-AE99-4249686755A1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{382F6195-1B46-40D5-B9FD-0493263E6132}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4A3639A7-C0B4-49C2-AF0C-D0403F67F2FC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5C4ECEE2-D00F-4844-92B9-F2699746572C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8069EEE8-90E1-42E5-82B5-BE7D9D04E78B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8F99377E-3B52-45E7-AC41-ACCAA945F8B1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{981C4037-A6DF-4B09-BEB9-2B6AFA9E8044}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B2BBEAD-1A03-4927-8EB7-AC8292E4EB2F}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\Interface\{B08006D8-1D22-458E-9370-F459542E5AF2}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\Interface\{B7298E57-3046-4F2A-B8C6-78CC8A60020C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BB50CC62-09E1-4DD9-912C-F1DA4D6D71D8}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\Interface\{CB747D69-2EE7-40C0-BE35-BA6ED3EEA8A3}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\Interface\{DB559C6A-03B9-4961-9BC3-80D769710C2D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{41F978F3-431A-4464-A789-5C0692D562FB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{57B0DCF0-8B40-4449-8AA4-E297D6E779D4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6137A08F-29B1-4E48-B6A1-70CC3ABF50F7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{89310413-97E0-4F09-AA75-390A7F4D4918}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{999A70CB-7657-4A48-A92A-BE29FF9D5443}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E0D6077D-7186-48B2-A6C6-2F7C533E8CFF}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EB559340-3A8F-4456-B24D-160098054EF0}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{05338030-4ddc-4f59-aa82-2ff7dccc6bb7}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{375741dd-7236-4688-9134-b853f451aeb3}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4e9c8923-cec5-47ad-a903-80b3d09821dc}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{53566a7d-b6e9-4a8b-92a2-0cbf02842812}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8ef9c7f4-be14-42b3-ac31-2488ce15dde2}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{c1ea2c9c-a208-4419-9ee3-a5d762045297}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{05338030-4ddc-4f59-aa82-2ff7dccc6bb7}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{375741dd-7236-4688-9134-b853f451aeb3}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4e9c8923-cec5-47ad-a903-80b3d09821dc}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{53566a7d-b6e9-4a8b-92a2-0cbf02842812}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8ef9c7f4-be14-42b3-ac31-2488ce15dde2}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{c1ea2c9c-a208-4419-9ee3-a5d762045297}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{05338030-4ddc-4f59-aa82-2ff7dccc6bb7}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{375741dd-7236-4688-9134-b853f451aeb3}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4e9c8923-cec5-47ad-a903-80b3d09821dc}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{53566a7d-b6e9-4a8b-92a2-0cbf02842812}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8ef9c7f4-be14-42b3-ac31-2488ce15dde2}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{c1ea2c9c-a208-4419-9ee3-a5d762045297}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{05338030-4ddc-4f59-aa82-2ff7dccc6bb7}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{209ae5ba-8890-41d9-bb1f-10a77d270aaa}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{375741dd-7236-4688-9134-b853f451aeb3}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{4e9c8923-cec5-47ad-a903-80b3d09821dc}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{53566a7d-b6e9-4a8b-92a2-0cbf02842812}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{7eda682f-1729-4674-bba3-e095af2c7ce3}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{8ef9c7f4-be14-42b3-ac31-2488ce15dde2}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{c1ea2c9c-a208-4419-9ee3-a5d762045297}]
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{05338030-4ddc-4f59-aa82-2ff7dccc6bb7}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{375741dd-7236-4688-9134-b853f451aeb3}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4e9c8923-cec5-47ad-a903-80b3d09821dc}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{53566a7d-b6e9-4a8b-92a2-0cbf02842812}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{8ef9c7f4-be14-42b3-ac31-2488ce15dde2}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{c1ea2c9c-a208-4419-9ee3-a5d762045297}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B08006D8-1D22-458E-9370-F459542E5AF2}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B7298E57-3046-4F2A-B8C6-78CC8A60020C}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{CB747D69-2EE7-40C0-BE35-BA6ED3EEA8A3}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DB559C6A-03B9-4961-9BC3-80D769710C2D}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{002FF249-4A02-44F8-BD0F-7389AC5F3E70}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{02706E60-E3E6-48FC-B741-08569531CE7B}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0347B640-EC8E-4F40-AFAE-E4B4285C61BE}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03FF7591-BAC2-4ECE-9B67-BB2AF2978B7D}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0F19EF48-CB8C-416A-B84C-C33B02970632}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{138E44EF-8988-4DC7-8F48-FBC4FCEF83D1}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1A771F38-7C84-4AF1-87BB-6EAB01D9E2AD}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{23BB5035-EDB0-46C9-8ECD-833F85B2631F}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{311AACFA-3DB4-4EEC-B430-E9FFF3C3F4EB}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{37F4ED91-B1B0-49C9-AE99-4249686755A1}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{382F6195-1B46-40D5-B9FD-0493263E6132}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4A3639A7-C0B4-49C2-AF0C-D0403F67F2FC}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5C4ECEE2-D00F-4844-92B9-F2699746572C}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8069EEE8-90E1-42E5-82B5-BE7D9D04E78B}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8F99377E-3B52-45E7-AC41-ACCAA945F8B1}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{981C4037-A6DF-4B09-BEB9-2B6AFA9E8044}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9B2BBEAD-1A03-4927-8EB7-AC8292E4EB2F}
[!] Key Not Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B08006D8-1D22-458E-9370-F459542E5AF2}
[!] Key Not Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B7298E57-3046-4F2A-B8C6-78CC8A60020C}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BB50CC62-09E1-4DD9-912C-F1DA4D6D71D8}
[!] Key Not Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{CB747D69-2EE7-40C0-BE35-BA6ED3EEA8A3}
[!] Key Not Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DB559C6A-03B9-4961-9BC3-80D769710C2D}
[-] Key Deleted : HKU\S-1-5-21-3629202705-644254634-1653428242-1001\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration\{05338030-4ddc-4f59-aa82-2ff7dccc6bb7}
[-] Key Deleted : HKU\S-1-5-21-3629202705-644254634-1653428242-1001\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration\{375741dd-7236-4688-9134-b853f451aeb3}
[-] Key Deleted : HKU\S-1-5-21-3629202705-644254634-1653428242-1001\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration\{4e9c8923-cec5-47ad-a903-80b3d09821dc}
[-] Key Deleted : HKU\S-1-5-21-3629202705-644254634-1653428242-1001\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration\{53566a7d-b6e9-4a8b-92a2-0cbf02842812}
[-] Key Deleted : HKU\S-1-5-21-3629202705-644254634-1653428242-1001\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration\{8ef9c7f4-be14-42b3-ac31-2488ce15dde2}
[-] Key Deleted : HKU\S-1-5-21-3629202705-644254634-1653428242-1001\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration\{c1ea2c9c-a208-4419-9ee3-a5d762045297}
[-] Key Deleted : HKCU\Software\Softonic
[-] Key Deleted : HKCU\Software\Vittalia
[-] Key Deleted : HKCU\Software\Super Optimizer
[-] Key Deleted : HKCU\Software\PRODUCTSETUP
[-] Key Deleted : HKCU\Software\SlimWare Utilities Inc
[-] Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
[-] Key Deleted : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Key Deleted : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
[-] Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
[-] Key Deleted : HKLM\SOFTWARE\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
[-] Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
[-] Key Deleted : HKLM\SOFTWARE\mystartsearchSoftware
[-] Key Deleted : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
[-] Key Deleted : HKLM\SOFTWARE\SlimWare Utilities Inc
[-] Key Deleted : HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Key Deleted : HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4}_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E1527582-8509-4011-B922-29E3FB548882}_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4CEE92A3-9F0C-51AB-ADC0-34EC24AD7B7E}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{11F6D5AB-263F-388E-74DE-E3DECD390E3F}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Key Deleted : HKU\S-1-5-21-3629202705-644254634-1653428242-1001\Software\Optimizer Pro
[-] Key Deleted : HKU\S-1-5-21-3629202705-644254634-1653428242-1001\Software\WEBAPP
[-] Key Deleted : HKU\S-1-5-21-3629202705-644254634-1653428242-1001\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
[-] Key Deleted : HKU\S-1-5-21-3629202705-644254634-1653428242-1001\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
[-] Key Deleted : HKU\S-1-5-21-3629202705-644254634-1653428242-1001\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKU\S-1-5-21-3629202705-644254634-1653428242-1001\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Key Deleted : HKU\S-1-5-21-3629202705-644254634-1653428242-1001\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Key Deleted : HKU\S-1-5-21-3629202705-644254634-1653428242-1001\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
[-] Data Restored : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{5B6F7AAD-1F15-45E7-8DC3-7E8B54D7C774} [NameServer]
[-] Data Restored : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{A6516E1F-6C8E-4136-BE5F-B7C8567EAA12} [NameServer]
[-] Data Restored : HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{5B6F7AAD-1F15-45E7-8DC3-7E8B54D7C774} [NameServer]
[-] Data Restored : HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{A6516E1F-6C8E-4136-BE5F-B7C8567EAA12} [NameServer]

***** [ Web browsers ] *****

[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : softonic.com
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : mafia-ii.en.softonic.com
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : mystartsearch.com
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : mystartsearch
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : websearch
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.mystartsearch.com/?type=hp&ts=14212 ... UULN1UULN1
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://websearch.searchfix.info/?pid=724&r=2015/01/14&hid=11498142045602403224&lg=EN&cc=CZ
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : akknapgkamhicncfdkhdanceghepckgf
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : bphkilcpnjgeegfnmifeifcmkgjngknk
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : bphkilcpnjgeegfnmifeifcmkgjngknk
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : dpnknncniillgijdlegfdffoheonaddd
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : dpnknncniillgijdlegfdffoheonaddd
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : eipkmemkjankjniioklenpminpnfgcoe
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ffieaadkkhencgelmgbbmkkipeocbcbg
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ffieaadkkhencgelmgbbmkkipeocbcbg
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : gipnlpdeieaidmmeaichnddnmjmcakoe
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : gipnlpdeieaidmmeaichnddnmjmcakoe
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ipfpfhnlkoddglhimhdbboidjcfjlkji
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ipfpfhnlkoddglhimhdbboidjcfjlkji
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : jnkghdkphhhomedlndeloklfpiohmpcc
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : njapjkimdigbficcaaadjmplpfgbgpok
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ogminpmldncgcmokldnmmapddoccmhfl
[-] [C:\Users\kluci\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ohgiahgckgonbpbljcnbanodgkifkoem
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : softonic.com
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : mystartsearch
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : mystartsearch.com
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : websearch
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : counter-strike-global-offensive.en.softonic.com
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.mystartsearch.com/?type=hp&ts=14212 ... UULN1UULN1
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://websearch.searchfix.info/?pid=724&r=2015/01/14&hid=11498142045602403224&lg=EN&cc=CZ
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : akknapgkamhicncfdkhdanceghepckgf
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : dpnknncniillgijdlegfdffoheonaddd
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : dpnknncniillgijdlegfdffoheonaddd
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : eipkmemkjankjniioklenpminpnfgcoe
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ffieaadkkhencgelmgbbmkkipeocbcbg
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ffieaadkkhencgelmgbbmkkipeocbcbg
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : gipnlpdeieaidmmeaichnddnmjmcakoe
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : gipnlpdeieaidmmeaichnddnmjmcakoe
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ipfpfhnlkoddglhimhdbboidjcfjlkji
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ipfpfhnlkoddglhimhdbboidjcfjlkji
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : jnkghdkphhhomedlndeloklfpiohmpcc
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : njapjkimdigbficcaaadjmplpfgbgpok
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ogminpmldncgcmokldnmmapddoccmhfl
[-] [C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ohgiahgckgonbpbljcnbanodgkifkoem

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [40776 bytes] ##########

Dejte nový log FRST.

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKU\S-1-5-21-3629202705-644254634-1653428242-1002\...\Run: [AdobeBridge] => [X]
ShortcutTarget: Adobe Photoshop CS5 Extended & Crack (1).lnk -> C:\ProgramData\{41dfbab2-15b2-d021-41df-fbab215beac8}\Adobe Photoshop CS5 Extended & Crack (1).exe (No File)
ShortcutTarget: Adobe Photoshop CS5 Extended & Crack.lnk -> C:\ProgramData\{f483a238-6704-2074-f483-3a23867088e1}\Adobe Photoshop CS5 Extended & Crack.exe (No File)
ShortcutTarget: GTA San Andreas _ Extreme Edition 2011.lnk -> C:\ProgramData\{cfecae2f-d02d-0f6a-cfec-cae2fd02b8bf}\GTA San Andreas _ Extreme Edition 2011.exe (No File)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\.DEFAULT -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-3629202705-644254634-1653428242-1002 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
CHR Extension: (Prezentace Google) - C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-23] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION
CHR Extension: (Dokumenty Google) - C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-23] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION
CHR Extension: (Disk Google) - C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-06] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION
CHR Extension: (Tabulky Google) - C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-23] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION
CHR Extension: (AgarioMods Evergreen Script) - C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhjgdbihpkphlammdaeicdemggagfbdo [2015-10-02]
CHR Extension: (Peněženka Google) - C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-23] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-11-23] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION
C:\ProgramData\DP45977C.lfl
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\kluci\AppData\Local\Temp
C:\Users\Prokop\AppData\Local\Temp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Scan Tool (x64) Version:20-12-2015
Ran by Prokop (2015-12-20 21:04:26) Run:1
Running from C:\Users\Prokop\Desktop
Loaded Profiles: kluci & Prokop (Available Profiles: kluci & Prokop & Vojtík)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKU\S-1-5-21-3629202705-644254634-1653428242-1002\...\Run: [AdobeBridge] => [X]
ShortcutTarget: Adobe Photoshop CS5 Extended & Crack (1).lnk -> C:\ProgramData\{41dfbab2-15b2-d021-41df-fbab215beac8}\Adobe Photoshop CS5 Extended & Crack (1).exe (No File)
ShortcutTarget: Adobe Photoshop CS5 Extended & Crack.lnk -> C:\ProgramData\{f483a238-6704-2074-f483-3a23867088e1}\Adobe Photoshop CS5 Extended & Crack.exe (No File)
ShortcutTarget: GTA San Andreas _ Extreme Edition 2011.lnk -> C:\ProgramData\{cfecae2f-d02d-0f6a-cfec-cae2fd02b8bf}\GTA San Andreas _ Extreme Edition 2011.exe (No File)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\.DEFAULT -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-3629202705-644254634-1653428242-1002 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
CHR Extension: (Prezentace Google) - C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-23] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION
CHR Extension: (Dokumenty Google) - C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-23] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION
CHR Extension: (Disk Google) - C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-06] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION
CHR Extension: (Tabulky Google) - C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-23] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION
CHR Extension: (AgarioMods Evergreen Script) - C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhjgdbihpkphlammdaeicdemggagfbdo [2015-10-02]
CHR Extension: (Peněženka Google) - C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-23] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-11-23] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATTENTION
C:\ProgramData\DP45977C.lfl
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\kluci\AppData\Local\Temp
C:\Users\Prokop\AppData\Local\Temp
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-3629202705-644254634-1653428242-1002\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value removed successfully
C:\ProgramData\{41dfbab2-15b2-d021-41df-fbab215beac8}\Adobe Photoshop CS5 Extended & Crack (1).exe => not found.
C:\ProgramData\{f483a238-6704-2074-f483-3a23867088e1}\Adobe Photoshop CS5 Extended & Crack.exe => not found.
C:\ProgramData\{cfecae2f-d02d-0f6a-cfec-cae2fd02b8bf}\GTA San Andreas _ Extreme Edition 2011.exe => not found.
"HKLM\SOFTWARE\Policies\Google" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => key removed successfully
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}" => key removed successfully
HKCR\Wow6432Node\CLSID\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} => key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}" => key removed successfully
HKCR\Wow6432Node\CLSID\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE} => key not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-3629202705-644254634-1653428242-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => key removed successfully
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => key not found.
C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek <==== ATTENTION => not found
C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake <==== ATTENTION => not found
C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf <==== ATTENTION => not found
C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap <==== ATTENTION => not found
C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhjgdbihpkphlammdaeicdemggagfbdo => moved successfully
C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda <==== ATTENTION => not found
C:\Users\Prokop\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak <==== ATTENTION => not found
C:\ProgramData\DP45977C.lfl => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat => moved successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully

"C:\Users\kluci\AppData\Local\Temp" folder move:

Could not move "C:\Users\kluci\AppData\Local\Temp" => Scheduled to move on reboot.


"C:\Users\Prokop\AppData\Local\Temp" folder move:

Could not move "C:\Users\Prokop\AppData\Local\Temp" => Scheduled to move on reboot.


Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-12-20 21:12:25)

C:\Users\kluci\AppData\Local\Temp => Is moved successfully
C:\Users\Prokop\AppData\Local\Temp => moved successfully

==== End of Fixlog 21:12:26 ====

Smazáno. Nastala nějaká změna?

je to lepší

To jsem rád.