VIRY.CZ

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-10-2016
Ran by Rybníček (administrator) on HP (05-10-2016 20:00:13)
Running from C:\Users\Rybníček\Desktop
Loaded Profiles: Rybníček & děcka & Guest (Available Profiles: Rybníček & děcka & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21dba265e7e67cda\stacsv64.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21dba265e7e67cda\AESTSr64.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agr64svc.exe
(Motorola, Inc.) C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Motorola, Inc.) C:\Program Files\Motorola\Bluetooth\obexsrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Macrovision Europe Ltd.) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Google Inc.) C:\Users\Rybníček\AppData\Local\Google\Update\GoogleUpdate.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Motorola, Inc.) C:\Program Files\Motorola\Bluetooth\audiosrv.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Motorola, Inc.) C:\Program Files\Motorola\Bluetooth\btplayerctrl.exe
() C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Farbar) C:\Users\Rybníček\Desktop\FRST64(1).exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2010-01-08] (Intel Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2174760 2010-06-04] (Synaptics Incorporated)
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files\Motorola\Bluetooth\btmshell.dll [24783624 2010-06-11] (Motorola, Inc.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2010-01-29] (IDT, Inc.)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1340192 2016-01-29] (Microsoft Corporation)
HKLM-x32\...\Run: [WirelessAssistant] => C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [499768 2009-09-01] (Hewlett-Packard)
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\dcka~1\appdata\local\temp\{0af3ff62-144e-4292-8481-63325b386989}\googleupdate.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files\synaptics\syntp\syntphelper.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\real\realupgrade\realupgrade.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\adobe\reader 10.0\reader\reader_sl.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Windows Media Player\wmprph.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\mozilla firefox\firefox.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\hewlett-packard\hp wireless assistant\hpwamain.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Update\Download\{74AF07D8-FB8F-4D51-8AC7-927721D56EBB}\0.0.0.0\GoogleEarth-Win-Bundle-6.1.0.5001.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Windows Media Player\Setup_wm.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleUpdaterService_5898FABCFA121C11.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\hewlett-packard\hp advisor\hpadvisor.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Microsoft Games\Multiplayer\Backgammon\bckgzm.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Microsoft Games\SpiderSolitaire\spidersolitaire.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Update\1.3.21.79\GoogleUpdateOnDemand.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\dcka~1\appdata\local\temp\gum24bf.tmp\googleupdate.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Windows Media Player\wmpnscfg.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Microsoft Games\Hearts\hearts.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AcrobatUpdater.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\dcka~1\appdata\local\temp\{0c4a57b4-a52d-494f-8a97-0f68b1296923}\googleupdate.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Winamp\winamp.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Internet Explorer <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\děcka\downloads\chromesetup(1).exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\skype\phone\skype.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\microsoft office\office12\groovemonitor.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Windows Media Player\wmplayer.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Windows Media Player\wmpsideshowgadget.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Windows Sidebar <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\real\realplayer\update\realsched.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\winamp\winampa.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\real\realplayer\update\realonemessagecenter.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Windows Media Player\wmpnetwk.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\microsoft office\office12\excel.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\dcka~1\appdata\local\temp\{cf50c4d7-ec85-4074-8cf4-d695d8fef16c}\googleupdate.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Microsoft Games\Solitaire\solitaire.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\dcka~1\appdata\local\temp\gum9d76.tmp\googleupdate.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Microsoft Games\FreeCell\freecell.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\dcka~1\appdata\local\temp\{9d13cdcd-882d-4f04-8d78-4a9212bd30f5}\googleupdate.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\dcka~1\appdata\local\temp\gum68d0.tmp\googleupdate.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Windows Media Player\wmlaunch.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\dcka~1\appdata\local\temp\gum2ad7.tmp\googleupdate.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Common Files\microsoft shared\Source Engine\OSE.EXE <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\real\realplayer\realplay.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\dcka~1\appdata\local\temp\{6138e3c8-9985-483b-9c07-7d7eb12cab66}\googleupdate.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Windows Media Player\wmprph.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_32_81E2CDE9904AEA6C.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Windows Media Player\wmpsideshowgadget.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\děcka\appdata\local\microsoft\windows\temporary internet files\content.ie5\k0o7w0ui\chromesetup (1).exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\OFFDIAG.EXE <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\ReaderUpdater.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\mozilla firefox\plugin-container.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\adobe\adobe bridge cs5\bridgeproxy.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Windows Media Player\Setup_wm.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\hewlett-packard\hp advisor\dock\hpadvisordock.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Microsoft Games\Multiplayer\Checkers\chkrzm.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Windows Media Player\wmpconfig.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\děcka\desktop\chromesetup.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Windows Media Player\wmpnscfg.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_DC5D2AFB0F84E8D8.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\adobe\reader 10.0\reader\eula.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: g:\setup.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Update\GoogleUpdate.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Google Toolbar\Component\SearchWithGoogleUpdate_FEDCC8C725BD9ACB.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Windows Media Player\wmpshare.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\děcka\appdata\local\microsoft\windows\temporary internet files\content.ie5\de4cgpla\chromesetup.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleUpdateSetup_90698EA083D01143.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files\idt\wdm\sttray64.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\microsoft office\office12\powerpnt.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Update\1.3.21.79\GoogleUpdateBroker.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\real\realplayer\realshare.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Microsoft Games\More Games\MoreGames.dll <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_64.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Common Files\Java\Java Update\jaureg.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\Program Files\Microsoft Security Client\msseces.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\dcka~1\appdata\local\temp\gum954c.tmp\googleupdate.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Update\1.3.21.79\GoogleUpdate.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_64_7EDB2A3CB55893E6.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\hewlett-packard\shared\hpcaslnotification.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\real\realplayer\realconverter.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files\hewlett-packard\hp webcam app\webcamapp.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files\winrar\winrar.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\real\realplayer\rphelperapp.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Microsoft Games\Minesweeper\minesweeper.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Common Files\microsoft shared\Smart Tag\SmartTagInstall.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Google Earth\plugin\geplugin.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\dcka~1\appdata\local\temp\gum8b5d.tmp\googleupdate.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: g:\autorun.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Windows Sidebar <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: g:\sims3setup.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\pdf complete\pdfiutil.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Update\Download\{67D4B729-B7AF-46F0-87A7-3CD3F7CAAD99}\GoogleUpdateSetup.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.79\GoogleUpdateSetup.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Windows Media Player\wmpnscfg.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\microsoft office\office12\winword.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Windows Media Player\wmlaunch.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Microsoft Games\Multiplayer\Spades\shvlzm.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\ODSERV.EXE <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\Office Setup Controller\ODEPLOY.EXE <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Windows Media Player\wmpnscfg.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\dcka~1\appdata\local\temp\gumd48d.tmp\googleupdate.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Windows Media Player\wmpconfig.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Common Files\Java\Java Update\jaucheck.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Windows Defender <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\děcka\appdata\local\microsoft\windows\temporary internet files\content.ie5\s7687cz2\firefox setup 8.0.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\common files\roxio shared\10.0\roxio central36\main\roxio_central36.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Google\Update\1.3.21.79\GoogleCrashHandler.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Microsoft Games\Chess\chess.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\intel\intel matrix storage manager\iaanotif.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\děcka\appdata\roaming\mozilla\firefox\profiles\6qrghwej.default\extensions\4zffxtbr-bs@videodownloadconverter_4z.com\content\videodownloadconvert.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files (x86)\Windows Media Player\wmpenc.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\dcka~1\appdata\local\temp\{840b49d3-3b3e-4f21-8a86-f81d20db12c7}\googleupdate.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\děcka\appdata\local\microsoft\windows\temporary internet files\content.ie5\de4cgpla\firefox setup 8.0.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\děcka\downloads\chromesetup.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\děcka\downloads\chromesetup(4).exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files (x86)\windows live\photo gallery\moviemaker.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Internet Explorer <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\děcka\appdata\local\microsoft\windows\temporary internet files\content.ie5\am1i8pn9\chromesetup.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\program files\synaptics\syntp\syntpenh.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Windows Media Player\wmpshare.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: C:\Program Files\Windows Media Player\wmpenc.exe <====== ATTENTION
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 Group Policy restriction on software: c:\users\děcka\appdata\local\microsoft\windows\temporary internet files\content.ie5\am1i8pn9\chromesetup (1).exe <====== ATTENTION
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3087643151-4065238412-3609415455-1002\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2010-01-22] (Hewlett-Packard Company)
HKU\S-1-5-21-3087643151-4065238412-3609415455-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7063832 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-3087643151-4065238412-3609415455-1002\...\Run: [Google Update] => C:\Users\Rybníček\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc.)
HKU\S-1-5-21-3087643151-4065238412-3609415455-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53725200 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-3087643151-4065238412-3609415455-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3087643151-4065238412-3609415455-1002\...\MountPoints2: {b6427ebf-0700-11e6-b279-1cc1dea82f6c} - E:\Start.exe
HKU\S-1-5-21-3087643151-4065238412-3609415455-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\scrnsave.scr [11264 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-02-01] (Google Inc.)
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\Bubbles.scr [899584 2010-11-20] (Microsoft Corporation)
HKU\S-1-5-21-3087643151-4065238412-3609415455-501\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2010-01-22] (Hewlett-Packard Company)
HKU\S-1-5-21-3087643151-4065238412-3609415455-501\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-02-01] (Google Inc.)
HKU\S-1-5-21-3087643151-4065238412-3609415455-501\...\Run: [Google Update] => C:\Users\Guest\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-10-18] (Google Inc.)
HKU\S-1-5-21-3087643151-4065238412-3609415455-501\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\System32\scrnsave.scr [11264 2009-07-14] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

AutoConfigURL: [S-1-5-21-3087643151-4065238412-3609415455-1002] => hxxp://un-blocking.info/wpad.dat?04d844802338374f14e74441cda72be117789280
Tcpip\Parameters: [DhcpNameServer] 192.168.15.1 192.168.1.1
Tcpip\..\Interfaces\{EA0658B9-E07B-4DA7-A1F2-296AB9B2375A}: [DhcpNameServer] 192.168.10.1 192.168.1.1
Tcpip\..\Interfaces\{FA031D43-67E5-4050-A80D-1560B6298AB0}: [DhcpNameServer] 192.168.15.1 192.168.1.1
ManualProxies: 0hxxp://un-blocking.info/wpad.dat?04d844802338374f14e74441cda72be117789280

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-3087643151-4065238412-3609415455-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617911&ResetID=131058090430954989&GUID=51D67A63-FC2B-4415-87AA-A78CA0F1F268
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617911&ResetID=131058090436954998&GUID=51D67A63-FC2B-4415-87AA-A78CA0F1F268
HKU\S-1-5-21-3087643151-4065238412-3609415455-1005\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com
HKU\S-1-5-21-3087643151-4065238412-3609415455-501\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617911&ResetID=131058090440955003&GUID=51D67A63-FC2B-4415-87AA-A78CA0F1F268
HKU\S-1-5-21-3087643151-4065238412-3609415455-501\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com
SearchScopes: HKLM -> {EFD90A5C-C40F-45D9-92AB-A3DAE671237A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {EFD90A5C-C40F-45D9-92AB-A3DAE671237A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3087643151-4065238412-3609415455-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3087643151-4065238412-3609415455-1002 -> {09C6C372-9F8F-456E-8061-7253A0BA6369} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-3087643151-4065238412-3609415455-1002 -> {342294F9-CDBB-4AEF-A926-E83B4CBD46FE} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-3087643151-4065238412-3609415455-1002 -> {3674A15D-2E74-4FE1-B0E8-6605A88885B9} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_16194
SearchScopes: HKU\S-1-5-21-3087643151-4065238412-3609415455-1002 -> {442AB0FD-D8B5-4C37-9F3B-A26E52A4DBB8} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-3087643151-4065238412-3609415455-1002 -> {815E58F7-985A-4CFD-954A-9F68CC6283F4} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_16194
SearchScopes: HKU\S-1-5-21-3087643151-4065238412-3609415455-1002 -> {B533207A-3DB8-4B27-80ED-72619561C706} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_16194
SearchScopes: HKU\S-1-5-21-3087643151-4065238412-3609415455-1002 -> {BDA4E7D3-18F9-41F5-BE45-9609B2A8B948} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-3087643151-4065238412-3609415455-1002 -> {D78B7974-0771-4CDA-B2B1-7A410783E8AD} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_16194
SearchScopes: HKU\S-1-5-21-3087643151-4065238412-3609415455-1002 -> {E663DA7A-8F11-42C4-AB70-03C6AA94B6D8} URL = hxxp://www.webhledani.cz/results.aspx?i=42&tp= ... earchTerms}
SearchScopes: HKU\S-1-5-21-3087643151-4065238412-3609415455-1002 -> {E82D9284-47B4-4829-A611-A17CB452F8F9} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-3087643151-4065238412-3609415455-1002 -> {EFD90A5C-C40F-45D9-92AB-A3DAE671237A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\S-1-5-21-3087643151-4065238412-3609415455-501 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\S-1-5-21-3087643151-4065238412-3609415455-501 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-25] (Google Inc.)
BHO-x32: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-04-29] (RealPlayer)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2011-02-02] (Sun Microsystems, Inc.)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-25] (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-02-02] (Sun Microsystems, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-25] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-25] (Google Inc.)
Toolbar: HKU\S-1-5-21-3087643151-4065238412-3609415455-1002 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-25] (Google Inc.)
Toolbar: HKU\S-1-5-21-3087643151-4065238412-3609415455-1005 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-25] (Google Inc.)
Toolbar: HKU\S-1-5-21-3087643151-4065238412-3609415455-501 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-25] (Google Inc.)
DPF: HKLM-x32 {888078C6-70B2-4F88-8EE7-1F50DDEA6120} hxxps://as.photoprintit.de/ips-opdata/activex/ImageUploader6.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF DefaultProfile: 41A66E7E5EE1
FF ProfilePath: C:\Users\Rybníček\AppData\Roaming\Mozilla\Firefox\Profiles\r0khhi41.default-1415865473570 [2016-10-05]
FF NewTab: Mozilla\Firefox\Profiles\r0khhi41.default-1415865473570 -> hxxp://www.google.com/
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\r0khhi41.default-1415865473570 -> hxxp://www.google.com/search?btnG=Google+Search&q=
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\r0khhi41.default-1415865473570 -> Google
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\r0khhi41.default-1415865473570 -> Google
FF Homepage: Mozilla\Firefox\Profiles\r0khhi41.default-1415865473570 -> hxxp://www.seznam.cz/
FF Keyword.URL: Mozilla\Firefox\Profiles\r0khhi41.default-1415865473570 -> hxxp://www.google.com/search?btnG=Google+Search&q=
FF ProfilePath: C:\Users\Rybníček\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1 [2016-10-05]
FF NewTab: Mozilla\Firefox\Profiles\41A66E7E5EE1 -> hxxp://www.google.com/
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\41A66E7E5EE1 -> DuckDuckGo
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\41A66E7E5EE1 -> hxxp://www.google.com/search?btnG=Google+Search&q=
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\41A66E7E5EE1 -> Google
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\41A66E7E5EE1 -> Google
FF Homepage: Mozilla\Firefox\Profiles\41A66E7E5EE1 -> hxxp://www.seznam.cz/
FF Keyword.URL: Mozilla\Firefox\Profiles\41A66E7E5EE1 -> hxxp://www.google.com/search?btnG=Google+Search&q=
FF Extension: (GsearchFinder) - C:\Users\Rybníček\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\@E9438230-A7DF-4D1F-8F2D-CA1D0F0F7924.xpi [2016-04-20]
FF Extension: (Firefox Hotfix) - C:\Users\Rybníček\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-08]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: (RealPlayer Browser Record Plugin) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2014-02-15] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-09-14] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-14] ()
FF Plugin-x32: @java.com/DTPlugin,version=10.7.2 -> C:\windows\SysWOW64\npDeployJava1.dll [2012-10-10] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll [2011-02-02] (Sun Microsystems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=12.0.1.647 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2011-04-29] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprjplug;version=12.0.1.647 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll [2011-04-29] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=12.0.1.647 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll [2011-04-29] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprphtml5videoshim;version=12.0.1.647 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll [2011-04-29] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=12.0.1.647 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll [2011-04-29] (RealNetworks, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @veetle.com/veetleCorePlugin,version=0.9.18 -> C:\Program Files (x86)\Veetle\plugins\npVeetle.dll [2010-10-16] (Veetle Inc)
FF Plugin-x32: @veetle.com/veetlePlayerPlugin,version=0.9.18 -> C:\Program Files (x86)\Veetle\Player\npvlc.dll [2010-09-21] (Veetle Inc)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3087643151-4065238412-3609415455-1002: @citrixonline.com/appdetectorplugin -> C:\Users\Rybníček\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2015-02-16] (Citrix Online)
FF Plugin HKU\S-1-5-21-3087643151-4065238412-3609415455-1002: @tools.google.com/Google Update;version=3 -> C:\Users\Rybníček\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-3087643151-4065238412-3609415455-1002: @tools.google.com/Google Update;version=9 -> C:\Users\Rybníček\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-3087643151-4065238412-3609415455-501: @tools.google.com/Google Update;version=3 -> C:\Users\Guest\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll [2011-10-18] (Google Inc.)
FF Plugin HKU\S-1-5-21-3087643151-4065238412-3609415455-501: @tools.google.com/Google Update;version=9 -> C:\Users\Guest\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll [2011-10-18] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll [2012-06-28] (Nullsoft, Inc.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\1258414033.js [2016-10-04] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\1258414033.cfg [2016-10-04] <==== ATTENTION

Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.yessearches.com/?mode=nnnb&ptid=dam ... AH4rC3QrC0.."
CHR DefaultSearchURL: Default -> hxxp://www.yessearches.com/chrome.php?q={searc ... &mode=nnnb
CHR DefaultSearchKeyword: Default -> yessearches
CHR Profile: C:\Users\Rybníček\AppData\Local\Google\Chrome\User Data\Default [2016-10-05]
CHR Extension: (Prezentace Google) - C:\Users\Rybníček\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-19]
CHR Extension: (Dokumenty Google) - C:\Users\Rybníček\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-19]
CHR Extension: (Disk Google) - C:\Users\Rybníček\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-29]
CHR Extension: (YouTube) - C:\Users\Rybníček\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-29]
CHR Extension: (Vyhledávání Google) - C:\Users\Rybníček\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Tabulky Google) - C:\Users\Rybníček\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\Rybníček\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Rybníček\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-18]
CHR Extension: (Gmail) - C:\Users\Rybníček\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-21]
CHR Extension: (Chrome Media Router) - C:\Users\Rybníček\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-04]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AESTFilters; C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21dba265e7e67cda\AESTSr64.exe [89600 2009-03-03] (Andrea Electronics Corporation)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [647680 2010-09-19] (Macrovision Europe Ltd.) [File not signed]
R3 FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [1028096 2010-09-19] (Macrovision Europe Ltd.) [File not signed]
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed]
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [264248 2010-03-01] (Hewlett-Packard Company)
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2010-01-22] (Hewlett-Packard Company) [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2016-01-29] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [374344 2016-01-29] (Microsoft Corporation)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2782552 2010-05-03] (Symantec Corporation)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [635416 2010-01-12] (PDF Complete Inc)
R2 STacSV; C:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_21dba265e7e67cda\STacSV64.exe [244736 2010-01-29] (IDT, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 btmaudio; C:\Windows\System32\drivers\btmaud.sys [42496 2010-05-20] (Motorola, Inc.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2016-04-20] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
U2 HPDrvMntSvc.exe; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [197536 2012-08-10] (Hewlett-Packard Company)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [289120 2015-11-13] (Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133816 2015-11-13] (Microsoft Corporation)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1803904 2010-04-27] ()
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics Co., Ltd.)
S3 MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-10-05 20:00 - 2016-10-05 20:01 - 00051276 _____ C:\Users\Rybníček\Desktop\FRST.txt
2016-10-05 19:47 - 2016-10-05 19:47 - 02405376 _____ (Farbar) C:\Users\Rybníček\Desktop\FRST64(1).exe
2016-10-05 19:21 - 2016-10-05 19:22 - 00000000 ____D C:\Program Files\Reimage
2016-10-05 19:20 - 2016-10-05 19:23 - 00000140 _____ C:\windows\Reimage.ini
2016-10-05 19:19 - 2016-10-05 19:19 - 00604928 _____ (Reimage) C:\Users\Rybníček\Downloads\ReimageRepair.exe
2016-10-04 20:31 - 2016-10-04 20:31 - 00119150 _____ C:\Users\Rybníček\Desktop\Adolf.pdf
2016-10-04 20:30 - 2016-10-04 20:30 - 00000000 ____D C:\Users\Rybn��ek\AppData\Local\Adobe
2016-10-04 20:30 - 2016-10-04 20:30 - 00000000 ____D C:\Users\Rybn��ek
2016-10-04 18:44 - 2016-10-04 18:44 - 00000000 ____D C:\ProgramData\FileFinder
2016-10-04 18:42 - 2016-10-04 18:43 - 00000000 ____D C:\ProgramData\Webitar Production Inc
2016-10-04 18:42 - 2016-10-04 18:42 - 00263312 _____ (FooRah Box) C:\Users\Rybníček\Downloads\Free_pedigree_forms_downloads_downloader.exe
2016-10-02 21:12 - 2016-10-02 21:12 - 00000000 ____D C:\ProgramData\GeoComply
2016-09-24 09:43 - 2016-10-04 18:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-09-18 11:42 - 2016-09-18 11:42 - 13294207 _____ C:\Users\Rybníček\Downloads\Photos.zip

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-10-05 20:00 - 2014-11-28 22:50 - 00000000 ____D C:\FRST
2016-10-05 19:22 - 2011-05-03 11:29 - 02842624 ___SH C:\Users\Rybníček\Desktop\Thumbs.db
2016-10-05 19:21 - 2012-04-07 07:23 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2016-10-05 19:17 - 2011-02-01 11:21 - 00000952 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-05 19:14 - 2015-02-16 11:39 - 00000580 _____ C:\windows\Tasks\G2MUpdateTask-S-1-5-21-3087643151-4065238412-3609415455-1002.job
2016-10-05 18:30 - 2015-05-31 13:14 - 00000676 _____ C:\windows\Tasks\G2MUploadTask-S-1-5-21-3087643151-4065238412-3609415455-1002.job
2016-10-05 15:37 - 2009-07-14 06:45 - 00022704 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-10-05 15:37 - 2009-07-14 06:45 - 00022704 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-10-05 15:28 - 2011-02-01 11:21 - 00000948 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-05 15:28 - 2009-07-14 07:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-10-04 21:44 - 2009-07-14 05:20 - 00000000 ____D C:\windows\inf
2016-10-04 21:38 - 2014-08-08 08:06 - 00000000 ____D C:\Users\Rybníček\AppData\Local\CrashDumps
2016-10-04 20:33 - 2011-02-13 20:07 - 00000000 ____D C:\Users\Rybníček\AppData\Roaming\pigeonplanner
2016-10-04 18:43 - 2011-12-18 22:12 - 00001977 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-10-04 18:43 - 2011-12-18 22:12 - 00001977 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-10-04 18:43 - 2011-07-11 08:48 - 00002495 _____ C:\Users\Rybníček\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-04 17:15 - 2010-09-09 23:18 - 00669132 _____ C:\windows\system32\perfh005.dat
2016-10-04 17:15 - 2010-09-09 23:18 - 00141760 _____ C:\windows\system32\perfc005.dat
2016-10-04 17:15 - 2009-07-14 07:13 - 01584626 _____ C:\windows\system32\PerfStringBackup.INI
2016-10-02 21:11 - 2015-12-25 21:04 - 00000000 ____D C:\Users\Rybníček\AppData\Local\PokerStars.EU
2016-10-02 21:10 - 2015-12-25 21:00 - 00000000 ____D C:\Program Files (x86)\PokerStars.EU
2016-09-30 11:01 - 2014-12-26 12:48 - 00004476 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
2016-09-29 20:06 - 2011-02-01 12:06 - 00000000 ____D C:\Users\Rybníček\AppData\Roaming\Skype
2016-09-25 19:48 - 2012-05-04 22:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-25 19:46 - 2009-07-14 05:20 - 00000000 ____D C:\windows\system32\NDF
2016-09-20 16:17 - 2014-04-20 16:45 - 00000000 ____D C:\Users\Rybníček\Desktop\LR
2016-09-14 18:22 - 2012-04-07 07:23 - 00796352 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2016-09-14 18:22 - 2012-04-07 07:23 - 00003852 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2016-09-14 18:22 - 2011-08-25 07:40 - 00142528 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-09-14 18:21 - 2012-02-23 10:38 - 00000000 ____D C:\windows\system32\Macromed
2016-09-14 18:21 - 2010-09-09 23:25 - 00000000 ____D C:\windows\SysWOW64\Macromed

==================== Files in the root of some directories =======

2011-02-23 12:10 - 2011-06-22 11:15 - 0001854 _____ () C:\Users\Rybníček\AppData\Roaming\GhostObjGAFix.xml
2011-02-04 10:53 - 2011-02-04 10:53 - 0099384 _____ () C:\Users\Rybníček\AppData\Roaming\inst.exe
2011-02-04 10:53 - 2011-02-04 10:53 - 0007859 _____ () C:\Users\Rybníček\AppData\Roaming\pcouffin.cat
2011-02-04 10:53 - 2011-02-04 10:53 - 0001167 _____ () C:\Users\Rybníček\AppData\Roaming\pcouffin.inf
2011-02-04 10:54 - 2011-02-04 10:54 - 0000034 _____ () C:\Users\Rybníček\AppData\Roaming\pcouffin.log
2011-02-04 10:53 - 2011-02-04 10:53 - 0082816 _____ (VSO Software) C:\Users\Rybníček\AppData\Roaming\pcouffin.sys
2011-02-01 15:51 - 2012-04-06 11:22 - 0001534 _____ () C:\Users\Rybníček\AppData\Local\mbt-actwiz.log
2011-02-07 19:48 - 2011-04-11 12:20 - 0013030 _____ () C:\Users\Rybníček\AppData\Local\PDOXUSRS.NET
2016-08-05 17:27 - 2016-08-05 17:27 - 0002912 _____ () C:\Users\Rybníček\AppData\Local\recently-used.xbel
2011-09-12 08:52 - 2011-09-12 08:52 - 0000088 __RSH () C:\ProgramData\8C65CE2ECB.sys
2014-01-15 13:58 - 2014-01-15 13:58 - 0000057 _____ () C:\ProgramData\Ament.ini
2011-02-01 12:07 - 2011-02-01 12:07 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2010-09-09 23:58 - 2011-02-07 20:15 - 0000361 _____ () C:\ProgramData\HPWALog.txt
2011-09-12 08:52 - 2011-09-12 08:52 - 0002828 ___SH () C:\ProgramData\KGyGaAvL.sys

Some files in TEMP:
====================
C:\Users\Rybníček\AppData\Local\Temp\1467-eeed-90c4-bd4eFree_pedigree_forms_downloads_downloader.exe
C:\Users\Rybníček\AppData\Local\Temp\ReimagePackage.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\SysWOW64\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-08-24 09:06

==================== End of FRST.txt ============================

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

# AdwCleaner v6.020 - Log soubor vytvořen 05/10/2016 na 20:34:16
# Aktualizováno dne 14/09/2016 z ToolsLib
# Databáze : 2016-09-14.2 [Místní]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : Rybníček - HP
# Beží od : C:\Users\Rybníček\Desktop\adwcleaner_6.020.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum

***** [ Služby ] *****

***** [ Adresáře ] *****

[-] Adresář smazán:C:\Users\Rybníček\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
[-] Adresář smazán:C:\Program Files\Reimage
[-] Adresář smazán:C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
[-] Adresář smazán:C:\Program Files (x86)\myfree codec
[-] Adresář smazán:C:\Users\Public\Documents\dmp
[-] Adresář smazán:C:\Users\Rybníček\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F
[-] Adresář smazán:C:\Users\Rybníček\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1

***** [ Soubory ] *****

[-] Soubor smazán:C:\windows\Reimage.ini

***** [ DLL ] *****

***** [ WMI ] *****

***** [ Zástupce ] *****

***** [ Plánovač úloh ] *****

***** [ Registry ] *****

[-] Klíč smazán:HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\PCSpeedUpService
[#] Klíč smazán po restartování:[x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\PCSpeedUpService
[-] Klíč smazán:HKLM\SOFTWARE\Classes\protector_dll.Protector
[-] Klíč smazán:HKLM\SOFTWARE\Classes\protector_dll.Protector.1
[-] Klíč smazán:HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
[-] Klíč smazán:HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
[-] Klíč smazán:HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[-] Klíč smazán:HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\protector_dll.Protector
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\protector_dll.Protector.1
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[#] Klíč smazán po restartování:[x64] HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Klíč smazán:HKU\.DEFAULT\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[-] Klíč smazán:HKU\.DEFAULT\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\_CrossriderRegNamePlaceHolder_
[-] Klíč smazán:HKU\.DEFAULT\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Internet Speed Checker
[-] Klíč smazán:HKU\S-1-5-21-3087643151-4065238412-3609415455-1002\Software\Reimage
[-] Klíč smazán:HKU\S-1-5-21-3087643151-4065238412-3609415455-1002\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[-] Klíč smazán:HKU\S-1-5-21-3087643151-4065238412-3609415455-1002\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3087643151-4065238412-3609415455-1002\Software\AVG Security Toolbar
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3087643151-4065238412-3609415455-1002\Software\SweetIM
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3087643151-4065238412-3609415455-1002\Software\vShare
[-] Klíč smazán:HKU\S-1-5-21-3087643151-4065238412-3609415455-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Internet Speed Checker
[-] Klíč smazán:HKU\S-1-5-21-3087643151-4065238412-3609415455-1005\Software\Myfree Codec
[-] Klíč smazán:HKU\S-1-5-21-3087643151-4065238412-3609415455-1005\Software\AppDataLow\Software\AVG Security Toolbar
[-] Klíč smazán:HKU\S-1-5-21-3087643151-4065238412-3609415455-501\Software\Myfree Codec
[-] Klíč smazán:HKU\S-1-5-21-3087643151-4065238412-3609415455-501\Software\AppDataLow\Software\AVG Security Toolbar
[#] Klíč smazán po restartování:HKU\S-1-5-18\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[#] Klíč smazán po restartování:HKU\S-1-5-18\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\_CrossriderRegNamePlaceHolder_
[#] Klíč smazán po restartování:HKU\S-1-5-18\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Internet Speed Checker
[#] Klíč smazán po restartování:HKCU\Software\Reimage
[#] Klíč smazán po restartování:HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[-] Klíč smazán:HKLM\SOFTWARE\yessearchesSoftware
[-] Klíč smazán:HKLM\SOFTWARE\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[-] Klíč smazán:HKLM\SOFTWARE\{E6276374-DE18-4AA5-A365-9016A2F98A2D}
[-] Klíč smazán:HKLM\SOFTWARE\{G6276374-DEEE-4AAA-A355-9016A2F98A2D}
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3087643151-4065238412-3609415455-1002\Software\AVG Security Toolbar
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3087643151-4065238412-3609415455-1002\Software\SweetIM
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3087643151-4065238412-3609415455-1002\Software\vShare
[#] Klíč smazán po restartování:[x64] HKCU\Software\Reimage
[#] Klíč smazán po restartování:[x64] HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Reimage
[-] Klíč smazán:[x64] HKLM\SOFTWARE\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] Klíč smazán:HKCU\SOFTWARE\Mozilla\Firefox\{EB52F1AB-3C2B-424F-9794-833C687025CF}
[-] Klíč smazán:HKLM\SOFTWARE\Mozilla\Firefox\{EB52F1AB-3C2B-424F-9794-833C687025CF}

***** [ Prohlížeče ] *****

*************************

:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [7600 Bajtů] - [05/10/2016 20:34:16]
C:\AdwCleaner\AdwCleaner[R0].txt - [1590 Bajtů] - [21/05/2015 11:39:02]
C:\AdwCleaner\AdwCleaner[S0].txt - [1596 Bajtů] - [21/05/2015 11:40:50]
C:\AdwCleaner\AdwCleaner[S1].txt - [7709 Bajtů] - [05/10/2016 20:31:03]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [7896 Bajtů] ##########

...a už mi nejde spustit ani Mozilla Firefox

VIRY.CZ

problém s internetovým prohlížečem, stále je přesměrováván

problém s internetovým prohlížečem, stále je přesměrováván

Re: problém s internetovým prohlížečem, stále je přesměrováv

Re: problém s internetovým prohlížečem, stále je přesměrováv

Re: problém s internetovým prohlížečem, stále je přesměrováv