Pc je pomalý.

[BooTKo.]

RogueKiller V10.8.2.0 [Jun 9 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno : Normální režim
Uživatel : gamers [Práva správce]
Started from : C:\Users\gamers\Desktop\RogueKiller.exe
Mód : Prohledat -- Datum : 06/10/2015 20:19:37

¤¤¤ Procesy : 0 ¤¤¤

¤¤¤ Registry : 8 ¤¤¤
[Hidden.From.SCM] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\fjtlaj (System32\drivers\feekptv.sys) -> Nalezeno
[PUM.HomePage] HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.seznam.cz/ -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{8BB038BA-CABD-4280-A6B6-CD23CD9471EA} | DhcpNameServer : 10.0.0.138 [(Private Address) (XX)] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{966FBD35-9528-49E5-ADF7-E660FCB9B5A9} | DhcpNameServer : 10.0.0.138 [X] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8BB038BA-CABD-4280-A6B6-CD23CD9471EA} | DhcpNameServer : 10.0.0.138 [(Private Address) (XX)] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{966FBD35-9528-49E5-ADF7-E660FCB9B5A9} | DhcpNameServer : 10.0.0.138 [(Private Address) (XX)] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{8BB038BA-CABD-4280-A6B6-CD23CD9471EA} | DhcpNameServer : 10.0.0.138 [(Private Address) (XX)] -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{966FBD35-9528-49E5-ADF7-E660FCB9B5A9} | DhcpNameServer : 10.0.0.138 [X] -> Nalezeno

¤¤¤ Úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: SAMSUNG HD200HJ ATA Device +++++
--- User ---
[MBR] a1e4d799455713d21486e23e59248126
[BSP] a38205c004c2f7abfd5e857449329b9a : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 190779 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: Generic Flash HS-CF USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

+++++ PhysicalDrive2: Generic Flash HS-MS USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

+++++ PhysicalDrive3: Generic Flash HS-SM USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

+++++ PhysicalDrive4: Generic Flash HS-SD/MMC USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

[Reklama]

[jerabina]

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
(musíš dát myší zatržítko do toho čtverečku vlevo od registru ap.)
- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Vypni antivir
Stáhni
Zoek.exe

a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.

Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;

klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .

Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.

Vlož nový log z HJT + informuj o problémech.

[BooTKo.]

Počekkj takže mam odpojit vše sluchátka ? kromě klávesnice a myší? HHD neemusim ?

[jerabina]

Ne, sluchátka, myš ani klávesnice potřeba nejsou, stačí všechny flash disky a externí disky.

[BooTKo.]

Najednou mi přestal ji internet pisu z mobilu

[BooTKo.]

Už jde RogueKiller V10.8.2.0 [Jun 9 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno : Normální režim
Uživatel : gamers [Práva správce]
Started from : C:\Users\gamers\Desktop\RogueKiller.exe
Mód : Smazat -- Datum : 06/10/2015 20:47:56

¤¤¤ Procesy : 0 ¤¤¤

¤¤¤ Registry : 8 ¤¤¤
[Hidden.From.SCM] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\fjtlaj (System32\drivers\feekptv.sys) -> Smazáno
[PUM.HomePage] HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.seznam.cz/ -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{8BB038BA-CABD-4280-A6B6-CD23CD9471EA} | DhcpNameServer : 10.0.0.138 [(Private Address) (XX)] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{966FBD35-9528-49E5-ADF7-E660FCB9B5A9} | DhcpNameServer : 10.0.0.138 [(Private Address) (XX)] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8BB038BA-CABD-4280-A6B6-CD23CD9471EA} | DhcpNameServer : 10.0.0.138 [(Private Address) (XX)] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{966FBD35-9528-49E5-ADF7-E660FCB9B5A9} | DhcpNameServer : 10.0.0.138 [(Private Address) (XX)] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{8BB038BA-CABD-4280-A6B6-CD23CD9471EA} | DhcpNameServer : 10.0.0.138 [(Private Address) (XX)] -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{966FBD35-9528-49E5-ADF7-E660FCB9B5A9} | DhcpNameServer : 10.0.0.138 [(Private Address) (XX)] -> Nahrazeno ()

¤¤¤ Úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: SAMSUNG HD200HJ ATA Device +++++
--- User ---
[MBR] a1e4d799455713d21486e23e59248126
[BSP] a38205c004c2f7abfd5e857449329b9a : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 190779 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: Generic Flash HS-CF USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

+++++ PhysicalDrive2: Generic Flash HS-MS USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

+++++ PhysicalDrive3: Generic Flash HS-SM USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

+++++ PhysicalDrive4: Generic Flash HS-SD/MMC USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )


============================================
RKreport_SCN_06102015_201937.log - RKreport_SCN_06102015_203808.log - RKreport_SCN_06102015_204657.log

[BooTKo.]

Tak hotovo konečne: Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by gamers on st 10.06.2015 at 21:00:07,75.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\gamers\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

10.6.2015 21:03:09 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\Program Files\Comodo deleted successfully
C:\Program Files\TPFanControl deleted successfully
C:\PROGRA~2\DAEMON Tools Pro deleted successfully
C:\PROGRA~2\Oracle deleted successfully
C:\PROGRA~2\Symantec deleted successfully
C:\PROGRA~2\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} deleted successfully
C:\PROGRA~2\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} deleted successfully
C:\Users\gamers\AppData\Roaming\AdobeUM deleted successfully
C:\Users\gamers\AppData\Roaming\Publish Providers deleted successfully
C:\Users\gamers\AppData\Local\BeamNG deleted successfully
C:\Users\gamers\AppData\Local\Kudyćel deleted successfully
C:\Users\gamers\AppData\Local\Ubisoft Game Launcher deleted successfully
C:\Users\gamers\AppData\Local\WarThunder deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{10264D0-3563-4C93-B249-747C4756DB5} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1185F2CB-EB28-432D-AFF0-2096CC10907} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11B65A74-73B8-483B-B930-B630AFA7D2AF} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{13B8DDC0-5D61-4261-9D55-14CD77CEE7E} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{15F45C22-2DE0-4D71-B227-8F7C4C3E3F} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{172AE938-CCF-40C1-BC5D-D3F23BE79572} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{17911CC1-DC40-446A-B49-3A3E19D34CF} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1C06A3A0-23D-448B-9F53-DB18B09879EC} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1D0EF8F8-8E5D-4EC6-AE37-5D298F03BB3} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1E47E0DD-36D8-4556-BE77-C581D74160AE} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1EF933A0-C678-461A-89FD-7A57AED75A1} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{20F75A79-1A15-4EF8-A5EA-EACFCE6D23A} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21C5CDD4-DE4A-44E3-8AC-531DA4D3961} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2C1CB351-632E-4351-9279-815087CCB3BF} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2D494CF0-9B66-4DAE-B6BC-20B0B2B2E13} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2D837D97-111A-4E08-9647-773DAFE6AAE} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31430E88-F768-48D9-932E-6284531EABC9} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31802BA1-93CC-4DD5-A9CC-BD767C64118} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{33FB7043-D73C-440A-B569-84141D39577} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{39A072E3-DF99-468D-A666-49BB638DF058} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3A4C8552-72DD-46D8-82F2-8C6F4E8F8AC} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D2EA0B9-C92-4B7A-83C9-8A5B3A5CB86E} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3EE9D058-3442-4876-A05C-FEE7BC26E535} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{41D7A5DA-BBB-414F-9F47-FC5B158860BB} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{42E395C8-9980-43A6-AA5-8E8DD862F424} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{49F7A621-4DE8-4DB9-B474-F65A46EC012} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4A27968F-8FBE-4CC8-B0CB-E4953162045} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4DA0C4B4-78CD-4D6F-932C-6EB2C3257440} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4E2577E-4D5A-443C-805E-CF5A3676F41C} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4E7069A4-24EB-46C2-8C63-41EBB1E21B} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4F84D941-E77F-4D27-B493-19A0EA2EB737} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{54F1C07A-182-4344-BB96-3741CD505EA8} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{550030F1-FD35-4A88-AEAF-80FDD4846E13} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5576566F-26B3-409D-8778-4A1266C783DA} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5ACD0A0C-E494-4DF7-BE8-27927C6F478B} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5F2EEE7D-7AAA-4EA1-976E-AF5D80AF90D5} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{65517F6C-C3F7-42DA-A534-E6DB2D426B27} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6585A522-3D3D-47AF-AB37-CD1CEB7A7127} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6863FA31-897A-474D-A5E6-959261E7E55} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6a3152da-b59a-43bf-7096-3a452fe0b96e} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6A3BA3BC-D41F-4831-BFF8-18ED56805295} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6AD6599-A229-4A7F-9C2F-ACBBD32BB25} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6B168B63-4D80-44FE-945-11D999428EC6} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6EABC1BE-A36D-4555-9653-45B49552FFE8} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{79FC1183-B052-48BE-B64-A56E14F020DE} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7B13C88-A609-4610-86A0-1C11B8BFDD9} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7E2FA4D5-4E38-42A9-B1C0-84C0E65A6881} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7E5B9DE9-2767-448A-A8D5-5C66E7284E9} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{80041F58-CAB-423A-8D9E-69534DA12E5} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8274EEB8-CC5D-4CF2-A03C-5312FFE935A} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{827E9DEB-544E-4F95-97AE-83F55128B235} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8464DA4B-D7EF-40EF-8CE-45722EC01F40} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85AB146B-E614-4FEA-ABB3-5283EB76C2E0} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{88B1B792-B256-4832-9369-B89FF93B4C37} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8A3FC1CE-1FE9-4A70-AAEC-32CC53BB8E8} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8AB1B067-E464-4061-B11B-77631EB3DD7} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8B8A7A2F-629D-4C66-904C-F4D8AD633594} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9694A5BD-F7A5-467F-9A1E-AC81E2B1885E} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{97A2AF9E-FA7E-4017-A8F9-54E25CBBFDA7} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99E20B2-5062-4412-9CA0-85348E78278} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9B6B7E64-2692-43F3-A19B-2CC26D8C3B1E} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9F9B3349-D20-466E-8750-803A9D954650} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A04F4F35-2886-47F9-99D1-227368BA8D3} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A094C625-51F8-488D-AB8A-82DFB38D3711} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A11E1DFB-BA33-472A-ABFE-F4F5A9A0295} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A413477A-E868-446F-BAB3-DE142A24B3A} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5B945EA-84CB-4640-B5C7-EC81F4F6FE1} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A8DB4A81-63B8-4F7E-AB6E-47774F9C6041} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ABD013B7-9477-45D5-A017-E6035D5AD7C} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B0451757-717-48AD-99AF-D918C860C240} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B3264807-2FE9-484F-83A7-7DE3A7DCD174} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B401C693-D998-43FC-B948-31967B98BC34} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B4CD369A-2E7C-4A2C-99BB-50EC11D3B282} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BC816D42-41D6-4CA5-8C83-85FD583F14E} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BF0AD553-9BA7-4FCE-A084-D249D2DCF8A2} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C4746007-87FA-4A6E-915E-2AD3CBC7546D} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CA30467B-4E94-47DE-9FB9-2EA87DD6CAE} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CA6E0C0E-4B55-4156-90CE-D5E24FCEC078} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D0EE803F-CC56-493D-8563-666C2F5DE5A0} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D2582310-199C-4336-A59F-CAC793783D2} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D44967F9-E83-4AB0-B7D6-08D7466FA2E} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D84CD97D-7C07-499F-BD78-EC1431D6E9A0} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D89F9599-A1FB-4A34-B6CE-F0E895519A0} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E16A5011-F75D-4579-9D13-D7BCBEC2B2} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E4306AFD-E4E-4ABB-856D-BC36387650BA} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E48EA99-41CC-49A7-869A-8489EA811BD} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E5710058-FA7B-4362-AD19-74A1736F6CD} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E686CCDA-6458-4154-A0B-206BC620C78F} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B9B07D-494-43CD-B272-B9E9229F3663} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E9C06D50-1FB9-4B91-9AA-DBE3A093726D} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{eb49c0d3-4cc0-4ba6-a0a5-1a836ab27408} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EDBAE90E-8E9D-4583-9657-909433CCEFC} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EE1E5AFD-241-4938-A0CD-A9E6FCBA686} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F859ED0-460E-4309-B4C1-289A9FCF6E21} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F85FCD16-B9DB-414C-A129-C864AC4DA3A} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F9F7578C-C7D4-41B7-8DF3-C64FDFA01BA0} deleted successfully
HKEY_USERS\S-1-5-21-3288948882-2604745948-3918771127-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FC7B9751-139-4EC2-B0A9-327787E711B4} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LiveUpdateSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\LiveUpdateSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\McComponentHostService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\McComponentHostService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SSUService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\SSUService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\splashtopremoteservice deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\splashtopremoteservice deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\SafeBoot\Network\splashtopremoteservice deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\splashtopremoteservice deleted successfully

==== Deleting Files \ Folders ======================

C:\Program Files\Comodo not found
C:\Program Files\TPFanControl not found
C:\PROGRA~2\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} not found
C:\PROGRA~2\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} not found
"C:\Windows\Installer\68e25.msi" not found
C:\Users\gamers\AppData\Roaming\.technic deleted
C:\Program Files\Empire Interactive deleted
C:\Program Files\Splashtop deleted
C:\search.sqlite deleted
C:\install.exe deleted
C:\Users\gamers\xobglu16.dll deleted
C:\Users\gamers\xobglu32.dll deleted
C:\PROGRA~2\Splashtop deleted
C:\PROGRA~2\InstallMate deleted
C:\PROGRA~2\Package Cache deleted
C:\Users\gamers\AppData\Local\CrashRpt deleted
C:\Windows\System32\Tasks\avastBCLRestartS-1-5-21-3288948882-2604745948-3918771127-1001 deleted
C:\Users\gamers\AppData\LocalLow\IObit Apps deleted
C:\Users\gamers\AppData\LocalLow\ADSRemoval deleted
C:\Windows\system32\config\systemprofile\Searches deleted
C:\Windows\system32\GroupPolicy\Machine deleted
C:\Windows\system32\GroupPolicy\User deleted
C:\Windows\system32\GroupPolicy\gpt.ini deleted
C:\Windows\System32\AniGIF.ocx deleted
C:\Windows\Installer\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D} deleted
"C:\Windows\Installer\15e3cd.msi" deleted
"C:\Users\gamers\AppData\Local\{980E9AB2-DDE8-482D-B0C5-5F781120CA7A}" deleted
"C:\Users\gamers\AppData\Roaming\RIA" deleted
"C:\Program Files\LogMeIn Hamachi\LMIGuardianDll.dll" deleted
"C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe" deleted
"C:\Program Files\LogMeIn Hamachi" not deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [27.04.2015 18:14]

==== Fake Chromium Profiles Check ======================

Fake profile C:\Users\Administrator\AppData\Local\Google\Chrome deleted
Fake profile C:\Users\Administrator\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\Administrator\AppData\Local\Comodo\Dragon deleted
Fake profile C:\Users\ASPNET\AppData\Local\Google\Chrome deleted
Fake profile C:\Users\ASPNET\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\ASPNET\AppData\Local\Comodo\Dragon deleted
Fake profile C:\Users\gamers\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\Guest\AppData\Local\Google\Chrome deleted
Fake profile C:\Users\Guest\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon deleted
Fake profile C:\Windows\system32\config\systemprofile\AppData\Local\Google\Chrome deleted

==== Chromium Look ======================

Google Chrome Version: 43.0.2357.124

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[17.03.2015 14:58]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[01.05.2015 11:17]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
kegdldmohomdaelnepdpbkdhfemobdgl - No path found[]
pepjgkdpkihjnbdaggonbpphlfkbhdli - C:\Users\gamers\AppData\Local\Google\Chrome\User Data\Extensions_packages\pepjgkdpkihjnbdaggonbpphlfkbhdli.crx[01.10.2014 17:30]

Comodo Drag&Drop Service - gamers\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aneodkojaglhnkkdbbdnmmmgimlcaogo
Comodo Web Inspector - gamers\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdngekjahnmlkinegnhdmmbcfnmbclnn
Comodo Media Downloader - gamers\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dihmnpngfonlhjmgkflpnibiaaliendo
iWebar - gamers\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gnjbfdmiommbcdfigaefehgdndnpeech
Senses - gamers\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jhapbopfchfogphiimjbhodmgnppoigk
Netpanel study - gamers\AppData\Local\Google\Chrome\User Data\Default\Extensions\kegdldmohomdaelnepdpbkdhfemobdgl
Until AM for Chrome - gamers\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjafmkicbmhcbapadecadciafbkecofl

==== Chromium Startpages ======================

C:\Users\gamers\AppData\Local\Google\Chrome\User Data\Default\Preferences
anslate.google.com:443,*":{"last_used":{"media-stream-mic":1416410539.192554},"media-stream-mic":1},"https://translate.google.cz:443,*":{"last_used":{"media-stream-mic":1422985050.80325},"media-stream-mic":1},"https://www.google.cz:443,*":{"last_used":{"media-stream-mic":1421678339.472093},"media-stream-mic":1}},"pref_version":1},"exit_type":"Normal","exited_cleanly":true,"icon_version":3,"managed_user_id":"","migrated_content_settings_exceptions":true,"migrated_default_content_settings":true,"migrated_default_media_stream_content_settings":true,"name":"PrvnĂ­ uĹľivatel","per_host_zoom_levels":{}},"protection":{"macs":{},"super_mac":null},"savefile":{"default_directory":"C:\\Users\\gamers\\Desktop"},"selectfile":{"last_directory":"C:\\Users\\gamers\\Desktop"},"session":{"restore_on_startup_migrated":true,"startup_urls_migration_time":"13060186350174851"},"translate_accepted_count":{"en":2},"translate_blocked_languages":["cs"],"translate_denied_count":{"en":0},"translate_last_denied_time":1415712898927.578,"translate_too_often_denied":true,"translate_whitelists":{}}
":false,"scripts":["utility.js","cards.js","background.js"]},"description":"Integrates Google Now into Chrome.","icons":{"128":"images/icon128.png","16":"images/icon16.png","48":"images/icon48.png"},"key":"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkhqJr32OFD/bMXW4Md7jMfd7LbwHXVc6x5bBQG5U+dloofoxrICDR20yur/40mQ8O//0sS1b8srvbab1CRlSrxoNCr9T80NAkfzx0gHyVS+p1Zow+1FzLMu9PiGwwFyN80HIB7GI/dIa0wC9K/2OrrzcHEhVH96DacTtWQqjfDVtZPjT7Xwv23dgoWcpbkRC86jMJot3dmX9xnn0KzoVc9gDOHSIkBLbkkr6Sp3LGXCCM4L0DJgxdFwaLr5WBzgC3y5x0/wwPIwN4PtIaK3BhH6njlksfnKwwIJ9iRT41V4BqbWu4mszO/7VJ3HJyw2DBpIc2grU9ZRRxrV3fRQG4wIDAQAB","manifest_version":2,"name":"Google Now","oauth2":{"auto_approve":true,"scopes":["https://www.googleapis.com/auth/googlenow"]},"optional_permissions":["background"],"permissions":["alarms","identity","metricsPrivate","notifications","pushMessaging","storage","tabs","webstorePrivate","\u003Call_urls>"],"version":"1.2.0.1"},"path":"C:\\Program Files\\Google\\Chrome\\Application\\36.0.1985.125\\resources\\google_now","preferences":{},"regular_only_preferences":{},"was_installed_by_default":false,"was_installed_by_oem":false},"pepjgkdpkihjnbdaggonbpphlfkbhdli":{"ack_external":true,"active_permissions":{"api":["bookmarks","browsingData","contextMenus","downloads","downloadsInternal","history","tabs","topSites","unlimitedStorage","webNavigation","webRequest","webRequestBlocking"],"explicit_host":["\u003Call_urls>","chrome://favicon/*"],"manifest_permissions":[],"scriptable_host":["*://vk.com/*","\u003Call_urls>"]},"commands":{},"content_settings":[],"creation_flags":1,"ephemeral_app":false,"events":[],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13057084444956968","location":3,"manifest":{"background":{"page":"background.html"},"content_scripts":[{"all_frames":true,"js":["content_script.js"],"matches":["\u003Call_urls>"],"run_at":"document_start"},{"css":["style.css"],"js":["wp_content_script.js"],"matches":["*://vk.com/*"],"run_at":"document_start"}],"content_security_policy":"script-src 'self' https://ssl.google-analytics.com; object-src 'self'","current_locale":"cs","default_locale":"en","description":"Free vk.com wallpaper changer","homepage_url":"http://wall-pepper.ru","icons":{"128":"img/icon128.png","16":"img/icon_16.png","32":"img/icon32.png","48":"img/icon48.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCrGdoK4lkacPAZMjLYzCvcWTErszxg/9sMKevjFxAPr/lrhAzdHgx78v0kbzz05W46crYuK/scFXNv8+QgPhuw9E4JrHVwU6hU1R0KbUWMf7omjXhJzuHxA78IGe8puDTvgOMKWUuR2PspQ59KNj2K1uPayuilPG4NPpBsNVkGPwIDAQAB","manifest_version":2,"name":"WallPepper ВКонтакте","options_page":"options.html","permissions":["\u003Call_urls>","unlimitedStorage","bookmarks","browsingData","contextMenus","downloads","history","tabs","topSites","webNavigation","webRequest","webRequestBlocking"],"update_url":"https://clients2.google.com/service/update2/crx","version":"1.0.4","web_accessible_resources":["scripts/*","default_wallpaper.png","img/*"]},"path":"pepjgkdpkihjnbdaggonbpphlfkbhdli\\1.0.4_0","preferences":{},"regular_only_preferences":{},"state":2,"was_installed_by_default":false,"was_installed_by_oem":false}}},"google":{"services":{"last_username":"honza.karika1@gmail.com"}},"pinned_tabs":[],"prefs":{"preference_reset_time":"13078432620016203"},"protection":{"macs":{"browser":{"show_home_button":"7A3CADF5A6D35A87ECC39AB0A844EE25D785D4A488C25CA5041498EEE49B0AD7"},"default_search_provider":{"keyword":"85EF56C3A8F9A0C21A2C110085562EAF0C511B8207A815B73E5F327434FFEFBA","name":"AAA6140D611C9B12B152D1B92A28D0BF8C500AED0C6266537A5C5E7BB15EB1D3","search_url":"12D51094E20B3C16E03BC59A58E12B017BFFF363B176F57B58EA675B57F6BC21"},"default_search_provider_data":{"template_url_data":"0C1FCF84AFDFB37BAA9E299B3CFFE269DF438C96B61CE76A746E4AF4346A4225"},"extensions":{"settings":{"ahfgeienlihckogmohjhadlkjgocpleb":"A451D4387FEBC5419AE927CD973BFF5899A634B80B86CB556FEA7244AA6007AA","bbmegnmpleoagolcnjnejdacakedpcgd":"58734086035263B9539D8CFF101EC7223804036ED6063B36D96AD8E9ED12FF8D","bepbmhgboaologfdajaanbcjmnhjmhfn":"D0EB30CC1AB052E62AC33F9ABF8BCE209B4E9F8E869D996080FE5A5C7A6CA2D9","dnhpdliibojhegemfjheidglijccjfmc":"261921D4B17A5DA8E145D93231C942DC1FA08C955F0070AFBAE7F2F0E7F4B3B7","eemcgdkfndhakfknompkggombfjjjeno":"47245D50BC9B93CE003CDEB5A5EDD68D39922B763460FE916A9E9FDB72047786","eiopijlgmhlnidmicgbnbfldionpemjl":"8928353FF5F5F125D8B870DC9CBBC814FF30F799807992660ECF0A5A0C7B8AF9","ennkphjdgehloodpbhlhldgbnhmacadg":"94017AD9EC7EA8C7EF75E6A4B6AF6342857DF19D85CDF079E60522FE8BE1D22B","gfdkimpbcpahaombhbimeihdjnejgicl":"5A9C8D1A41EB69FD79F4300D43E30B05BB1E4D7AC95FDB0290D06F3A65A64ECF","gomekmidlodglbbmalcneegieacbdmki":"5D6EA6C2DDF0DFFCC4E4FC777494704A1815FD250D646960348ECBD5128F2712","jjbpgpimaaapjeliigmiienliknmgnip":"91FE33DCFD69D7EDC309A0C8B2D09417C147F1AB8203D7153DF23D48353D1477","jojpkokphfnjlhbnbcilnhgnkkobkngd":"D2E12AAF876C855AE1FA0AF3E1B0B5AA05B20E59D3E2C94F37DC33F6EB8DAACB","kegdldmohomdaelnepdpbkdhfemobdgl":"1134845EAAEC1580161EC0CAE7A15AB1DE743F08B60A9AE3AD9B223EB85FCB70","kmendfapggjehodndflmmgagdbamhnfd":"10E54E55628E05A91113D62B19EA6EF64C2EC8F6EE8797D7BE6FB2659D76A056","lifbcibllhkdhoafpjfnlhfpfgnpldfl":"8589ABFBD924D8EAAA5F7F8C76072FBEFCE0C6EF1E9918EAFBB405CBB39D7CD8","mfehgcgbbipciphmccgaenjidiccnmng":"27C12DCF89F4D4097D17EB8C899F91BA9810A8A4301FC07CF7B8236F60BE113B","mfffpogegjflfpflabcdkioaeobkgjik":"C1F07BF8CA9B3AC317BFEC3D519B347C165DC136B785B51FFA4467F55CDF57DF","mgndgikekgjfcpckkfioiadnlibdjbkf":"C9B9CB51D22B021ACC7E59B929068AD4D64740854354A968B1490A503F709AAD","mhjfbmdgcfjbbpaeojofohoefgiehjai":"05A4A99381A74A552F4F07D4E8B3E9DB25483210DA7AB9B69CD6163487F5E82C","mjafmkicbmhcbapadecadciafbkecofl":"56101CEFD87028800C61D5B380CAA733CD74F1ADFD3AFF7F2C181DDEBDB3C262","neajdppkdcdipfabeoofebfddakdcjhd":"789D50CB0992D6EC0925D59C21416395AE01CEE348119F824BD0014739E31411","nfengeggddojhakldhlpjdlddgkkjkdd":"F35CA901FD338F8510B6779379AB3F4B1F85A35E7F0AFB1EFC4D07896B627F4D","nkeimhogjdpnpccoofpliimaahmaaome":"DB183E48060D7DC5B110DB82362EBF2C575287D993BC836656F395B7821A5AAB","nmmhkkegccagdldgiimedpiccmgmieda":"7F8C057D3E3D0DF3E88D5B92E5A80AAC1F1432C7B5D8ED890A3DF838AA21216B","pafkbggdmjlpgkdkcbjmhmfcdpncadgh":"1DC3D8B09B41215FC923D6DE84FC75CD9FC762988CC4AC51CA0D6FAF697E3BBB","pepjgkdpkihjnbdaggonbpphlfkbhdli":"26C10E83D3756629F6674668D19CC9CF4F872B1B78BB5930000E1707044F1035"}},"google":{"services":{"last_username":"8043564683528E27992B4BA92846B8C768F9CC3E69DC5614DB5CA64EC9477182","username":"476AFF565003C491959C651990282AE750798441FC2DB81E933867D32DFDCE2B"}},"homepage":"C8A1CEA8261069B8F24A9DE697F1434BAB5929B48B63C7160A737C02DDC86D95","homepage_is_newtabpage":"D611840BB4734039EC355CFFAC5203D69364686B1E42A8F346B87A1FE74A6057","pinned_tabs":"2D603AB519B2717042923CE18B940410E24DBAA3A7724236166A6E53A7D6502C","prefs":{"preference_reset_time":"73F1411286D0A913D6CFFD220F9DAD406E4E75072CA5CFBBB1D4E4927C506468"},"profile":{"reset_prompt_memento":"14A23EA68B3572848A620AA947201B07F748FE5367DE969C532EFE1F84CDDAF2"},"safebrowsing":{"incidents_sent":"250FD3C457A8D8F64B50D42E559DEE38373446E4C6150E001B68DC8764758010"},"search_provider_overrides":"C8304A61E9BD95CB4FF238B3671C641729D7D291A74A3A51AD38EF7EB84D51EA","session":{"restore_on_startup":"CC262208B82A713164A4C54734BCDC1EFD1687661510A41F9B503874FCA96C5B","startup_urls":"CC0E0C3F18CDBADDF955B6186ECB3E5176E3AED7299FCD2691B744536BE4D96B"},"software_reporter":{"prompt_reason":"8E5F3806EA21BF80D6F3288EB67D9A0CB81DC586DF6F96C1DFDD92F01E48E6F3","prompt_seed":"1D09E45774F2F4440C8173D2E55D9D8401CC3A068522373DD69C552FD4BA3154","prompt_version":"7194117071637D044E7BA64BAF519C1444E3F390A2F80D64CDDFA93428426EE0"},"sync":{"remaining_rollback_tries":"623579B110B67681985FBEF6230C337A7F62D4F77B3C975E45D363C4E36D0353"}},"super_mac":"3D9E3DE13D0FF5CC8BBA63F7DFECE71CD079D4E23701496E4999F5EA764019FE"},"session":{"restore_on_startup":4,"startup_urls":["http://www.google.com/"]},"sync":{"remaining_rollback_tries":0}}


==== Chromium Fix ======================

C:\Users\gamers\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gnjbfdmiommbcdfigaefehgdndnpeech deleted successfully
C:\Users\gamers\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_gnjbfdmiommbcdfigaefehgdndnpeech_0.localstorage deleted successfully
C:\Users\gamers\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_gnjbfdmiommbcdfigaefehgdndnpeech_0.localstorage-journal deleted successfully
C:\Users\gamers\AppData\Local\Comodo\Dragon\User Data\Default\databases\chrome-extension_gnjbfdmiommbcdfigaefehgdndnpeech_0 deleted successfully
C:\Users\gamers\AppData\Local\Comodo\Dragon\User Data\Default\Local Extension Settings\gnjbfdmiommbcdfigaefehgdndnpeech deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
"Old Start Page"="http://www.google.com"
"Search Page"="https://www.google.com/search?trackid=sp-006&q={searchTerms}"
"Search Bar"="https://www.google.com/?trackid=sp-006"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.com/?trackid=sp-006"
"Search Page"="https://www.google.com/search?trackid=sp-006&q={searchTerms}"
"Search Bar"="https://www.google.com/?trackid=sp-006"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
"Old Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{23352B60-4F79-4D47-A986-1CAB42DB4AEB} Slovnˇk EN/CZ Url="http://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454"
{25AC65E2-E0A3-4EF5-B748-4DF5B78B37F0} Firmy.cz Url="http://www.firmy.cz/phr/{searchTerms}?sourceid=QuickSearch_12454"
{261EA39A-3656-4E0C-8395-D0BA915BBD0A} Encyklopedie Seznam Url="http://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454"
{4187F0FC-AF41-4E4B-AE67-84C8FD35A0AE} terra.im Url="http://terra.im/search?q={searchTerms}"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7"
{713E0064-558F-4AF4-8A92-A10909AEF6DF} Mapy.cz Url="http://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_12454"
{92BAC1FD-0E27-465F-B6C6-ACEF8099455C} Slovnˇk CZ/EN Url="http://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454"
{ADBF7D0B-8DDB-4B88-8370-716876440C0A} Zbo§ˇ.cz Url="http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_12454"
{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} Google Url="https://www.google.com/search?trackid=sp-006&q={searchTerms}"

==== Reset Google Chrome ======================

C:\Users\gamers\AppData\Local\Comodo\Dragon\User Data\Default\Preferences was reset successfully
C:\Users\gamers\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\gamers\AppData\Local\Google\Chrome\User Data\Default\Preferences.bad was reset successfully
C:\Users\gamers\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\gamers\AppData\Local\Comodo\Dragon\User Data\Default\Web Data was reset successfully
C:\Users\gamers\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\gamers\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\gamers\AppData\Local\Google\Chrome\User Data\Default\Web Data.ReadOnly was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\85AD1B079B2A0AE48BD30FC3EBAE2ED2 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\903C920E1244B01498A0032D8E8ED2C0 deleted successfully
HKEY_CURRENT_USER\Software\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\85AD1B079B2A0AE48BD30FC3EBAE2ED2 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\903C920E1244B01498A0032D8E8ED2C0 deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Creative Cloud deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Cracked Steam Service deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui deleted successfully

==== Empty IE Cache ======================

C:\Users\gamers\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\gamers\AppData\Local\Comodo\Dragon\User Data\Default\Cache emptied successfully
C:\Users\gamers\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=275 folders=92 138973341 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\gamers\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\gamers\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Program Files\LogMeIn Hamachi" not found
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

==== EOF on st 10.06.2015 at 21:34:04,35 ======================

[BooTKo.]

LOG s HiJackThis: Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:44:44, on 10.6.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)


Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Microsoft Office\Office15\MsoSync.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Razer\Synapse\RzSynapse.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Gaming Keyboard\Monitor.EXE
C:\Program Files\MSI\Live Update\Live Update.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Bloody5\Bloody5\Bloody5.exe
C:\Program Files\Gaming Keyboard\OSD.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\RunDll32.exe
C:\Users\gamers\Desktop\HijackThis.exe
C:\Program Files\Maxthon\Bin\Maxthon.exe
C:\Program Files\Maxthon\Bin\Maxthon.exe
C:\Program Files\Maxthon\Bin\Maxthon.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer, enhanced for Bing and MSN
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [ShadowPlay] C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [RazerGameBooster] C:\Program Files\Razer\Razer Game Booster\RazerGameBooster.exe -autorun
O4 - HKLM\..\Run: [Gaming Keyboard] "C:\Program Files\Gaming Keyboard\Monitor.exe"
O4 - HKLM\..\Run: [Live Update] C:\Program Files\MSI\Live Update\Live Update.exe /REMINDER
O4 - HKCU\..\Run: [LaunchList] C:\Program Files\Pinnacle\Studio 11\LaunchList2.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Bloody2] "C:\Program Files\Bloody5\Bloody5\Bloody5.exe" Minimum
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil32_14_0_0_145_ActiveX.exe -update activex (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} (Battlefield Heroes Updater) - http://www.battlefieldheroes.com/static ... .203.0.cab
O16 - DPF: {C8BC46C7-921C-4102-B67D-F1F7E65FB0BE} - https://battlefield.play4free.com/stati ... 0.96.0.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) - Unknown owner - C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Desura Install Service - Desura Net Pty Ltd - C:\Program Files\Common Files\Desura\desura_service.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HWDeviceService.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LMIGuardianSvc - Unknown owner - C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe (file missing)
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: MSI_LiveUpdate_Service - Micro-Star INT'L CO., LTD. - C:\Program Files\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: O2 Internet. OUC (O2 Internet. RunOuc) - Unknown owner - C:\Program Files\O2 Internet\UpdateDog\ouc.exe (file missing)
O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:\Windows\system32\drivers\pclepci.sys
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: RzKLService - Razer Inc. - C:\Program Files\Razer\Razer Game Booster\RzKLService.exe
O23 - Service: Razer Surround Audio Service (RzMaelstromVADStreamingService) - Unknown owner - C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - VIA Technologies, Inc. - C:\Windows\system32\viakaraokesrv.exe

--
End of file - 9264 bytes

[Orcus]

V HJT fixni:

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer, enhanced for Bing and MSN
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Live Update] C:\Program Files\MSI\Live Update\Live Update.exe /REMINDER
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil32_14_0_0_145_ActiveX.exe -update activex (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')

Vyčisti systém CCleanerem

====================================================

Stáhni si zde DelFix
http://general-changelog-team.fr/fr/dow ... e/9-delfix

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore) .
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci.

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde:
v C: \ DelFix.txt

Co problémy?

[BooTKo.]

Zítra to dodělám :)

[BooTKo.]

A jak to mam fixnout ? Jen pro informaci na zitrek

[BooTKo.]

A ještě proč píšete Jaké problémy ? Kde by měli být problémy?