Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-12-2016
Ran by DK (administrator) on DK-PC (04-12-2016 22:56:08)
Running from D:\
Loaded Profiles: DK (Available Profiles: DK & Guest)
Platform: Windows 8.1 Pro (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Safe Mode (minimal)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\cmd.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [LenovoOptMouseUpdate] => C:\Program Files\Lenovo\HOTKEY\extapsup.exe [341448 2014-11-07] (Lenovo Group Limited)
HKLM\...\Run: [LenovoNal] => C:\Program Files\Lenovo\Lenovo Peer Connect\NalService.exe [19960 2013-10-18] (Lenovo)
HKLM\...\Run: [PasswordManager] => C:\Program Files\Lenovo\Password Manager\password_manager.exe [1792800 2014-10-21] (Lenovo Group Limited)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM\...\Run: [LnvMobHotspotClient] => C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [939976 2015-02-20] (Lenovo)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13653208 2013-09-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-30] (Realtek Semiconductor)
HKLM\...\Run: [LMCSSTART1] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [35856 2016-04-12] (Lenovo Corporation)
HKLM\...\Run: [LMCSSTART2] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [35856 2016-04-12] (Lenovo Corporation)
HKLM\...\Run: [LMCSSTART3] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [35856 2016-04-12] (Lenovo Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-03-30] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-09-09] (Apple Inc.)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1178400 2015-07-06] (Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595992 2016-05-20] (Oracle Corporation)
HKLM-x32\...\Run: [avast5] => C:\Program Files\Avast5\avastUI.exe [2769336 2010-03-09] (ALWIL Software)
HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\Run: [EPSON SX420W Series (kopie 3)] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGCE.EXE [224768 2009-09-14] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\MountPoints2: {051ff82f-3b8b-11e5-bef2-b918889a0241} - "D:\Lenovo_Suite.exe" 
HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\MountPoints2: {1546e047-5a26-11e4-becc-aa7dfc1fed90} - "E:\NokiaPCIA.exe" 
HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\MountPoints2: {1563bea0-388f-11e5-bef0-cedf9c52c942} - "D:\Lenovo_Suite.exe" 
HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\MountPoints2: {59194e9f-4197-11e5-befa-d041b1215b65} - "D:\Lenovo_Suite.exe" 
HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\MountPoints2: {bddad114-ad84-11e4-bedc-b8763fa882fc} - "D:\HTC_Sync_Manager_PC.exe" 
HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\MountPoints2: {c0b4c533-3dd7-11e5-bef5-aaf76acdd06f} - "D:\Lenovo_Suite.exe" 
HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\MountPoints2: {df0a513d-ffce-11e5-bf2b-b8763fa882fc} - "D:\autorun.exe" 
HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\MountPoints2: {e0ca3dd9-bf89-11e4-bede-f870039bd2df} - "E:\Lenovo_Suite.exe" 
HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\MountPoints2: {e7af9fc6-d997-11e5-bf29-b8763fa882fc} - "D:\Lenovo_Suite.exe" 
HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\MountPoints2: {fadbe8c1-b290-11e3-be88-b8763fa882fc} - "E:\HTC_Sync_Manager_PC.exe" 
Lsa: [Notification Packages] scecli C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-04-16] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-04-16] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-04-16] ()
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} =>  No File
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} =>  No File
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} =>  No File
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} =>  No File
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2014-07-18]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\DK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\trz3CB2.tmp [2016-09-14] ()
Startup: C:\Users\DK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\trzE838.tmp [2016-09-14] ()
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 127.0.0.1 fvc_stat.freemake.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6B6BE8DE-F2CB-4C4C-A503-C299B6979785}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-800057701-3447766818-2358033227-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-800057701-3447766818-2358033227-1001 -> DefaultScope {577F10BA-8DB5-4E71-B692-391F5CD336E4} URL = 
SearchScopes: HKU\S-1-5-21-800057701-3447766818-2358033227-1001 -> {577F10BA-8DB5-4E71-B692-391F5CD336E4} URL = 
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-11-12] (IObit)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
BHO: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-06-15] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-06-15] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)

FireFox:
========
FF ProfilePath: C:\Users\DK\AppData\Roaming\Mozilla\Firefox\Profiles\h7flovwy.default [2016-12-04]
FF user.js: detected! => C:\Users\DK\AppData\Roaming\Mozilla\Firefox\Profiles\h7flovwy.default\user.js [2015-09-18]
FF Session Restore: Mozilla\Firefox\Profiles\h7flovwy.default -> is enabled.
FF Keyword.URL: Mozilla\Firefox\Profiles\h7flovwy.default -> hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=
FF NetworkProxy: Mozilla\Firefox\Profiles\h7flovwy.default -> ftp", "88.83.241.232"
FF NetworkProxy: Mozilla\Firefox\Profiles\h7flovwy.default -> ftp_port", 1080
FF NetworkProxy: Mozilla\Firefox\Profiles\h7flovwy.default -> http", "88.83.241.232"
FF NetworkProxy: Mozilla\Firefox\Profiles\h7flovwy.default -> http_port", 1080
FF NetworkProxy: Mozilla\Firefox\Profiles\h7flovwy.default -> share_proxy_settings", true
FF NetworkProxy: Mozilla\Firefox\Profiles\h7flovwy.default -> socks", "88.83.241.232"
FF NetworkProxy: Mozilla\Firefox\Profiles\h7flovwy.default -> socks_port", 1080
FF NetworkProxy: Mozilla\Firefox\Profiles\h7flovwy.default -> socks_version", 4
FF NetworkProxy: Mozilla\Firefox\Profiles\h7flovwy.default -> ssl", "88.83.241.232"
FF NetworkProxy: Mozilla\Firefox\Profiles\h7flovwy.default -> ssl_port", 1080
FF Extension: (Adblock Plus Pop-up Addon) - C:\Users\DK\AppData\Roaming\Mozilla\Firefox\Profiles\h7flovwy.default\Extensions\adblockpopups@jessehakanen.net.xpi [2016-05-26]
FF Extension: (Flash Video Downloader - YouTube HD Download [4K]) - C:\Users\DK\AppData\Roaming\Mozilla\Firefox\Profiles\h7flovwy.default\Extensions\artur.dubovoy@gmail.com [2016-11-14]
FF Extension: (F.B. Purity - Cleans Up Facebook) - C:\Users\DK\AppData\Roaming\Mozilla\Firefox\Profiles\h7flovwy.default\Extensions\fbp-signed@fbpurity.com.xpi [2016-02-25]
FF Extension: (FoxyProxy Standard) - C:\Users\DK\AppData\Roaming\Mozilla\Firefox\Profiles\h7flovwy.default\Extensions\foxyproxy@eric.h.jung [2016-09-04]
FF Extension: (Facebook Secret Emoticons) - C:\Users\DK\AppData\Roaming\Mozilla\Firefox\Profiles\h7flovwy.default\Extensions\jid0-XZn6pYCdV3ANrfYigxlyyGDrxAM@jetpack.xpi [2016-05-25]
FF Extension: (Classic Compact Options) - C:\Users\DK\AppData\Roaming\Mozilla\Firefox\Profiles\h7flovwy.default\Extensions\notreal.ccoptions@environmentalchemistry.com.xpi [2015-06-02]
FF Extension: (LittleFox) - C:\Users\DK\AppData\Roaming\Mozilla\Firefox\Profiles\h7flovwy.default\Extensions\{29852C08-1E91-4889-A6BF-C77F91D6A8F3}.xpi [2016-11-08]
FF Extension: (Adblock Plus) - C:\Users\DK\AppData\Roaming\Mozilla\Firefox\Profiles\h7flovwy.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-29]
FF SearchPlugin: C:\Users\DK\AppData\Roaming\Mozilla\Firefox\Profiles\h7flovwy.default\searchplugins\idealode.xml [2013-06-11]
FF SearchPlugin: C:\Users\DK\AppData\Roaming\Mozilla\Firefox\Profiles\h7flovwy.default\searchplugins\zbocz.xml [2010-07-22]
FF HKU\S-1-5-21-800057701-3447766818-2358033227-1001\...\Firefox\Extensions: [{F74D5734-46F5-4B16-96F0-1E7FBF41B750}] - C:\Program Files (x86)\Lenovo\Password Manager\PWM Firefox Extension\2.0b12
FF Extension: (ThinkVantage Password Manager) - C:\Program Files (x86)\Lenovo\Password Manager\PWM Firefox Extension\2.0b12 [2014-07-18] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-08] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-08] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-06-15] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-06-15] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [No File]
FF Plugin HKU\S-1-5-21-800057701-3447766818-2358033227-1001: @hola.org/vlc,version=1.7.974 -> C:\Users\DK\AppData\Local\Hola\firefox\app\vlc [No File]
FF Plugin HKU\S-1-5-21-800057701-3447766818-2358033227-1001: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll [2012-12-14] (Intel)
FF Plugin HKU\S-1-5-21-800057701-3447766818-2358033227-1001: intel.com/AppUpx64 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll [2012-12-14] (Intel)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\DK\AppData\Local\Google\Chrome\User Data\Default [2016-12-04]
CHR Extension: (Prezentace Google) - C:\Users\DK\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-05-27]
CHR Extension: (Dokumenty Google) - C:\Users\DK\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-04]
CHR Extension: (Disk Google) - C:\Users\DK\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-25]
CHR Extension: (Seznam Lištička - Email) - C:\Users\DK\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-11-10]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\DK\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-12-04]
CHR Extension: (YouTube) - C:\Users\DK\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Vyhledávání Google) - C:\Users\DK\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-04]
CHR Extension: (Tabulky Google) - C:\Users\DK\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-05-27]
CHR Extension: (Dokumenty Google offline) - C:\Users\DK\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-11]
CHR Extension: (Facebook pozvat všechny přátel 2016) - C:\Users\DK\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkifjigoeilijkcnpfdjbpdjgnbfibec [2016-06-21]
CHR Extension: (ThinkVantage Password Manager) - C:\Users\DK\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpdfbkehegfmedglgemnhbnpmfmioggj [2014-07-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\DK\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-11]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\DK\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-12-04]
CHR Extension: (Gmail) - C:\Users\DK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-28]
CHR Extension: (Chrome Media Router) - C:\Users\DK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-01]
CHR HKLM-x32\...\Chrome\Extension: [lpdfbkehegfmedglgemnhbnpmfmioggj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-08-05] (Apple Inc.)
S2 avast! Antivirus; C:\Program Files\Avast5\AvastSvc.exe [40384 2010-03-09] (ALWIL Software)
S3 avast! Mail Scanner; C:\Program Files\Avast5\AvastSvc.exe [40384 2010-03-09] (ALWIL Software)
S3 avast! Web Scanner; C:\Program Files\Avast5\AvastSvc.exe [40384 2010-03-09] (ALWIL Software)
S2 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [566288 2016-04-12] (Lenovo Corporation)
S2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [2251992 2013-11-14] (Broadcom Corporation.)
S2 EPSON_EB_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [168448 2011-01-11] (SEIKO EPSON CORPORATION) [File not signed]
S2 EPSON_PM_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [131072 2011-01-11] (SEIKO EPSON CORPORATION) [File not signed]
S2 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [413848 2015-07-16] ()
S2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-07-06] (Intel Corporation)
S2 jswpbapi; C:\Program Files (x86)\Jumpstart\jswpbapi.exe [265216 2008-09-26] (Atheros Communications, Inc.) [File not signed]
S3 jswpsapi; C:\Program Files (x86)\Jumpstart\jswpsapi.exe [954368 2008-09-26] (Atheros Communications, Inc.) [File not signed]
S2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2023592 2015-09-25] (Lenovo Group Limited)
S2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584664 2015-12-14] (LENOVO INCORPORATED.)
S2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [631312 2016-04-12] (Lenovo Corporation)
S2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [114632 2015-07-13] (Lenovo Group Limited)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2945312 2016-01-14] (IObit)
S2 lnvDiscoveryWinSvc; C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe [21496 2013-10-18] (Lenovo)
S3 LnvHotSpotSvc; C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [480712 2015-03-23] (Lenovo)
S2 LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [469720 2015-05-12] ()
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-08-13] ()
S2 Polar Daemon; C:\Program Files (x86)\Polar\Daemon\polard.exe [419536 2012-12-12] ()
S2 QuickControlMasterSvc; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [59440 2013-12-16] (Lenovo Group Limited)
S3 QuickControlService; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [319024 2013-12-16] (Lenovo Group Limited)
S2 RalinkRegistryWriter; C:\Program Files (x86)\OSTotoHotspot\RaRegistry.exe [391472 2016-11-10] (Ralink Technology, Corp.)
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [28544 2016-09-10] ()
S2 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [105112 2015-07-16] ()
S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [413848 2015-07-16] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S2 WifiSrv; C:\Program Files (x86)\OSTotoHotspot\WifiService.exe [194216 2016-11-10] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
S2 WMCoreService; C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe [689560 2012-10-18] (Ericsson AB)
S2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.2.4.1\WsAppService.exe [417792 2016-07-12] (Wondershare) [File not signed]
S2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831712 2015-08-13] (Intel® Corporation)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\DrFone for iOS\DriverInstall.exe [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S1 160WifiNat; C:\Program Files (x86)\OSTotoHotspot\driver\WiFiNat64.sys [27888 2016-11-10] ()
S3 arusb(Atheros); C:\WINDOWS\system32\DRIVERS\arusb.sys [723968 2010-04-20] (Atheros Communications, Inc.) [File not signed]
S3 arusb_win7x; C:\WINDOWS\system32\DRIVERS\arusb_win7x.sys [767488 2009-10-21] (Atheros Communications, Inc.)
S2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [22096 2010-03-09] (ALWIL Software)
S2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [63568 2010-03-09] (ALWIL Software)
S1 aswRdr; C:\Windows\System32\Drivers\aswRdr.sys [28752 2010-03-09] (ALWIL Software)
S1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [121936 2010-03-09] (ALWIL Software)
S1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [51280 2010-03-09] (ALWIL Software)
S3 AX88772; C:\WINDOWS\system32\DRIVERS\ax88772.sys [113864 2013-07-18] (ASIX Electronics Corp.)
S3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [170712 2013-11-14] (Broadcom Corporation.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-05-27] (Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-05-27] (Disc Soft Ltd)
S3 ecnssndis; C:\WINDOWS\System32\Drivers\wwuss64.sys [26664 2011-10-05] (Ericsson AB)
S3 ecnssndisfltr; C:\WINDOWS\System32\Drivers\wwussf64.sys [29736 2011-10-05] (Ericsson AB)
S1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2016-01-07] (REALiX(tm))
R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD64.sys [46016 2012-08-24] ()
R3 LnvHIDHW; C:\WINDOWS\System32\drivers\LnvHIDHW.sys [29496 2014-04-07] (Lenovo)
S3 MbmLowExt; C:\WINDOWS\System32\Drivers\MbmLowExt.sys [35840 2012-12-07] (Ericsson AB)
S3 MbmUsbSerial; C:\WINDOWS\System32\Drivers\MbmUsbSerial.sys [72704 2012-07-03] (Ericsson AB)
R3 MkBusFilter; C:\WINDOWS\System32\drivers\MbmDeviceFilter.sys [40760 2012-12-05] (Ericsson AB)
S3 NETwNe64; C:\WINDOWS\system32\DRIVERS\NETwew01.sys [3354384 2015-05-04] (Intel Corporation)
S2 npf; C:\WINDOWS\System32\drivers\npf.sys [36600 2014-04-18] (Riverbed Technology, Inc.)
S3 pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] ()
S3 RtlWlanu; C:\WINDOWS\system32\DRIVERS\rtwlanu.sys [1975000 2013-07-31] (Realtek Semiconductor Corporation                           )
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [45296 2014-07-28] (Synaptics Incorporated)
S2 smihlp2; C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [13128 2011-05-31] (Authentec Inc.)
S3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv_x64.sys [1450104 2013-03-15] (Sunplus)
S3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [47072 2012-10-10] (Windows (R) Win 7 DDK provider)
S1 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [121248 2016-09-12] (Oracle Corporation)
S1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [195936 2016-09-12] (Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 wmbclass; C:\WINDOWS\System32\drivers\wmbclass.sys [268288 2013-11-01] (Microsoft Corporation)
S3 WUDFWpdComp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
S3 XHCIPort; C:\WINDOWS\System32\drivers\XHCIPort.sys [188896 2012-10-10] (Windows (R) Win 7 DDK provider)
S1 160WifiNetPro; \??\C:\Program Files (x86)\OSTotoHotspot\160WifiNetPro64.sys [X]
S3 avchv; \SystemRoot\system32\DRIVERS\avchv.sys [X]
S3 huawei_enumerator; \SystemRoot\System32\drivers\ew_jubusenum.sys [X]
S3 massfilter; system32\drivers\massfilter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-12-04 22:55 - 2016-12-04 22:56 - 00000000 ____D C:\FRST
2016-12-04 22:51 - 2016-12-04 22:52 - 00289686 _____ C:\WINDOWS\ntbtlog.txt
2016-12-04 22:41 - 2016-12-04 22:41 - 02419200 _____ (Farbar) C:\Users\DK\Downloads\FRST64.exe
2016-12-04 22:07 - 2016-12-04 22:07 - 00157720 _____ C:\Users\DK\Downloads\OTL.Txt
2016-12-04 22:07 - 2016-12-04 22:07 - 00100954 _____ C:\Users\DK\Downloads\Extras.Txt
2016-12-04 21:42 - 2016-12-04 21:42 - 05198336 _____ (AVAST Software) C:\Users\DK\Downloads\aswMBR.exe
2016-12-04 21:41 - 2016-12-04 21:41 - 00602112 _____ (OldTimer Tools) C:\Users\DK\Downloads\OTL.exe
2016-12-04 21:39 - 2016-12-04 21:39 - 05659954 _____ (Swearware) C:\Users\DK\Downloads\ComboFix(1).exe
2016-12-04 21:39 - 2016-12-04 21:39 - 03968464 _____ C:\Users\DK\Downloads\AdwCleaner.exe
2016-12-04 21:33 - 2016-12-04 21:34 - 145399808 _____ C:\Users\DK\Desktop\rescue_system-common-en.iso
2016-12-04 13:12 - 2016-12-04 13:12 - 00001125 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-12-04 13:11 - 2016-12-04 13:11 - 22851472 _____ (Malwarebytes ) C:\Users\DK\Downloads\mbam-setup-2.2.1.1043.exe
2016-12-04 13:08 - 2016-12-04 18:39 - 00000000 ____D C:\Users\DK\AppData\Local\ESET
2016-12-04 13:08 - 2016-12-04 13:08 - 06761600 _____ (ESET spol. s r.o.) C:\Users\DK\Downloads\esetonlinescanner_enu.exe
2016-12-04 09:57 - 2016-12-04 09:57 - 00000885 _____ C:\Users\DK\Desktop\Videa – zástupce.lnk
2016-12-04 09:56 - 2016-12-04 10:17 - 00000000 ____D C:\Users\DK\Downloads\kali-linux-2016.2-amd64
2016-12-04 09:47 - 2016-12-04 11:35 - 00000000 ____D C:\Users\DK\Desktop\deti p.e
2016-11-23 10:45 - 2016-11-23 10:45 - 00001090 _____ C:\Users\DK\Desktop\OSTotoHotspot.lnk
2016-11-23 10:44 - 2016-11-23 10:44 - 00000000 ____D C:\WINDOWS\LastGood
2016-11-23 10:43 - 2016-11-23 10:44 - 09878696 _____ (Drive The Life Co., Ltd) C:\Users\DK\Downloads\OSToto-Hotspot_24984.1.10.8.exe
2016-11-23 10:34 - 2016-12-04 22:36 - 00000000 ____D C:\Users\DK\AppData\LocalLow\Mozilla
2016-11-18 15:13 - 2016-11-19 18:00 - 00000000 ____D C:\Users\DK\Downloads\sam-doma-2-ztracen-v-new-yorku pres MultiLoad
2016-11-16 21:11 - 2016-11-17 19:10 - 00000000 ____D C:\Users\DK\Downloads\sám-doma-1-cz
2016-11-14 22:05 - 2016-12-04 18:38 - 00000000 ____D C:\Users\DK\Downloads\FVC softarchive
2016-11-14 21:54 - 2016-11-14 22:02 - 09786480 _____ C:\Users\DK\Downloads\WiseVideoConverterPortable.1.61.53.softarchive.la.rar
2016-11-14 16:10 - 2016-11-14 16:48 - 00000000 ____D C:\Users\DK\Downloads\FreemakeVideoConverterPortable 4 1 9 45 softarchive
2016-11-14 15:34 - 2016-11-14 16:08 - 40331312 _____ C:\Users\DK\Downloads\FreemakeVideoConverterPortable.4.1.9.45.softarchive.la.rar.part
2016-11-14 10:53 - 2016-12-04 18:41 - 00000000 ____D C:\ProgramData\Freemake
2016-11-14 10:53 - 2016-11-14 10:54 - 00000000 ____D C:\Users\DK\Documents\Freemake
2016-11-14 10:49 - 2016-11-14 10:49 - 00000000 ____D C:\Program Files (x86)\Freemake
2016-11-12 19:54 - 2016-11-14 15:47 - 00000000 ____D C:\Users\DK\Desktop\gallivare video

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-12-04 22:55 - 2013-11-14 13:39 - 01745984 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-12-04 22:55 - 2013-11-14 13:24 - 00738682 _____ C:\WINDOWS\system32\perfh005.dat
2016-12-04 22:55 - 2013-11-14 13:24 - 00151404 _____ C:\WINDOWS\system32\perfc005.dat
2016-12-04 22:55 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2016-12-04 22:50 - 2014-01-24 21:53 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-800057701-3447766818-2358033227-1001
2016-12-04 22:50 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-12-04 22:47 - 2014-01-24 22:53 - 00000000 ____D C:\Users\DK\AppData\Roaming\ClassicShell
2016-12-04 22:47 - 2013-06-01 01:45 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2016-12-04 22:45 - 2014-10-17 11:06 - 00001338 _____ C:\WINDOWS\Tasks\AOMUOS.job
2016-12-04 22:45 - 2014-10-17 11:06 - 00001336 _____ C:\WINDOWS\Tasks\XTBOI.job
2016-12-04 22:45 - 2014-06-21 21:04 - 00000000 __SHD C:\Users\DK\IntelGraphicsProfiles
2016-12-04 22:45 - 2014-02-28 21:03 - 00000206 _____ C:\WINDOWS\Tasks\AutoKMS.job
2016-12-04 22:45 - 2014-01-26 21:00 - 00000954 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-12-04 22:45 - 2014-01-25 08:55 - 00000000 ___DO C:\Users\DK\SkyDrive
2016-12-04 22:39 - 2015-08-08 10:33 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-12-04 22:38 - 2014-02-03 18:50 - 00003946 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{64A98244-D9EE-4C06-A6C3-CDD3EBB0D28C}
2016-12-04 22:36 - 2016-01-07 08:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-04 22:30 - 2014-01-26 21:00 - 00000958 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-12-04 22:01 - 2014-01-26 20:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-12-04 22:01 - 2014-01-24 23:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-04 21:56 - 2014-07-10 10:53 - 00000000 ____D C:\AdwCleaner
2016-12-04 18:42 - 2015-09-18 20:05 - 00000284 _____ C:\WINDOWS\Tasks\Uninstaller_SkipUac_DK.job
2016-12-04 18:41 - 2015-09-18 20:05 - 00002378 _____ C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_DK
2016-12-04 18:41 - 2015-09-18 20:05 - 00000000 ____D C:\ProgramData\ProductData
2016-12-04 18:41 - 2014-02-20 15:05 - 00845312 ___SH C:\Users\DK\Desktop\Thumbs.db
2016-12-04 18:40 - 2015-12-06 22:19 - 00000000 ____D C:\Users\DK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth
2016-12-04 18:39 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-12-04 18:38 - 2014-07-18 08:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-12-04 18:38 - 2014-06-11 08:26 - 00000000 ____D C:\Program Files (x86)\Java
2016-12-04 15:25 - 2014-10-18 07:54 - 00000270 __RSH C:\ProgramData\ntuser.pol
2016-12-04 15:25 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\ADFS
2016-12-04 14:52 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-12-04 14:44 - 2014-03-27 09:11 - 00000000 ____D C:\WINDOWS\Minidump
2016-12-04 13:14 - 2014-07-10 11:17 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-12-04 13:12 - 2014-07-10 11:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-12-04 13:12 - 2014-07-10 11:14 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-12-04 12:04 - 2014-02-28 21:03 - 00000222 _____ C:\WINDOWS\Tasks\AutoKMSDaily.job
2016-12-04 11:35 - 2016-08-11 19:35 - 00000000 ____D C:\Users\DK\AppData\LocalLow\uTorrent
2016-12-04 11:35 - 2014-07-04 22:24 - 00000000 ____D C:\Users\DK\AppData\Roaming\uTorrent
2016-12-04 10:03 - 2014-02-04 16:33 - 00000000 ____D C:\Users\DK\AppData\Local\ElevatedDiagnostics
2016-12-04 09:46 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-11-23 10:45 - 2015-12-06 22:50 - 00000000 ____D C:\Program Files (x86)\OSTotoHotspot
2016-11-23 10:24 - 2015-07-30 17:37 - 00000000 ____D C:\Users\DK\AppData\Local\JDownloader 2.0
2016-11-23 10:24 - 2014-01-25 08:13 - 00000000 ____D C:\Users\DK
2016-11-22 19:53 - 2014-02-14 08:27 - 00000000 ____D C:\Users\DK\AppData\Roaming\vlc
2016-11-16 21:33 - 2014-01-26 21:02 - 00002226 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-15 09:06 - 2008-08-01 07:10 - 00000000 ____D C:\Users\DK\Desktop\Anglictina_do_ucha
2016-11-14 10:05 - 2014-03-23 14:05 - 04426752 ___SH C:\Users\DK\Downloads\Thumbs.db
2016-11-12 20:06 - 2016-07-19 22:12 - 00000000 ____D C:\Users\DK\Downloads\13-HODIN---TAJNÍ-VOJÁCI-Z-BENGHAZI-(2016)-CZ-DABING-efren
2016-11-12 20:06 - 2016-07-15 23:04 - 00000000 ____D C:\Users\DK\Downloads\Bratři Grimsby- The-Brothers-Grimsby-2016-BDrip-CZ
2016-11-11 13:15 - 2016-11-03 16:29 - 00000000 ____D C:\Users\DK\Downloads\Den nezávislosti Nový útok 2016 Cz Super Dab Sci-Fi Akční Dobrodružný
2016-11-10 20:30 - 2015-05-26 20:16 - 00004476 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-11-10 20:19 - 2016-06-23 07:31 - 00004154 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-11-09 22:35 - 2015-12-05 15:49 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-08 16:58 - 2014-01-27 22:08 - 00000000 ____D C:\Users\DK\AppData\Roaming\Skype
2016-11-08 15:55 - 2015-07-14 07:17 - 00000000 ____D C:\Users\DK\Desktop\WIFIHACK
2016-11-08 11:39 - 2015-08-08 10:33 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-11-08 11:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-11-08 11:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-11-04 20:40 - 2014-01-26 21:00 - 00000000 ____D C:\Users\DK\AppData\Local\Google

==================== Files in the root of some directories =======

2014-01-24 21:35 - 2014-01-27 22:03 - 0001508 _____ () C:\Users\DK\AppData\Roaming\AbsoluteReminder.xml
2015-09-16 17:03 - 2016-01-09 11:55 - 0000096 _____ () C:\Users\DK\AppData\Roaming\Camdata.ini
2015-09-16 17:03 - 2016-01-09 11:55 - 0000408 _____ () C:\Users\DK\AppData\Roaming\CamLayout.ini
2015-09-16 17:03 - 2016-01-09 11:55 - 0000408 _____ () C:\Users\DK\AppData\Roaming\CamShapes.ini
2015-09-16 17:03 - 2016-01-09 11:55 - 0004534 _____ () C:\Users\DK\AppData\Roaming\CamStudio.cfg
2016-01-09 09:47 - 2016-01-09 10:13 - 0000096 _____ () C:\Users\DK\AppData\Roaming\version2.xml
2016-01-09 11:02 - 2016-01-09 11:09 - 0005120 _____ () C:\Users\DK\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-10-17 09:19 - 2015-10-17 09:19 - 0000218 _____ () C:\Users\DK\AppData\Local\recently-used.xbel
2013-06-01 01:39 - 2013-06-01 01:39 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-01-27 22:08 - 2014-01-27 22:08 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2013-06-01 01:46 - 2013-06-01 01:46 - 0000198 ____H () C:\ProgramData\Lenovo-20061.vbs
2013-06-01 01:48 - 2014-01-25 09:24 - 0004401 _____ () C:\ProgramData\MH_ErrorLog.txt

Some files in TEMP:
====================
C:\Users\DK\AppData\Local\Temp\jre-8u111-windows-au.exe
C:\Users\DK\AppData\Local\Temp\libeay32.dll
C:\Users\DK\AppData\Local\Temp\msvcr120.dll
C:\Users\DK\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-12-04 10:03

==================== End of FRST.txt ============================