﻿Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10.10.2018
Ran by Vláďa Jindřich (administrator) on VLADA (18-10-2018 17:14:49)
Running from C:\Users\Vláďa Jindřich\Downloads
Loaded Profiles: Vláďa Jindřich (Available Profiles: Vláďa Jindřich)
Platform: Windows 8.1 Connected (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
() C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672664 2014-06-30] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242392 2018-09-03] (AVAST Software)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [134784 2014-04-29] (Qualcomm®Atheros®)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 0.0.0.1	mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 10.0.0.2 10.0.0.3
Tcpip\..\Interfaces\{5EE0D3ED-FF26-43C9-AF39-F4871B8234E6}: [DhcpNameServer] 10.0.0.2 10.0.0.3

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2935905808-1350214744-1915146757-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB

FireFox:
========
FF DefaultProfile: 2lwv32hy.default
FF ProfilePath: C:\Users\Vláďa Jindřich\AppData\Roaming\Mozilla\Firefox\Profiles\2lwv32hy.default [2018-10-18]
FF Homepage: Mozilla\Firefox\Profiles\2lwv32hy.default -> google.com
FF NewTab: Mozilla\Firefox\Profiles\2lwv32hy.default -> hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10300_FYD_161123__yaff
FF Extension: (Avast SafePrice) - C:\Users\Vláďa Jindřich\AppData\Roaming\Mozilla\Firefox\Profiles\2lwv32hy.default\Extensions\sp@avast.com.xpi [2018-06-21]
FF Extension: (Avast Online Security) - C:\Users\Vláďa Jindřich\AppData\Roaming\Mozilla\Firefox\Profiles\2lwv32hy.default\Extensions\wrc@avast.com.xpi [2018-10-10]
FF Extension: (Adblock Plus) - C:\Users\Vláďa Jindřich\AppData\Roaming\Mozilla\Firefox\Profiles\2lwv32hy.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-08-31]
FF Extension: (Telemetry coverage) - C:\Users\Vláďa Jindřich\AppData\Roaming\Mozilla\Firefox\Profiles\2lwv32hy.default\features\{35fa2ee2-d4b8-4583-9f20-b0afc5f2cce2}\telemetry-coverage-bug1487578@mozilla.org.xpi [2018-10-10] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_31_0_0_122.dll [2018-10-10] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_122.dll [2018-10-10] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()

Chrome: 
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Vláďa Jindřich\AppData\Local\Google\Chrome\User Data\Default [2018-10-18]
CHR Extension: (Prezentace) - C:\Users\Vláďa Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-20]
CHR Extension: (Dokumenty) - C:\Users\Vláďa Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-20]
CHR Extension: (Disk Google) - C:\Users\Vláďa Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-11]
CHR Extension: (YouTube) - C:\Users\Vláďa Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-02]
CHR Extension: (Vyhledávání Google) - C:\Users\Vláďa Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-30]
CHR Extension: (Avast Online Security (BETA)) - C:\Users\Vláďa Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2018-04-29]
CHR Extension: (Avast SafePrice) - C:\Users\Vláďa Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-09-12]
CHR Extension: (Tabulky) - C:\Users\Vláďa Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\Vláďa Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-11]
CHR Extension: (Avast Online Security) - C:\Users\Vláďa Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-04-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vláďa Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-29]
CHR Extension: (Gmail) - C:\Users\Vláďa Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]
CHR Extension: (Chrome Media Router) - C:\Users\Vláďa Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-06-21]
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7994520 2018-09-03] (AVAST Software)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [319104 2014-04-29] (Windows (R) Win 7 DDK provider) [File not signed]
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-27] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [322464 2018-09-03] (AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-27] (AVAST Software)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2278688 2017-09-26] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573032 2014-06-12] (Acer Incorporated)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [315376 2014-06-09] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-02] (Intel(R) Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [469736 2014-07-28] (Acer Incorporate)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-06-26] (Acer Incorporate)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2014-06-26] (Acer Incorporate)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [234240 2014-07-15] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [199712 2018-09-03] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [229384 2018-09-03] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [201320 2018-09-03] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [346664 2018-09-03] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [59568 2018-09-03] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [249016 2018-09-03] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46968 2018-09-03] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [163392 2018-09-18] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111864 2018-09-03] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [87904 2018-09-03] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1027720 2018-09-03] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [467320 2018-09-04] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215920 2018-09-18] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [381560 2018-09-03] (AVAST Software)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3893248 2014-04-03] (Qualcomm Atheros Communications, Inc.)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-04-29] (Qualcomm Atheros)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [31232 2014-06-09] (Intel Corporation)
R3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [69632 2014-06-09] (Intel Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-18] (Acer Incorporated)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-10-05] (Malwarebytes Corporation)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-18] (Acer Incorporated)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-18 16:59 - 2018-10-18 17:07 - 000009118 _____ C:\Users\Vláďa Jindřich\Downloads\Fixlog.txt
2018-10-18 14:23 - 2018-10-18 14:23 - 000248439 _____ C:\Users\Vláďa Jindřich\Desktop\FRST.txt
2018-10-18 14:23 - 2018-10-18 14:23 - 000040711 _____ C:\Users\Vláďa Jindřich\Desktop\FRST.zip
2018-10-18 14:22 - 2018-10-18 14:22 - 000049092 _____ C:\Users\Vláďa Jindřich\Desktop\Addition.txt
2018-10-18 13:22 - 2018-10-18 13:26 - 000000000 ____D C:\AdwCleaner
2018-10-18 13:22 - 2018-10-18 13:22 - 007592144 _____ (Malwarebytes) C:\Users\Vláďa Jindřich\Downloads\adwcleaner_7.2.4.0.exe
2018-10-18 10:03 - 2018-10-18 14:22 - 000049089 _____ C:\Users\Vláďa Jindřich\Downloads\Addition.txt
2018-10-18 09:52 - 2018-10-18 17:18 - 000015659 _____ C:\Users\Vláďa Jindřich\Downloads\FRST.txt
2018-10-18 09:51 - 2018-10-18 17:14 - 000000000 ____D C:\FRST
2018-10-18 09:50 - 2018-10-18 09:50 - 002414592 _____ (Farbar) C:\Users\Vláďa Jindřich\Downloads\FRST64.exe
2018-10-18 09:47 - 2018-10-18 09:48 - 001774592 _____ (Farbar) C:\Users\Vláďa Jindřich\Downloads\FRST.exe
2018-10-17 18:35 - 2018-10-17 19:12 - 671182848 _____ C:\Users\Vláďa Jindřich\Downloads\Cetnicke humoresky 14 - Klaudynka.avi
2018-10-16 19:17 - 2018-10-16 20:19 - 654329044 _____ C:\Users\Vláďa Jindřich\Downloads\Četnické humoresky - 13.Narodil se kristus pán.avi
2018-10-16 17:53 - 2018-10-16 18:27 - 578247012 _____ C:\Users\Vláďa Jindřich\Downloads\Četnické humoresky - 12 - Cerna ruka.avi
2018-10-15 18:41 - 2018-10-15 19:26 - 807551783 _____ C:\Users\Vláďa Jindřich\Downloads\Četnické humoresky-11-Lázeňské intermezzo-73m-2000-ČR-HD-720p-I.mkv
2018-10-13 15:59 - 2018-10-13 18:38 - 822143370 _____ C:\Users\Vláďa Jindřich\Downloads\Četnické humoresky-10-Repetent-75m-2000-ČR-HD-720p-I.mkv
2018-10-13 14:34 - 2018-10-13 15:34 - 614549810 _____ C:\Users\Vláďa Jindřich\Downloads\Četnické humoresky - 9.Svatba.avi
2018-10-12 19:30 - 2018-10-12 20:30 - 601282482 _____ C:\Users\Vláďa Jindřich\Downloads\Četnické humoresky - 8.Ferda mravenec.avi
2018-10-12 18:14 - 2018-10-12 19:15 - 670195712 _____ C:\Users\Vláďa Jindřich\Downloads\Četnické-humoresky-7.avi
2018-10-10 10:32 - 2018-10-18 16:55 - 000004540 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-10-10 07:05 - 2018-09-18 07:25 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-10-10 07:05 - 2018-09-18 06:42 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-10-10 07:05 - 2018-09-18 06:33 - 020278784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-10-10 07:05 - 2018-09-18 06:21 - 000497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-10-10 07:05 - 2018-09-18 06:13 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-10-10 07:05 - 2018-09-18 05:51 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-10-10 07:05 - 2018-09-18 05:34 - 001330176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-10-10 07:04 - 2018-09-18 07:52 - 025735168 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-10-10 07:04 - 2018-09-18 07:14 - 005779456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-10-10 07:04 - 2018-09-18 07:14 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-10-10 07:04 - 2018-09-18 06:49 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2018-10-10 07:04 - 2018-09-18 06:39 - 015283712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-10-10 07:04 - 2018-09-18 06:35 - 004510720 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-10-10 07:04 - 2018-09-18 06:23 - 001555968 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-10-10 07:04 - 2018-09-18 05:57 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-10-10 07:04 - 2018-09-18 05:55 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2018-10-10 07:04 - 2018-09-18 05:53 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-10-10 07:04 - 2018-09-18 05:37 - 004037632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-10-10 07:04 - 2018-08-26 05:13 - 015441920 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2018-10-10 07:04 - 2018-08-14 21:04 - 004171264 _____ (Gracenote, Inc.) C:\Windows\SysWOW64\gnsdk_fp.dll
2018-10-10 07:04 - 2018-08-09 15:16 - 004876800 _____ (Gracenote, Inc.) C:\Windows\system32\gnsdk_fp.dll
2018-10-10 07:03 - 2018-09-18 06:10 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-10-10 07:03 - 2018-09-18 05:31 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-10-10 07:03 - 2018-09-18 02:26 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2018-10-10 07:03 - 2018-09-11 18:38 - 004168704 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-10-10 07:03 - 2018-09-08 22:53 - 002532552 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2018-10-10 07:03 - 2018-09-08 20:40 - 007372224 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-10-10 07:03 - 2018-09-08 20:40 - 002014136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-10-10 07:03 - 2018-09-08 20:33 - 001368776 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2018-10-10 07:03 - 2018-09-08 20:22 - 001737696 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-10-10 07:03 - 2018-09-08 20:22 - 001676152 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-10-10 07:03 - 2018-09-08 20:22 - 001536216 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-10-10 07:03 - 2018-09-08 20:22 - 001500528 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-10-10 07:03 - 2018-09-08 20:22 - 001371448 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2018-10-10 07:03 - 2018-09-08 19:58 - 001902936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2018-10-10 07:03 - 2018-09-08 17:43 - 001085440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2018-10-10 07:03 - 2018-09-08 04:12 - 001549040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2018-10-10 07:03 - 2018-09-08 04:12 - 000388336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2018-10-10 07:03 - 2018-09-07 19:39 - 002902528 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2018-10-10 07:03 - 2018-09-07 18:51 - 002849280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2018-10-10 07:03 - 2018-09-01 18:43 - 000401920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-10-10 07:03 - 2018-08-29 15:51 - 002451800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2018-10-10 07:03 - 2018-08-26 06:07 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2018-10-10 07:03 - 2018-08-26 06:07 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2018-10-10 07:03 - 2018-08-26 05:08 - 013321728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2018-10-10 07:03 - 2018-08-12 22:25 - 000149632 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-10-10 07:03 - 2018-08-12 19:07 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2018-10-10 07:03 - 2018-08-12 18:32 - 000151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2018-10-10 07:03 - 2018-08-12 16:21 - 001633008 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2018-09-23 17:44 - 2018-09-23 17:45 - 006871118 _____ C:\Users\Vláďa Jindřich\Downloads\vecne mlada cz dabing 2015.mp4
2018-09-19 11:57 - 2018-10-02 19:59 - 000835152 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-09-19 11:57 - 2018-10-02 19:59 - 000179792 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-09-19 09:44 - 2018-08-28 07:39 - 001491032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2018-09-19 09:44 - 2018-08-28 05:46 - 001764408 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2018-09-19 09:44 - 2018-08-28 03:36 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2018-09-19 09:44 - 2018-08-28 03:36 - 000340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2018-09-19 09:44 - 2018-08-24 00:54 - 000289280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2018-09-19 09:44 - 2018-08-14 03:22 - 022374608 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2018-09-19 09:44 - 2018-08-14 03:19 - 019790752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2018-09-19 09:44 - 2018-08-13 15:40 - 001754112 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2018-09-19 09:44 - 2018-08-13 15:39 - 001491968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2018-09-19 09:44 - 2018-08-12 18:31 - 002347520 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2018-09-19 09:44 - 2018-08-12 18:06 - 001556480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2018-09-19 09:44 - 2018-07-29 15:44 - 001265664 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2018-09-19 09:44 - 2018-07-24 19:50 - 006522344 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2018-09-19 09:44 - 2018-07-24 19:50 - 001488008 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2018-09-19 09:44 - 2018-07-24 19:50 - 000261408 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2018-09-19 09:44 - 2018-07-24 15:45 - 000685056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2018-09-19 09:44 - 2018-07-06 19:14 - 000346112 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2018-09-19 09:44 - 2018-07-06 18:22 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2018-09-19 09:44 - 2018-07-06 01:17 - 001115648 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2018-09-19 09:44 - 2018-06-26 17:25 - 000425984 _____ (Microsoft Corporation) C:\Windows\system32\PCPTpm12.dll
2018-09-19 09:44 - 2018-06-26 17:14 - 000367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPTpm12.dll
2018-09-19 09:44 - 2018-06-21 15:31 - 001200640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2018-09-19 09:44 - 2018-06-21 15:30 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2018-09-19 09:43 - 2018-08-13 15:30 - 000043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2018-09-19 09:43 - 2018-08-13 15:29 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2018-09-19 09:43 - 2018-08-09 19:40 - 000078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2018-09-19 09:43 - 2018-08-09 19:39 - 000113664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2018-09-19 09:43 - 2018-08-09 18:59 - 000543232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2018-09-19 09:43 - 2018-08-09 18:41 - 000096768 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2018-09-19 09:43 - 2018-08-09 18:41 - 000073728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2018-09-19 09:43 - 2018-08-09 18:39 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2018-09-19 09:43 - 2018-07-18 15:34 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2018-09-19 09:43 - 2018-06-21 15:24 - 000513456 _____ C:\Windows\SysWOW64\locale.nls
2018-09-19 09:43 - 2018-06-21 15:24 - 000513456 _____ C:\Windows\system32\locale.nls

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-18 17:16 - 2014-12-26 07:29 - 000003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2935905808-1350214744-1915146757-1001
2018-10-18 17:14 - 2018-04-27 20:02 - 000000000 ____D C:\Users\Vláďa Jindřich\AppData\Local\AVAST Software
2018-10-18 17:12 - 2016-11-23 16:29 - 000000000 ____D C:\Users\Vláďa Jindřich\AppData\LocalLow\Mozilla
2018-10-18 17:10 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-10-18 16:55 - 2017-12-21 07:11 - 000003840 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1424809957
2018-10-18 16:55 - 2017-11-13 12:57 - 000003334 _____ C:\Windows\System32\Tasks\AcerCloud
2018-10-18 16:55 - 2017-11-13 12:53 - 000003338 _____ C:\Windows\System32\Tasks\abDocsDllLoader
2018-10-18 16:55 - 2015-12-04 22:08 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software
2018-10-18 16:55 - 2015-07-22 23:59 - 000003442 _____ C:\Windows\System32\Tasks\BacKGroundAgent
2018-10-18 16:55 - 2014-12-26 12:11 - 000004236 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-10-18 16:55 - 2014-12-26 07:39 - 000003850 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{F54D2EC1-1007-43E4-BB1F-8892EA4B5DF7}
2018-10-18 16:55 - 2014-10-29 04:45 - 000002892 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2935905808-1350214744-1915146757-500
2018-10-18 16:55 - 2014-10-29 04:26 - 000002056 _____ C:\Windows\System32\Tasks\Quick Access Quick Launcher
2018-10-18 16:55 - 2014-10-29 04:26 - 000001944 _____ C:\Windows\System32\Tasks\Launch Manager
2018-10-18 16:55 - 2014-10-29 04:26 - 000001936 _____ C:\Windows\System32\Tasks\Quick Access
2018-10-18 16:55 - 2014-10-29 04:24 - 000001970 _____ C:\Windows\System32\Tasks\Power Management
2018-10-18 16:55 - 2014-07-25 11:37 - 000002354 _____ C:\Windows\System32\Tasks\UbtFrameworkService
2018-10-18 16:55 - 2014-07-25 11:32 - 000004166 _____ C:\Windows\System32\Tasks\Software Update Application
2018-10-18 16:55 - 2014-07-25 11:32 - 000003684 _____ C:\Windows\System32\Tasks\ACCAgent
2018-10-18 16:55 - 2014-07-25 11:32 - 000002710 _____ C:\Windows\System32\Tasks\ACC
2018-10-18 14:01 - 2013-08-22 16:44 - 000346712 _____ C:\Windows\system32\FNTCACHE.DAT
2018-10-18 14:01 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2018-10-18 13:49 - 2013-08-22 15:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2018-10-18 13:28 - 2016-11-23 16:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2018-10-17 22:15 - 2013-08-22 17:20 - 000000000 ____D C:\Windows\CbsTemp
2018-10-15 21:15 - 2017-06-21 14:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-10-15 21:15 - 2014-12-26 07:57 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-10-15 18:12 - 2015-02-24 22:32 - 000000000 ____D C:\Program Files (x86)\Opera
2018-10-15 18:11 - 2018-04-02 23:35 - 000001067 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2018-10-15 11:40 - 2014-12-28 18:40 - 000000000 ____D C:\Windows\system32\MRT
2018-10-15 11:13 - 2014-12-28 18:40 - 136745976 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-10-11 20:17 - 2018-04-27 20:03 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2018-10-10 10:42 - 2014-12-26 07:57 - 000001179 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-10-10 10:36 - 2014-12-26 07:48 - 000000000 ____D C:\Users\Vláďa Jindřich\AppData\Local\CrashDumps
2018-10-10 10:33 - 2014-12-26 12:10 - 000000000 ____D C:\Users\Vláďa Jindřich\AppData\Local\Adobe
2018-10-10 10:31 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-10-10 10:31 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\Macromed
2018-10-03 19:56 - 2017-03-11 07:18 - 000004168 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-10-01 19:59 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\NDF
2018-09-19 11:38 - 2013-08-22 17:36 - 000000000 ___RD C:\Windows\ToastData
2018-09-19 09:25 - 2015-02-24 20:56 - 000002248 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-09-19 09:25 - 2015-02-24 20:56 - 000002207 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-09-18 21:34 - 2015-02-24 20:54 - 000215920 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-09-18 21:34 - 2015-02-24 20:54 - 000163392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-05-14 18:20

==================== End of FRST.txt ============================