widows 8 - hostitel sluzby (mistni system)

[valentyne187]

zdravim,
prosim o radu:
mam windows 8 a poslednich nekolik mesicu se mi kazdej den na nekolik minut totalne zaseka notebook, vetrak huci jak krava a ve spravci uloh je videt tyhle silenosti:


co s tim prosim muzu udelat?

dekuju moc

[Rudy]

Zdravím!
Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=24&t=132509 .

[valentyne187]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:17-04-2016 01
Ran by Vojtěch (administrator) on NH4E7QW (18-04-2016 21:35:50)
Running from C:\Users\Vojtěch\Desktop
Loaded Profiles: Vojtěch (Available Profiles: Vojtěch)
Platform: Windows 8 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
() C:\Program Files (x86)\Photodex\ProShowProducer\scsiaccess.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Microsoft Corporation) C:\Windows\System32\calc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Microsoft Corporation) C:\Windows\System32\mspaint.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrv.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-11-12] (IDT, Inc.)
HKLM\...\Run: [HP Color LaserJet CM1312 MFP Series Fax] => C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe [3700736 2009-09-22] (Hewlett-Packard Company)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285832 2013-05-04] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [371976 2012-09-19] (IVT Corporation)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [337184 2013-10-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-03-29] (AVAST Software)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [683656 2013-07-18] (PDF Complete Inc)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2015-11-12] (LogMeIn Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [Boxoft Tools] => C:\ProgramData\Boxtools\Boxofttoolbox.exe [514048 2010-12-15] ()
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [PC Suite Tray] => C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x95000000
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\Snow3.scr [352256 2009-06-29] (Thomas Olesch)
Lsa: [Notification Packages] DPPassFilter scecli
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-03-29] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-12-31]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{A4F71677-C072-4D8A-96CA-BDC340144CF4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{B6DD668F-0FE8-4988-9F15-2792B0BCA99F}: [DhcpNameServer] 10.0.2.50 10.0.2.74

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-03-29] (AVAST Software)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-02-25] (HP)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-03-29] (AVAST Software)
BHO-x32: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files (x86)\Free Download Manager\iefdm2.dll [2014-09-24] (FreeDownloadManager.ORG)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-02-25] (HP)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\SKYPE4~1.DLL [2014-05-02] (Skype Technologies)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-07] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-07] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-02-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-02-04] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll [2011-03-09] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-01-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-01-30] (Google Inc.)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll [2012-10-26] (DigitalPersona, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Vojtěch\AppData\Roaming\mozilla\plugins\npPxPlay.dll [2014-03-18] ( )
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-03-29]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-03-29]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: DigitalPersona Extension - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2013-12-10] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF

Chrome:
=======
CHR Profile: C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-09]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-03-29]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-03-29] (AVAST Software)
R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1612552 2012-09-26] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [146184 2012-09-19] (IVT Corporation)
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [488824 2012-10-26] (DigitalPersona, Inc.)
S3 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [477056 2012-11-19] (Hewlett-Packard Company)
S3 GDOCService; C:\Program Files (x86)\Global Graphics\gDocPDFServer\MWFSrv.exe [77824 2010-08-27] (Global Graphics) [File not signed]
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [681760 2013-10-16] (Hewlett-Packard Company)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-11-06] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [139264 2007-11-06] (Hewlett-Packard Co.) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [26680 2016-02-18] (Hewlett-Packard Company)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131032 2014-02-04] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2014-02-04] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-11-12] (LogMeIn, Inc.)
S3 Macromedia Licensing Service; C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe [68096 2015-03-22] () [File not signed]
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [File not signed]
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1143432 2013-07-18] (PDF Complete Inc)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75064 2014-10-10] ()
R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [214520 2014-11-21] ()
R2 ScsiAccess; C:\Program Files (x86)\Photodex\ProShowProducer\ScsiAccess.exe [181312 2014-03-18] () [File not signed]
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2012-11-12] (IDT, Inc.) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation)
S2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [35496 2012-07-09] (Advanced Micro Devices, Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [29696 2012-09-20] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-03-29] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-03-29] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-03-29] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-03-29] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-03-29] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-03-29] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463744 2016-03-29] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [165344 2016-03-29] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287016 2016-03-29] (AVAST Software)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2013-12-21] ()
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48608 2012-10-02] (Ralink Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [64832 2012-11-09] (Hewlett-Packard Company)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
S0 giveio; C:\Windows\SysWOW64\drivers\giveio.sys [5248 1996-04-03] () [File not signed]
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-11-12] (LogMeIn Inc.)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-12-21] ()
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-02] (Ralink Technology, Corp.)
R3 SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-15] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [43832 2012-08-15] (Synaptics Incorporated)
R3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [1864328 2012-10-04] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381608 2015-04-02] (Duplex Secure Ltd.)
U3 TrueSight; C:\Windows\System32\Drivers\TrueSight.sys [30848 2015-12-29] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-06-27] (Hewlett-Packard Development Company, L.P.)
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-18 21:35 - 2016-04-18 21:36 - 00020387 _____ C:\Users\Vojtěch\Desktop\FRST.txt
2016-04-18 21:34 - 2016-04-18 21:35 - 00000000 ____D C:\FRST
2016-04-18 21:31 - 2016-04-18 21:31 - 02375680 _____ (Farbar) C:\Users\Vojtěch\Desktop\FRST64.exe
2016-04-18 21:05 - 2016-04-18 21:34 - 00001078 _____ C:\Windows\system32dbgraw.bmp
2016-04-17 17:42 - 2016-04-17 20:56 - 3411885830 _____ C:\Users\Vojtěch\Downloads\Bobule-2008,-CZ.mkv
2016-04-16 19:28 - 2016-04-16 19:28 - 00668744 _____ C:\Users\Vojtěch\Downloads\UnityDownloadAssistant-5.3.4f1.exe
2016-04-15 16:18 - 2016-04-15 16:39 - 2356901016 ____R C:\Users\Vojtěch\Downloads\Liverpool - Borussia Dortmund 14.04.16.mkv
2016-04-15 16:17 - 2016-04-15 16:17 - 00011812 _____ C:\Users\Vojtěch\Downloads\Liverpool - Borussia Dortmund 14.04.16.mkv.torrent
2016-04-13 23:35 - 2016-04-13 23:35 - 00000000 __SHD C:\Users\Vojtěch\Phone Browser
2016-04-13 23:27 - 2016-04-13 23:33 - 116094295 _____ C:\Users\Vojtěch\Downloads\The-Offspring---Best-Of.rar
2016-04-13 21:29 - 2016-04-13 22:10 - 734269529 _____ C:\Users\Vojtěch\Downloads\Sid-and-Nancy.rar
2016-04-10 21:26 - 2016-04-10 21:26 - 00086406 _____ C:\Users\Vojtěch\Downloads\Edgl_ERM.jpeg
2016-04-08 23:10 - 2016-04-08 23:15 - 00000000 ____D C:\Program Files (x86)\ZIP Password Unlocker
2016-04-08 23:10 - 2016-04-08 23:10 - 10879179 _____ (ZIP Password Unlocker, Inc. ) C:\Users\Vojtěch\Downloads\zip_password_unlocker_trial.exe
2016-04-08 23:10 - 2016-04-08 23:10 - 00001150 _____ C:\Users\Public\Desktop\ZIP Password Unlocker.lnk
2016-04-08 23:10 - 2016-04-08 23:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZIP Password Unlocker
2016-04-08 23:04 - 2016-04-08 23:04 - 00376029 _____ C:\Users\Vojtěch\Downloads\zip-password-cracker-pro.zip
2016-04-08 15:55 - 2016-04-16 23:57 - 00000958 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-04-08 15:55 - 2016-04-08 15:55 - 00003924 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-04-05 17:07 - 2016-04-05 17:54 - 839923010 _____ C:\Users\Vojtěch\Downloads\Kurt-Cobain-Soaked-in-Bleach-2015-BRRip-film-o-jeho-smrti-novinka.mkv
2016-04-05 10:21 - 2016-04-05 10:21 - 00125849 _____ C:\Users\Vojtěch\Downloads\Kurt-Cobain-Soaked-in-Bleach-2015-BRRip-film-o-jeho-smrti-novinka.srt
2016-04-04 22:40 - 2016-04-04 22:40 - 00000303 _____ C:\Users\Vojtěch\Downloads\index.m3u8
2016-04-04 08:54 - 2016-04-04 15:33 - 00001405 _____ C:\Users\Vojtěch\Desktop\TS.txt
2016-04-03 12:39 - 2016-04-03 12:42 - 00014601 _____ C:\Users\Vojtěch\Desktop\PREHLED_SAZEK_MLB_2016.ods
2016-04-03 11:39 - 2016-04-03 11:50 - 190857568 _____ C:\Users\Vojtěch\Downloads\GreenRoom-Discography-Rock-Three-Piece-Guitar-Bass-Drums.rar
2016-04-01 10:58 - 2016-04-01 11:02 - 00000000 ____D C:\Users\Vojtěch\AppData\Local\Free YouTube Downloader
2016-04-01 10:57 - 2016-04-01 10:57 - 00002324 _____ C:\Users\Vojtěch\Desktop\Imperia Online.lnk
2016-04-01 10:57 - 2016-04-01 10:57 - 00001301 _____ C:\Users\Public\Desktop\Free YouTube Downloader.lnk
2016-04-01 10:57 - 2016-04-01 10:57 - 00001284 _____ C:\Users\Vojtěch\Desktop\WarThunder.lnk
2016-04-01 10:57 - 2016-04-01 10:57 - 00001284 _____ C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder.lnk
2016-04-01 10:57 - 2016-04-01 10:57 - 00000000 ____D C:\Users\Vojtěch\AppData\Roaming\WarThunder
2016-04-01 10:57 - 2016-04-01 10:57 - 00000000 ____D C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Imperia Online
2016-04-01 10:57 - 2016-04-01 10:57 - 00000000 ____D C:\Users\Vojtěch\AppData\Roaming\ImperiaOnline
2016-04-01 10:57 - 2016-04-01 10:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free YouTube Downloader
2016-04-01 10:57 - 2016-04-01 10:57 - 00000000 ____D C:\Program Files (x86)\Free YouTube Downloader
2016-04-01 10:56 - 2016-04-01 10:56 - 01023846 _____ (Tutoc ) C:\Users\Vojtěch\Downloads\YoutubeDownloader_Setup.exe
2016-03-30 20:59 - 2016-03-30 20:59 - 00002257 _____ C:\Users\Public\Desktop\HP Support Assistant.lnk
2016-03-29 19:50 - 2016-03-29 19:50 - 00002282 _____ C:\Users\Public\Desktop\OOTP Baseball 16.lnk
2016-03-29 19:12 - 2016-03-29 19:12 - 00038875 _____ C:\Users\Vojtěch\Downloads\Out.of.the.Park.Baseball.16-SKIDROW-[rarbg.com].torrent
2016-03-29 11:32 - 2016-03-29 11:32 - 00003044 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1459243948
2016-03-29 11:32 - 2016-03-29 11:32 - 00001043 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-03-29 11:32 - 2016-03-29 11:32 - 00001043 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-03-29 11:27 - 2016-03-29 11:27 - 00398152 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-03-29 11:27 - 2016-03-29 11:26 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-03-29 11:26 - 2016-03-29 11:26 - 00052184 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-03-29 11:13 - 2016-03-29 11:13 - 00284456 _____ C:\Windows\Minidump\032916-49484-01.dmp
2016-03-27 10:39 - 2016-04-03 10:06 - 00000000 ____D C:\Users\Vojtěch\Downloads\Pirates of the Caribbean - At Worlds End (2007) [1080p]
2016-03-25 20:00 - 2016-03-26 08:53 - 00000000 ____D C:\Users\Vojtěch\Downloads\Pirates.of.the.Caribbean-Dead.Man's.Chest[2006]DvDrip[Eng]-aXXo
2016-03-25 19:41 - 2016-03-25 23:43 - 00000000 ____D C:\Users\Vojtěch\Downloads\Pirates.Of.The.Caribbean-The.Curse.Of.The.Black.Pearl[2003]DvDrip[Eng]-aXXo
2016-03-25 17:30 - 2016-03-25 17:30 - 00039677 _____ C:\Users\Vojtěch\Downloads\ranky.zip
2016-03-21 09:44 - 2014-06-14 12:08 - 00064000 _____ (MuGiRi Software Development) C:\Users\Vojtěch\Downloads\MouseController.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-18 21:32 - 2013-12-10 15:57 - 00003620 _____ C:\Windows\SysWOW64\LOCALSERVICE.INI
2016-04-18 21:31 - 2013-12-10 15:57 - 00000043 _____ C:\Windows\SysWOW64\LOCALDEVICE.INI
2016-04-18 21:19 - 2016-01-30 11:14 - 00000974 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-18 19:55 - 2015-01-13 20:55 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-04-18 19:47 - 2013-11-04 10:26 - 00534528 ___SH C:\Users\Vojtěch\Desktop\Thumbs.db
2016-04-18 12:52 - 2012-09-26 10:53 - 00000950 _____ C:\Windows\SysWOW64\bscs.ini
2016-04-17 19:19 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2016-04-17 17:39 - 2013-10-05 23:29 - 06585856 ___SH C:\Users\Vojtěch\Downloads\Thumbs.db
2016-04-17 10:19 - 2016-01-30 11:14 - 00000970 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-16 17:14 - 2014-05-07 19:57 - 00003174 _____ C:\Windows\System32\Tasks\HPCeeScheduleForVojtěch
2016-04-16 17:14 - 2014-05-07 19:57 - 00000356 _____ C:\Windows\Tasks\HPCeeScheduleForVojtěch.job
2016-04-16 17:14 - 2013-10-03 23:32 - 00000000 ____D C:\Users\Vojtěch
2016-04-15 16:40 - 2013-10-19 22:12 - 00000000 ____D C:\Users\Vojtěch\AppData\Roaming\uTorrent
2016-04-14 21:28 - 2012-07-26 10:12 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-14 19:52 - 2012-11-22 05:49 - 00000000 ____D C:\ProgramData\PDFC
2016-04-14 18:27 - 2014-12-22 18:31 - 00003842 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1381869317
2016-04-14 18:27 - 2013-10-15 22:35 - 00001063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-04-14 18:27 - 2013-10-15 22:35 - 00000000 ____D C:\Program Files (x86)\Opera
2016-04-13 23:34 - 2013-10-05 23:31 - 00000000 ____D C:\Users\Vojtěch\AppData\Local\GHISLER
2016-04-13 22:20 - 2016-01-03 12:08 - 00000000 ____D C:\Users\Vojtěch\AppData\Local\CrashDumps
2016-04-13 18:50 - 2012-07-26 09:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-12 21:27 - 2013-11-07 21:17 - 00000000 ____D C:\Users\Vojtěch\Downloads\01_filmy
2016-04-12 20:18 - 2012-11-22 05:46 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2016-04-12 15:21 - 2013-10-04 22:05 - 00002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-10 20:14 - 2015-11-06 19:24 - 00000000 ____D C:\Users\Vojtěch\Documents\888poker
2016-04-08 20:46 - 2013-11-07 21:20 - 00000000 ____D C:\Users\Vojtěch\Downloads\02_hudba
2016-04-08 15:55 - 2013-10-16 19:35 - 00003802 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-04-07 13:33 - 2012-07-26 07:37 - 00000000 ____D C:\Windows\Inf
2016-04-05 17:03 - 2013-10-03 23:57 - 00000000 ____D C:\Users\Vojtěch\AppData\Local\Hewlett-Packard
2016-03-31 18:50 - 2012-11-22 06:19 - 00756994 _____ C:\Windows\system32\perfh005.dat
2016-03-31 18:50 - 2012-11-22 06:19 - 00163422 _____ C:\Windows\system32\perfc005.dat
2016-03-31 18:50 - 2012-07-26 09:28 - 01854972 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-30 23:02 - 2013-10-03 23:41 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-866173097-1738320259-1985661619-1002
2016-03-30 21:43 - 2015-11-06 19:22 - 00000000 ____D C:\Program Files (x86)\PacificPoker
2016-03-30 21:25 - 2015-12-14 10:38 - 00406576 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-30 20:59 - 2012-11-22 05:51 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2016-03-30 20:59 - 2012-11-22 05:51 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-03-30 20:58 - 2012-11-22 05:46 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2016-03-30 20:51 - 2012-08-02 23:20 - 00000000 ____D C:\swsetup
2016-03-29 21:37 - 2015-12-03 22:38 - 00000000 ____D C:\FlashInstaller
2016-03-29 19:50 - 2013-10-07 23:54 - 00000000 ____D C:\Users\Vojtěch\Documents\Out of the Park Developments
2016-03-29 19:50 - 2013-10-07 23:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Out of the Park Developments
2016-03-29 19:48 - 2015-04-02 23:15 - 00000000 ____D C:\Users\Vojtěch\AppData\Roaming\Out of the Park Developments
2016-03-29 19:48 - 2013-10-07 23:02 - 00000000 ____D C:\Program Files (x86)\Out of the Park Developments
2016-03-29 11:31 - 2013-11-09 19:53 - 00000000 ____D C:\Users\Vojtěch\AppData\Local\LogMeIn Hamachi
2016-03-29 11:29 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-03-29 11:28 - 2015-01-16 22:14 - 01070904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2016-03-29 11:28 - 2015-01-16 22:14 - 00463744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2016-03-29 11:28 - 2015-01-16 22:14 - 00107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2016-03-29 11:27 - 2015-01-16 22:15 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-03-29 11:27 - 2015-01-16 22:14 - 00287016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2016-03-29 11:27 - 2015-01-16 22:14 - 00165344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-03-29 11:27 - 2015-01-16 22:14 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-03-29 11:27 - 2015-01-16 22:14 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-03-29 11:27 - 2015-01-16 22:14 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-03-29 11:27 - 2015-01-16 22:10 - 00000000 ____D C:\ProgramData\AVAST Software
2016-03-29 11:26 - 2015-01-16 22:11 - 00000000 ____D C:\Program Files\AVAST Software
2016-03-29 11:13 - 2014-02-10 19:28 - 00000000 ____D C:\Windows\Minidump
2016-03-28 15:28 - 2013-11-07 21:21 - 00000000 ____D C:\Users\Vojtěch\Downloads\05_obrazky
2016-03-21 09:44 - 2016-03-13 16:06 - 00000000 ____D C:\Users\Vojtěch\AppData\Local\MuGiRi_Software_Developme

==================== Files in the root of some directories =======

2015-05-26 17:20 - 2015-05-26 17:20 - 0000040 _____ () C:\Users\Vojtěch\AppData\Roaming\cdr.ini
2015-11-19 14:19 - 2015-11-19 14:19 - 0000000 _____ () C:\Users\Vojtěch\AppData\Local\{A365E46F-AAE6-4A5E-A4F0-FEF0DDD7E94B}
2015-10-16 20:24 - 2015-10-16 20:46 - 0000387 _____ () C:\ProgramData\hpzinstall.log

Some files in TEMP:
====================
C:\Users\Vojtěch\AppData\Local\Temp\FYDSetup.exe
C:\Users\Vojtěch\AppData\Local\Temp\GomAudDnInstaller.exe
C:\Users\Vojtěch\AppData\Local\Temp\HPSFUpdater.exe
C:\Users\Vojtěch\AppData\Local\Temp\setup.exe
C:\Users\Vojtěch\AppData\Local\Temp\SIInvoker.exe
C:\Users\Vojtěch\AppData\Local\Temp\UninstallHPSA.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-04-18 12:19

==================== End of FRST.txt ============================

[Rudy]

Teď spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[valentyne187]

# AdwCleaner v5.112 - Log soubor vytvořen 18/04/2016 o 22:30:05
# Aktualizováno 17/04/2016 by Xplode
# Databáze : 2016-04-17.1 [Server]
# Operační systém : Windows 8 (X64)
# Jméno uživatele : Vojtěch - NH4E7QW
# Spuštěno z : C:\Users\Vojtěch\Desktop\adwcleaner_5.112.exe
# Volba : Čištění
# Podpora : http://toolslib.net/forum

***** [ Služby ] *****


***** [ Složky ] *****

[-] Složka smazáno : C:\Program Files (x86)\Free Youtube Downloader
[-] Složka smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Youtube Downloader
[-] Složka smazáno : C:\Users\Vojtěch\AppData\Local\Free Youtube Downloader
[-] Složka smazáno : C:\Users\Vojtěch\AppData\Roaming\OpenCandy

***** [ Soubory ] *****

[-] Soubor smazáno : C:\Users\Public\Desktop\Free Youtube Downloader.lnk
[-] Soubor smazáno : C:\Users\Vojtěch\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Free Youtube Downloader.lnk
[-] Soubor smazáno : C:\Users\Vojtěch\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxp_st.chatango.com_0.localstorage

***** [ DLLs ] *****


***** [ Zástupci ] *****

[-] Zástupce odvirováno : C:\Users\Vojtěch\Desktop\WarThunder.lnk
[-] Zástupce odvirováno : C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder.lnk
[-] Zástupce odvirováno : C:\Users\Vojtěch\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk

***** [ Naplánované úkoly ] *****


***** [ Registr ] *****

[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\PCSuiteContactsView
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\PCSuiteMessagesView
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
[-] Klávesa smazáno : HKCU\Software\Classes\TypeLib\{DB02BC6B-B0F0-4074-99E6-884B70FCB6AE}
[-] Klávesa smazáno : HKCU\Software\PRODUCTSETUP
[-] Klávesa smazáno : HKCU\Software\Mail.Ru
[-] Klávesa smazáno : HKCU\Software\AppDataLow\Software\Mail.Ru
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder
[-] Klávesa smazáno : HKU\.DEFAULT\Software\VNT
[-] Hodnota smazáno : HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [agupdate]
[-] Hodnota smazáno : HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [AppsHat]
[-] Hodnota smazáno : HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [FLV Player]
[-] Hodnota smazáno : HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [SpeedUpMyComputer]

***** [ Webové prohlížeče ] *****


*************************

:: "Tracing" odstraněných kláves
:: Nastavení Winsock odstraněno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [2969 bytes] - [18/04/2016 22:30:05]
C:\AdwCleaner\AdwCleaner[S1].txt - [3770 bytes] - [18/04/2016 22:28:40]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [3115 bytes] ##########

[Rudy]

Dejte nový log FRST.

[valentyne187]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:17-04-2016 01
Ran by Vojtěch (administrator) on NH4E7QW (19-04-2016 20:01:51)
Running from C:\Users\Vojtěch\Desktop
Loaded Profiles: Vojtěch (Available Profiles: Vojtěch)
Platform: Windows 8 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
() C:\Program Files (x86)\Photodex\ProShowProducer\scsiaccess.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe
(Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\scalc.exe
(Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\soffice.exe
(Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\soffice.bin
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrv.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.65\opera.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-11-12] (IDT, Inc.)
HKLM\...\Run: [HP Color LaserJet CM1312 MFP Series Fax] => C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe [3700736 2009-09-22] (Hewlett-Packard Company)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285832 2013-05-04] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [371976 2012-09-19] (IVT Corporation)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [337184 2013-10-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-03-29] (AVAST Software)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [683656 2013-07-18] (PDF Complete Inc)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2015-11-12] (LogMeIn Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [Boxoft Tools] => C:\ProgramData\Boxtools\Boxofttoolbox.exe [514048 2010-12-15] ()
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Run: [PC Suite Tray] => C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x95000000
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\Snow3.scr [352256 2009-06-29] (Thomas Olesch)
Lsa: [Notification Packages] DPPassFilter scecli
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-03-29] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-12-31]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{A4F71677-C072-4D8A-96CA-BDC340144CF4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{B6DD668F-0FE8-4988-9F15-2792B0BCA99F}: [DhcpNameServer] 10.0.2.50 10.0.2.74

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-03-29] (AVAST Software)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-02-25] (HP)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-03-29] (AVAST Software)
BHO-x32: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files (x86)\Free Download Manager\iefdm2.dll [2014-09-24] (FreeDownloadManager.ORG)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-02-25] (HP)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\SKYPE4~1.DLL [2014-05-02] (Skype Technologies)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-07] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-07] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-02-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-02-04] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll [2011-03-09] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-01-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-01-30] (Google Inc.)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll [2012-10-26] (DigitalPersona, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Vojtěch\AppData\Roaming\mozilla\plugins\npPxPlay.dll [2014-03-18] ( )
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-03-29]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-03-29]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: DigitalPersona Extension - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2013-12-10] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF

Chrome:
=======
CHR Profile: C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vojtěch\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-09]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-03-29]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-03-29] (AVAST Software)
S2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1612552 2012-09-26] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [146184 2012-09-19] (IVT Corporation)
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [488824 2012-10-26] (DigitalPersona, Inc.)
S3 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [477056 2012-11-19] (Hewlett-Packard Company)
S3 GDOCService; C:\Program Files (x86)\Global Graphics\gDocPDFServer\MWFSrv.exe [77824 2010-08-27] (Global Graphics) [File not signed]
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [681760 2013-10-16] (Hewlett-Packard Company)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-11-06] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [139264 2007-11-06] (Hewlett-Packard Co.) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [26680 2016-02-18] (Hewlett-Packard Company)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131032 2014-02-04] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2014-02-04] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-11-12] (LogMeIn, Inc.)
S3 Macromedia Licensing Service; C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe [68096 2015-03-22] () [File not signed]
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [File not signed]
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1143432 2013-07-18] (PDF Complete Inc)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75064 2014-10-10] ()
R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [214520 2014-11-21] ()
R2 ScsiAccess; C:\Program Files (x86)\Photodex\ProShowProducer\ScsiAccess.exe [181312 2014-03-18] () [File not signed]
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2012-11-12] (IDT, Inc.) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation)
S2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [35496 2012-07-09] (Advanced Micro Devices, Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [29696 2012-09-20] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-03-29] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-03-29] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-03-29] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-03-29] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-03-29] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-03-29] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463744 2016-03-29] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [165344 2016-03-29] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287016 2016-03-29] (AVAST Software)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2013-12-21] ()
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48608 2012-10-02] (Ralink Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [64832 2012-11-09] (Hewlett-Packard Company)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
S0 giveio; C:\Windows\SysWOW64\drivers\giveio.sys [5248 1996-04-03] () [File not signed]
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-11-12] (LogMeIn Inc.)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-12-21] ()
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-02] (Ralink Technology, Corp.)
R3 SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-15] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [43832 2012-08-15] (Synaptics Incorporated)
R3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [1864328 2012-10-04] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381608 2015-04-02] (Duplex Secure Ltd.)
U3 TrueSight; C:\Windows\System32\Drivers\TrueSight.sys [30848 2015-12-29] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-06-27] (Hewlett-Packard Development Company, L.P.)
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-19 17:43 - 2016-04-19 17:58 - 280107424 _____ C:\Users\Vojtěch\Downloads\02x11---Musim-to-vedet.mp4
2016-04-19 16:38 - 2016-04-19 20:00 - 00001078 _____ C:\Windows\system32dbgraw.bmp
2016-04-18 22:28 - 2016-04-18 22:30 - 00000000 ____D C:\AdwCleaner
2016-04-18 22:26 - 2016-04-18 22:27 - 03683904 _____ C:\Users\Vojtěch\Desktop\adwcleaner_5.112.exe
2016-04-18 21:37 - 2016-04-18 21:40 - 00047594 _____ C:\Users\Vojtěch\Desktop\Addition.txt
2016-04-18 21:35 - 2016-04-19 20:01 - 00020758 _____ C:\Users\Vojtěch\Desktop\FRST.txt
2016-04-18 21:34 - 2016-04-19 20:01 - 00000000 ____D C:\FRST
2016-04-18 21:31 - 2016-04-18 21:31 - 02375680 _____ (Farbar) C:\Users\Vojtěch\Desktop\FRST64.exe
2016-04-17 17:42 - 2016-04-17 20:56 - 3411885830 _____ C:\Users\Vojtěch\Downloads\Bobule-2008,-CZ.mkv
2016-04-16 19:28 - 2016-04-16 19:28 - 00668744 _____ C:\Users\Vojtěch\Downloads\UnityDownloadAssistant-5.3.4f1.exe
2016-04-15 16:18 - 2016-04-15 16:39 - 2356901016 ____R C:\Users\Vojtěch\Downloads\Liverpool - Borussia Dortmund 14.04.16.mkv
2016-04-15 16:17 - 2016-04-15 16:17 - 00011812 _____ C:\Users\Vojtěch\Downloads\Liverpool - Borussia Dortmund 14.04.16.mkv.torrent
2016-04-13 23:35 - 2016-04-13 23:35 - 00000000 __SHD C:\Users\Vojtěch\Phone Browser
2016-04-13 23:27 - 2016-04-13 23:33 - 116094295 _____ C:\Users\Vojtěch\Downloads\The-Offspring---Best-Of.rar
2016-04-13 21:29 - 2016-04-13 22:10 - 734269529 _____ C:\Users\Vojtěch\Downloads\Sid-and-Nancy.rar
2016-04-10 21:26 - 2016-04-10 21:26 - 00086406 _____ C:\Users\Vojtěch\Downloads\Edgl_ERM.jpeg
2016-04-08 23:10 - 2016-04-08 23:15 - 00000000 ____D C:\Program Files (x86)\ZIP Password Unlocker
2016-04-08 23:10 - 2016-04-08 23:10 - 10879179 _____ (ZIP Password Unlocker, Inc. ) C:\Users\Vojtěch\Downloads\zip_password_unlocker_trial.exe
2016-04-08 23:10 - 2016-04-08 23:10 - 00001150 _____ C:\Users\Public\Desktop\ZIP Password Unlocker.lnk
2016-04-08 23:10 - 2016-04-08 23:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZIP Password Unlocker
2016-04-08 23:04 - 2016-04-08 23:04 - 00376029 _____ C:\Users\Vojtěch\Downloads\zip-password-cracker-pro.zip
2016-04-08 15:55 - 2016-04-16 23:57 - 00000958 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-04-08 15:55 - 2016-04-08 15:55 - 00003924 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-04-05 17:07 - 2016-04-05 17:54 - 839923010 _____ C:\Users\Vojtěch\Downloads\Kurt-Cobain-Soaked-in-Bleach-2015-BRRip-film-o-jeho-smrti-novinka.mkv
2016-04-05 10:21 - 2016-04-05 10:21 - 00125849 _____ C:\Users\Vojtěch\Downloads\Kurt-Cobain-Soaked-in-Bleach-2015-BRRip-film-o-jeho-smrti-novinka.srt
2016-04-04 22:40 - 2016-04-04 22:40 - 00000303 _____ C:\Users\Vojtěch\Downloads\index.m3u8
2016-04-04 08:54 - 2016-04-04 15:33 - 00001405 _____ C:\Users\Vojtěch\Desktop\TS.txt
2016-04-03 12:39 - 2016-04-03 12:42 - 00014601 _____ C:\Users\Vojtěch\Desktop\PREHLED_SAZEK_MLB_2016.ods
2016-04-03 11:39 - 2016-04-03 11:50 - 190857568 _____ C:\Users\Vojtěch\Downloads\GreenRoom-Discography-Rock-Three-Piece-Guitar-Bass-Drums.rar
2016-04-01 10:57 - 2016-04-18 22:30 - 00000144 _____ C:\Users\Vojtěch\Desktop\WarThunder.lnk
2016-04-01 10:57 - 2016-04-18 22:30 - 00000144 _____ C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder.lnk
2016-04-01 10:57 - 2016-04-01 10:57 - 00002324 _____ C:\Users\Vojtěch\Desktop\Imperia Online.lnk
2016-04-01 10:57 - 2016-04-01 10:57 - 00000000 ____D C:\Users\Vojtěch\AppData\Roaming\WarThunder
2016-04-01 10:57 - 2016-04-01 10:57 - 00000000 ____D C:\Users\Vojtěch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Imperia Online
2016-04-01 10:57 - 2016-04-01 10:57 - 00000000 ____D C:\Users\Vojtěch\AppData\Roaming\ImperiaOnline
2016-04-01 10:56 - 2016-04-01 10:56 - 01023846 _____ (Tutoc ) C:\Users\Vojtěch\Downloads\YoutubeDownloader_Setup.exe
2016-03-30 20:59 - 2016-03-30 20:59 - 00002257 _____ C:\Users\Public\Desktop\HP Support Assistant.lnk
2016-03-29 19:50 - 2016-03-29 19:50 - 00002282 _____ C:\Users\Public\Desktop\OOTP Baseball 16.lnk
2016-03-29 19:12 - 2016-03-29 19:12 - 00038875 _____ C:\Users\Vojtěch\Downloads\Out.of.the.Park.Baseball.16-SKIDROW-[rarbg.com].torrent
2016-03-29 11:32 - 2016-03-29 11:32 - 00003044 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1459243948
2016-03-29 11:32 - 2016-03-29 11:32 - 00001043 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-03-29 11:32 - 2016-03-29 11:32 - 00001043 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-03-29 11:27 - 2016-03-29 11:27 - 00398152 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-03-29 11:27 - 2016-03-29 11:26 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-03-29 11:26 - 2016-03-29 11:26 - 00052184 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-03-29 11:13 - 2016-03-29 11:13 - 00284456 _____ C:\Windows\Minidump\032916-49484-01.dmp
2016-03-27 10:39 - 2016-04-03 10:06 - 00000000 ____D C:\Users\Vojtěch\Downloads\Pirates of the Caribbean - At Worlds End (2007) [1080p]
2016-03-25 20:00 - 2016-03-26 08:53 - 00000000 ____D C:\Users\Vojtěch\Downloads\Pirates.of.the.Caribbean-Dead.Man's.Chest[2006]DvDrip[Eng]-aXXo
2016-03-25 19:41 - 2016-03-25 23:43 - 00000000 ____D C:\Users\Vojtěch\Downloads\Pirates.Of.The.Caribbean-The.Curse.Of.The.Black.Pearl[2003]DvDrip[Eng]-aXXo
2016-03-25 17:30 - 2016-03-25 17:30 - 00039677 _____ C:\Users\Vojtěch\Downloads\ranky.zip
2016-03-21 09:44 - 2014-06-14 12:08 - 00064000 _____ (MuGiRi Software Development) C:\Users\Vojtěch\Downloads\MouseController.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-19 19:55 - 2015-01-13 20:55 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-04-19 19:19 - 2016-01-30 11:14 - 00000974 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-19 16:59 - 2014-05-07 19:57 - 00003174 _____ C:\Windows\System32\Tasks\HPCeeScheduleForVojtěch
2016-04-19 16:59 - 2014-05-07 19:57 - 00000356 _____ C:\Windows\Tasks\HPCeeScheduleForVojtěch.job
2016-04-19 16:58 - 2013-10-03 23:32 - 00000000 ____D C:\Users\Vojtěch
2016-04-19 08:56 - 2013-12-10 15:57 - 00003620 _____ C:\Windows\SysWOW64\LOCALSERVICE.INI
2016-04-18 22:35 - 2013-11-04 10:26 - 00534528 ___SH C:\Users\Vojtěch\Desktop\Thumbs.db
2016-04-18 22:35 - 2012-09-26 10:53 - 00000950 _____ C:\Windows\SysWOW64\bscs.ini
2016-04-18 22:34 - 2016-01-30 11:14 - 00000970 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-18 22:33 - 2012-11-22 05:49 - 00000000 ____D C:\ProgramData\PDFC
2016-04-18 22:32 - 2013-12-10 15:57 - 00000043 _____ C:\Windows\SysWOW64\LOCALDEVICE.INI
2016-04-18 22:32 - 2012-07-26 09:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-18 22:31 - 2012-07-26 07:37 - 00000000 ____D C:\Windows\Inf
2016-04-17 19:19 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2016-04-17 17:39 - 2013-10-05 23:29 - 06585856 ___SH C:\Users\Vojtěch\Downloads\Thumbs.db
2016-04-15 16:40 - 2013-10-19 22:12 - 00000000 ____D C:\Users\Vojtěch\AppData\Roaming\uTorrent
2016-04-14 21:28 - 2012-07-26 10:12 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-14 18:27 - 2014-12-22 18:31 - 00003842 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1381869317
2016-04-14 18:27 - 2013-10-15 22:35 - 00001063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-04-14 18:27 - 2013-10-15 22:35 - 00000000 ____D C:\Program Files (x86)\Opera
2016-04-13 23:34 - 2013-10-05 23:31 - 00000000 ____D C:\Users\Vojtěch\AppData\Local\GHISLER
2016-04-13 22:20 - 2016-01-03 12:08 - 00000000 ____D C:\Users\Vojtěch\AppData\Local\CrashDumps
2016-04-12 21:27 - 2013-11-07 21:17 - 00000000 ____D C:\Users\Vojtěch\Downloads\01_filmy
2016-04-12 20:18 - 2012-11-22 05:46 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2016-04-12 15:21 - 2013-10-04 22:05 - 00002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-10 20:14 - 2015-11-06 19:24 - 00000000 ____D C:\Users\Vojtěch\Documents\888poker
2016-04-08 20:46 - 2013-11-07 21:20 - 00000000 ____D C:\Users\Vojtěch\Downloads\02_hudba
2016-04-08 15:55 - 2013-10-16 19:35 - 00003802 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-04-05 17:03 - 2013-10-03 23:57 - 00000000 ____D C:\Users\Vojtěch\AppData\Local\Hewlett-Packard
2016-03-31 18:50 - 2012-11-22 06:19 - 00756994 _____ C:\Windows\system32\perfh005.dat
2016-03-31 18:50 - 2012-11-22 06:19 - 00163422 _____ C:\Windows\system32\perfc005.dat
2016-03-31 18:50 - 2012-07-26 09:28 - 01854972 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-30 23:02 - 2013-10-03 23:41 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-866173097-1738320259-1985661619-1002
2016-03-30 21:43 - 2015-11-06 19:22 - 00000000 ____D C:\Program Files (x86)\PacificPoker
2016-03-30 21:25 - 2015-12-14 10:38 - 00406576 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-30 20:59 - 2012-11-22 05:51 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2016-03-30 20:59 - 2012-11-22 05:51 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-03-30 20:58 - 2012-11-22 05:46 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2016-03-30 20:51 - 2012-08-02 23:20 - 00000000 ____D C:\swsetup
2016-03-29 21:37 - 2015-12-03 22:38 - 00000000 ____D C:\FlashInstaller
2016-03-29 19:50 - 2013-10-07 23:54 - 00000000 ____D C:\Users\Vojtěch\Documents\Out of the Park Developments
2016-03-29 19:50 - 2013-10-07 23:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Out of the Park Developments
2016-03-29 19:48 - 2015-04-02 23:15 - 00000000 ____D C:\Users\Vojtěch\AppData\Roaming\Out of the Park Developments
2016-03-29 19:48 - 2013-10-07 23:02 - 00000000 ____D C:\Program Files (x86)\Out of the Park Developments
2016-03-29 11:31 - 2013-11-09 19:53 - 00000000 ____D C:\Users\Vojtěch\AppData\Local\LogMeIn Hamachi
2016-03-29 11:29 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-03-29 11:28 - 2015-01-16 22:14 - 01070904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2016-03-29 11:28 - 2015-01-16 22:14 - 00463744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2016-03-29 11:28 - 2015-01-16 22:14 - 00107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2016-03-29 11:27 - 2015-01-16 22:15 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-03-29 11:27 - 2015-01-16 22:14 - 00287016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2016-03-29 11:27 - 2015-01-16 22:14 - 00165344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-03-29 11:27 - 2015-01-16 22:14 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-03-29 11:27 - 2015-01-16 22:14 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-03-29 11:27 - 2015-01-16 22:14 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-03-29 11:27 - 2015-01-16 22:10 - 00000000 ____D C:\ProgramData\AVAST Software
2016-03-29 11:26 - 2015-01-16 22:11 - 00000000 ____D C:\Program Files\AVAST Software
2016-03-29 11:13 - 2014-02-10 19:28 - 00000000 ____D C:\Windows\Minidump
2016-03-28 15:28 - 2013-11-07 21:21 - 00000000 ____D C:\Users\Vojtěch\Downloads\05_obrazky
2016-03-21 09:44 - 2016-03-13 16:06 - 00000000 ____D C:\Users\Vojtěch\AppData\Local\MuGiRi_Software_Developme

==================== Files in the root of some directories =======

2015-05-26 17:20 - 2015-05-26 17:20 - 0000040 _____ () C:\Users\Vojtěch\AppData\Roaming\cdr.ini
2015-11-19 14:19 - 2015-11-19 14:19 - 0000000 _____ () C:\Users\Vojtěch\AppData\Local\{A365E46F-AAE6-4A5E-A4F0-FEF0DDD7E94B}
2015-10-16 20:24 - 2015-10-16 20:46 - 0000387 _____ () C:\ProgramData\hpzinstall.log

Some files in TEMP:
====================
C:\Users\Vojtěch\AppData\Local\Temp\FYDSetup.exe
C:\Users\Vojtěch\AppData\Local\Temp\GomAudDnInstaller.exe
C:\Users\Vojtěch\AppData\Local\Temp\HPSFUpdater.exe
C:\Users\Vojtěch\AppData\Local\Temp\libeay32.dll
C:\Users\Vojtěch\AppData\Local\Temp\msvcr120.dll
C:\Users\Vojtěch\AppData\Local\Temp\setup.exe
C:\Users\Vojtěch\AppData\Local\Temp\SIInvoker.exe
C:\Users\Vojtěch\AppData\Local\Temp\sqlite3.dll
C:\Users\Vojtěch\AppData\Local\Temp\UninstallHPSA.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-04-18 12:19

==================== End of FRST.txt ============================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Vojtěch\AppData\Local\Temp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[valentyne187]

Fix result of Farbar Recovery Scan Tool (x64) Version:17-04-2016 01
Ran by Vojtěch (2016-04-20 19:22:27) Run:1
Running from C:\Users\Vojtěch\Desktop
Loaded Profiles: Vojtěch (Available Profiles: Vojtěch)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-866173097-1738320259-1985661619-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Vojtěch\AppData\Local\Temp
End
*****************

"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKU\S-1-5-21-866173097-1738320259-1985661619-1002\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully

"C:\Users\Vojtěch\AppData\Local\Temp" folder move:

Could not move "C:\Users\Vojtěch\AppData\Local\Temp" => Scheduled to move on reboot.


Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2016-04-20 19:27:20)

C:\Users\Vojtěch\AppData\Local\Temp => moved successfully

==== End of Fixlog 19:27:24 ====

[Rudy]

Nastala nyní nějaká změna?

[valentyne187]

Bohužel, je to stejne jako predtim

[altrok]

Dobry den,

omluva za jednorazovy vstup - zakazte sluzby Superfetch a pripadne i Windows Search.

start -> spustit -> services.msc -> najdete sluzbu Superfetch a dvakrat na ni kliknete levym -> stav sluzby: Zastavit a typ spousteni: zakazano

[valentyne187]

dobry den,
zakazal jsem obe, ale dnes opet stejny problem. Nemuze v tom mit prsty i avast? kdyz to vytizeni disku a pameti odezni, jeste na chvili to vystreli prave avast

[Rudy]

Avast zkuste přeinstalovat. I ten může být příčinou.