Knihovny jsem prošel, byly čisté.
Log RFST:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-04-2015
Ran by Rodiče (administrator) on CERNY on 21-04-2015 21:54:15
Running from C:\Users\Rodiče\Desktop
Loaded Profiles: Rodiče (Available profiles: Rodiče & Lenka & NFSU)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ArtistScope Pty Ltd) C:\Program Files\Common Files\ArtistScope\CSHelper32.exe
() C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
(Hewlett-Packard Company) C:\Program Files\HP\HPBDSService\HPBDSService.exe
(HP) C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
(Microsoft Corporation) C:\Windows\System32\inetsrv\inetinfo.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Animation Technologies Inc.) C:\Windows\System32\lvhidsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
() C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Seznam.cz a.s.) C:\Program Files\Seznam\Postak\Postak.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Skype Technologies S.A.) C:\Windows\Temp\SKY3B89.tmp
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Opera Software) C:\Program Files\Opera\launcher.exe
() C:\Program Files\Opera\28.0.1750.51\opera_autoupdate.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SMail] => C:\Program Files\Seznam\Postak\Postak.exe [453936 2008-02-21] (Seznam.cz a.s.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5512912 2015-04-07] (Avast Software s.r.o.)
HKU\S-1-5-21-3533039139-1052968357-1368303399-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [31346784 2015-02-26] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-04-07] (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-3533039139-1052968357-1368303399-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-3533039139-1052968357-1368303399-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.papeweb.cz/
SearchScopes: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... DF&pc=AVBR
SearchScopes: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> {0EBFFFDA-ABB1-49B2-A89B-594D808AC84F} URL = http://download.seznam.cz/vyhledavani/o ... rceid=IE_5
SearchScopes: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> {41FF3879-BCB7-4B39-B274-FEE2EC2BB8F5} URL = http://www.google.cz/search?q={searchTe ... 1I7GPEA_cs
SearchScopes: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = http://www.icq.com/search/results.php?q ... &ch_id=osd
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-03-31] (Microsoft Corporation)
BHO: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-05-14] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-28] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-07] (Avast Software s.r.o.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-03-18] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-28] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
Toolbar: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Toolbar: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.apple.com.edgesuite.net ... plugin.cab
DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/ ... ontrol.cab
DPF: {461A37E7-17B3-40E3-B6BB-7CAEC732C9E4} https://maxibps.postovnisporitelna.cz/C ... Enroll.dll
DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} http://www.eset.cz/OnlineScanner.cab
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20614.www2.hp.com/ediags/gmd/In ... ct119b.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab
DPF: {CAFEEFAC-0017-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1
FireFox:
========
FF ProfilePath: C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606
FF DefaultSearchEngine: Google (avast)
FF SearchEngineOrder.1: Google (avast)
FF SelectedSearchEngine: Google (avast)
FF Homepage: hxxp://www.papeweb.cz
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2014-06-03] (DivX, LLC)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @google.com/npPicasa2,version=2.0.0 -> C:\Program Files\Picasa2\npPicasa2.dll [2008-08-21] (Google, Inc.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Picasa2\npPicasa3.dll [2013-04-02] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-28] (Oracle Corporation)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-03-31] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.3 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @pack.google.com/Google Updater;version=14 -> C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll [2011-10-03] (Google)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3533039139-1052968357-1368303399-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Rodiče\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin HKU\S-1-5-21-3533039139-1052968357-1368303399-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Rodiče\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-03-31] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2015-01-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2015-01-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2015-01-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2015-01-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2015-01-06] (Apple Inc.)
FF SearchPlugin: C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\searchplugins\google-avast.xml [2014-12-15]
FF Extension: No Name - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\artur.dubovoy@gmail.com [2015-04-10]
FF Extension: gTranslator - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\jyboy.yy@gmail.com [2014-01-03]
FF Extension: ColorZilla - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} [2014-01-03]
FF Extension: Firebug - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\firebug@software.joehewitt.com.xpi [2014-01-03]
FF Extension: Simple Timer - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\simpletimer@grbradt.org.xpi [2014-01-03]
FF Extension: Google Translator for Firefox - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\translator@zoli.bod.xpi [2014-05-11]
FF Extension: View in Office Online Viewer - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\viewinofficeapps@huhsiaotao.xpi [2014-01-03]
FF Extension: No Name - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\{5A170DD3-63CA-4c58-93B7-DE9FF536C2FF}.xpi [2014-01-03]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: No Name - C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-11-20]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF HKLM\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff
Chrome:
=======
CHR HomePage: Default -> hxxp://www.papeweb.cz/
CHR StartupUrls: Default -> "hxxp://www.papeweb.cz/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-05-07]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2013-11-22]
CHR Extension: (Bookmark Manager) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-21]
CHR Extension: (Avast Online Security) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-05-16]
CHR Extension: (Color Picker Tools) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijgamcmigplkkdkhfcjmpjojlklnkgop [2014-01-21]
CHR Extension: (Color Picker) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcmgligingjhdnhdhgepemlckgcgmgaj [2014-08-18]
CHR Extension: (Google Wallet) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2013-11-22]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-07]
CHR HKLM\...\Chrome\Extension: [ocphobfcfafpclibolpjdafgaffkaoci] - C:\Users\Rodiče\AppData\Local\GamePlayLabs Plugin\gplplugin.crx [2011-03-15]
CHR HKU\S-1-5-21-3533039139-1052968357-1368303399-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\RODIE~1\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-05-03]
StartMenuInternet: Google Chrome - C:\Users\Rodiče\AppData\Local\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-04-07] (Avast Software s.r.o.)
S3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3205216 2015-04-07] (Avast Software)
R2 CSHelper; C:\Program Files\Common Files\ArtistScope\CSHelper32.exe [236536 2012-09-26] (ArtistScope Pty Ltd)
R2 ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [387616 2009-07-23] ()
S2 gupdate1ca24ec3816786f; C:\Program Files\Google\Update\GoogleUpdate.exe [107912 2014-10-30] (Google Inc.)
R2 HP DS Service; C:\Program Files\HP\HPBDSService\HPBDSService.exe [13824 2010-10-27] (Hewlett-Packard Company) [File not signed]
R2 HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [145920 2010-10-27] (HP) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 IISADMIN; C:\Windows\system32\inetsrv\inetinfo.exe [13824 2009-07-14] (Microsoft Corporation)
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2010-06-16] (Hewlett-Packard Company) [File not signed]
R2 LvHidSvc; C:\Windows\system32\lvhidsvc.exe [32256 2003-10-31] (Animation Technologies Inc.) [File not signed]
R2 nSvcIp; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [178720 2009-07-23] ()
S2 PCLEPCI; C:\Windows\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24144 2015-04-07] ()
R1 aswKbd; C:\Windows\system32\Drivers\aswKbd.sys [20624 2012-10-31] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [73440 2015-04-07] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81728 2015-04-07] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49904 2015-04-07] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [788272 2015-04-07] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427736 2015-04-07] (Avast Software s.r.o.)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [106912 2015-04-07] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [208024 2015-04-07] ()
S3 AVHybrid; C:\Windows\System32\DRIVERS\AVHybrid.sys [999680 2005-04-29] ()
R1 CSDriver; C:\Program Files\Common Files\ArtistScope\CSDriver32.sys [38328 2012-09-26] ()
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-09-23] (LogMeIn, Inc.)
S3 HPFXBULKLEDM; C:\Windows\System32\drivers\hppcbulkio.sys [20504 2011-10-10] (Hewlett Packard)
R3 MarvinBus; C:\Windows\System32\DRIVERS\MarvinBus.sys [171520 2007-01-04] (Pinnacle Systems GmbH)
R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [56572 2008-11-02] (PowerISO Computing, Inc.) [File not signed]
S3 tap0801; C:\Windows\System32\DRIVERS\tap0801.sys [26624 2006-10-01] (The OpenVPN Project) [File not signed]
R2 tifsfilter; C:\Windows\System32\DRIVERS\tifsfilt.sys [44384 2008-03-23] (Acronis)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [220240 2015-04-07] (Avast Software)
S3 vncmirror; C:\Windows\System32\DRIVERS\vncmirror.sys [4608 2014-06-03] (RealVNC Ltd.)
S3 xxxHpSAMD; C:\Windows\system32\drivers\HpSAMD.sys [67152 2009-07-14] (Hewlett-Packard Company)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\Users\RODIE~1\AppData\Local\Temp\catchme.sys [X]
U5 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [42856 2009-06-10] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-21 17:15 - 2015-04-21 17:15 - 00000000 ____D () C:\Users\Rodiče\Desktop\PCHunter_free
2015-04-21 17:14 - 2015-04-21 17:15 - 06739485 _____ () C:\Users\Rodiče\Desktop\PCHunter_free.zip
2015-04-21 16:52 - 2015-04-21 21:47 - 00000924 _____ () C:\Windows\Tasks\Google Software Updater.job
2015-04-21 16:10 - 2015-04-21 16:10 - 00018948 _____ () C:\Users\Rodiče\Desktop\Addition.zip
2015-04-21 14:40 - 2015-04-21 14:46 - 00076826 _____ () C:\Users\Rodiče\Desktop\Addition.txt
2015-04-21 14:26 - 2015-04-21 21:57 - 00022967 _____ () C:\Users\Rodiče\Desktop\FRST.txt
2015-04-21 14:25 - 2015-04-21 14:25 - 01139200 _____ (Farbar) C:\Users\Rodiče\Desktop\FRST.exe
2015-04-20 21:31 - 2015-04-20 21:31 - 00025386 _____ () C:\ComboFix.txt
2015-04-20 15:38 - 2015-04-20 21:32 - 00000000 ____D () C:\ComboFix
2015-04-20 01:48 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2015-04-20 01:48 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2015-04-20 01:48 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-04-20 01:48 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-04-20 01:48 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-04-20 01:48 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2015-04-20 01:48 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2015-04-20 01:48 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2015-04-20 01:46 - 2015-04-20 21:32 - 00000000 ____D () C:\Qoobox
2015-04-20 01:44 - 2015-04-20 14:37 - 00000000 ____D () C:\Windows\erdnt
2015-04-20 01:42 - 2015-04-20 15:20 - 05619466 ____R (Swearware) C:\ComboFix.exe
2015-04-20 01:29 - 2015-04-20 21:06 - 00001446 _____ () C:\Windows\PFRO.log
2015-04-19 23:17 - 2015-04-19 23:17 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-04-19 23:16 - 2015-04-20 01:29 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-04-19 23:16 - 2015-04-19 23:16 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-19 23:15 - 2015-04-19 23:15 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-04-19 22:37 - 2015-04-21 21:54 - 00000000 ____D () C:\FRST
2015-04-19 09:21 - 2015-04-21 21:47 - 00280236 _____ () C:\Windows\setupact.log
2015-04-19 09:21 - 2015-04-19 09:21 - 00000000 _____ () C:\Windows\setuperr.log
2015-04-15 14:02 - 2015-03-23 05:06 - 00860160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00331264 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-04-15 14:02 - 2015-03-23 04:59 - 00896000 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-04-15 14:02 - 2015-03-04 06:16 - 00249784 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-15 14:02 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-15 14:01 - 2015-04-02 01:49 - 00342704 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-04-15 14:01 - 2015-03-17 07:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-04-15 14:01 - 2015-03-17 07:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-15 14:01 - 2015-03-17 07:01 - 00137656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-04-15 14:01 - 2015-03-17 07:01 - 00067512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-04-15 14:01 - 2015-03-17 06:59 - 01306112 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-04-15 14:01 - 2015-03-17 06:56 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-04-15 14:01 - 2015-03-17 06:56 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-04-15 14:01 - 2015-03-17 06:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-04-15 14:01 - 2015-03-17 06:56 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-04-15 14:01 - 2015-03-17 06:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-04-15 14:01 - 2015-03-17 06:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-04-15 14:01 - 2015-03-17 06:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-04-15 14:01 - 2015-03-17 06:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-04-15 14:01 - 2015-03-17 06:50 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-04-15 14:01 - 2015-03-17 06:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-04-15 14:01 - 2015-03-13 05:42 - 19695616 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-15 14:01 - 2015-03-13 05:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-15 14:01 - 2015-03-13 05:42 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-04-15 14:01 - 2015-03-13 05:28 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-15 14:01 - 2015-03-13 05:28 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-04-15 14:01 - 2015-03-13 05:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-15 14:01 - 2015-03-13 05:27 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-04-15 14:01 - 2015-03-13 05:26 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-04-15 14:01 - 2015-03-13 05:22 - 02278400 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-15 14:01 - 2015-03-13 05:20 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-15 14:01 - 2015-03-13 05:20 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-04-15 14:01 - 2015-03-13 05:17 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-04-15 14:01 - 2015-03-13 05:16 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-04-15 14:01 - 2015-03-13 05:16 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-04-15 14:01 - 2015-03-13 05:15 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-04-15 14:01 - 2015-03-13 05:09 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-15 14:01 - 2015-03-13 05:06 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-15 14:01 - 2015-03-13 05:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-15 14:01 - 2015-03-13 04:57 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-04-15 14:01 - 2015-03-13 04:56 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-15 14:01 - 2015-03-13 04:54 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-15 14:01 - 2015-03-13 04:49 - 04305408 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-15 14:01 - 2015-03-13 04:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-15 14:01 - 2015-03-13 04:43 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-15 14:01 - 2015-03-13 04:43 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-15 14:01 - 2015-03-13 04:42 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-04-15 14:01 - 2015-03-13 04:34 - 12825600 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-15 14:01 - 2015-03-13 04:20 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-15 14:01 - 2015-03-13 04:16 - 01311232 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-15 14:01 - 2015-03-13 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-04-15 14:01 - 2015-03-05 06:06 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 03088384 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 02020864 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-15 14:00 - 2015-03-25 05:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-15 14:00 - 2015-03-25 05:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-04-15 13:59 - 2015-03-10 05:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-15 13:59 - 2015-03-10 05:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-04-15 13:59 - 2015-02-25 05:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-04-10 21:34 - 2015-04-10 21:34 - 00000000 ____D () C:\Users\Rodiče\Documents\Vlastní šablony Office
2015-04-07 13:32 - 2015-04-07 13:31 - 00291312 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-04-07 13:31 - 2015-04-07 13:31 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
2015-04-06 10:41 - 2015-04-06 10:41 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-04-06 07:02 - 2015-04-16 21:50 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-04-06 06:56 - 2015-04-06 06:59 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2015-04-06 06:48 - 2015-04-06 06:48 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2015-04-05 21:01 - 2015-04-05 21:01 - 00001917 _____ () C:\Users\Public\Desktop\FileZilla Client.lnk
2015-04-05 21:00 - 2015-04-05 21:00 - 06196576 _____ (Tim Kosse) C:\Users\Rodiče\Downloads\FileZilla_3.10.3_win32-setup.exe
2015-04-04 22:44 - 2015-04-04 22:45 - 00000000 ___SD () C:\Windows\system32\GWX
2015-03-23 19:18 - 2015-03-23 19:18 - 00000000 ____D () C:\Users\Rodiče\Tracing
2015-03-22 09:50 - 2015-03-22 09:50 - 01079296 _____ (Uniblue Systems Limited ) C:\Users\Rodiče\Downloads\pcmechanicpm.exe
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-21 21:57 - 2012-04-03 08:33 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-21 21:55 - 2008-02-25 22:38 - 00000000 ____D () C:\Users\Rodiče\AppData\Roaming\Skype
2015-04-21 21:54 - 2012-10-17 01:09 - 01675468 _____ () C:\Windows\WindowsUpdate.log
2015-04-21 21:54 - 2008-02-25 22:37 - 00000000 ____D () C:\ProgramData\Skype
2015-04-21 21:50 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\inetsrv
2015-04-21 21:47 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-21 20:59 - 2015-03-10 18:34 - 00007631 _____ () C:\Users\Rodiče\AppData\Local\Resmon.ResmonCfg
2015-04-21 20:57 - 2011-11-03 18:37 - 00000000 ____D () C:\Users\Rodiče\Desktop\+STAŽENÉ+
2015-04-21 18:45 - 2009-05-03 18:59 - 00647680 ___SH () C:\Users\Rodiče\Desktop\Thumbs.db
2015-04-21 18:42 - 2013-10-19 18:48 - 00000349 _____ () C:\Users\Public\Documents\PCLECHAL.INI
2015-04-21 16:59 - 2012-09-28 13:48 - 00018544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-21 16:59 - 2012-09-28 13:48 - 00018544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-21 13:45 - 2008-11-08 21:50 - 00000000 ____D () C:\Program Files\Opera
2015-04-20 21:12 - 2006-11-02 12:23 - 00000246 _____ () C:\Windows\system.ini
2015-04-20 14:48 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Public
2015-04-20 01:30 - 2012-10-17 02:41 - 00000008 __RSH () C:\Users\Rodiče\ntuser.pol
2015-04-20 01:30 - 2012-10-16 23:46 - 00000000 ____D () C:\Users\Rodiče
2015-04-20 01:30 - 2012-09-28 15:29 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2015-04-20 01:20 - 2006-11-02 13:18 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2015-04-19 22:30 - 2008-03-15 23:42 - 00000000 ____D () C:\bakalari
2015-04-19 22:27 - 2008-03-15 23:59 - 00000000 ____D () C:\TEMP
2015-04-19 08:46 - 2012-10-17 02:41 - 00175208 _____ () C:\Users\Rodiče\AppData\Local\GDIPFONTCACHEV1.DAT
2015-04-18 21:55 - 2012-09-12 11:40 - 00000000 ___RD () C:\Users\Rodiče\Desktop\__ K TISKU __
2015-04-18 20:26 - 2011-04-18 13:43 - 00000000 ____D () C:\Users\Rodiče\Desktop\MÁMA
2015-04-18 20:01 - 2013-04-15 16:36 - 00000000 ___RD () C:\Users\Rodiče\Desktop\___pošta___
2015-04-18 10:01 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\AppCompat
2015-04-17 16:16 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2015-04-17 13:20 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF
2015-04-16 21:49 - 2008-02-24 22:57 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-04-16 14:19 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-04-16 13:11 - 2014-12-11 09:26 - 00000000 ____D () C:\Windows\system32\appraiser
2015-04-16 13:11 - 2014-05-06 23:38 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-04-15 23:16 - 2006-11-02 12:23 - 00000382 _____ () C:\Windows\win.ini
2015-04-15 23:13 - 2013-08-16 22:29 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-15 22:52 - 2012-10-26 07:43 - 125832184 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-04-15 22:49 - 2010-11-20 23:01 - 01688714 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-15 19:57 - 2012-04-03 08:33 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-04-15 19:57 - 2011-06-13 18:03 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-04-13 22:04 - 2013-07-10 20:49 - 00000000 ____D () C:\Users\Rodiče\AppData\Roaming\FileZilla
2015-04-13 19:12 - 2010-11-17 22:53 - 00000000 ____D () C:\Users\Rodiče\Desktop\ONDRA
2015-04-08 12:45 - 2012-04-25 22:29 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-04-07 13:32 - 2014-06-23 06:41 - 00024144 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-04-07 13:32 - 2014-01-02 19:36 - 00106912 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys
2015-04-07 13:32 - 2013-03-14 07:27 - 00208024 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-04-07 13:32 - 2013-03-14 07:27 - 00049904 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-04-07 13:32 - 2012-11-04 21:41 - 00081728 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys
2015-04-07 13:32 - 2008-04-01 16:46 - 00427736 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
2015-04-07 13:32 - 2008-02-24 23:37 - 00073440 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-04-07 13:30 - 2011-11-20 09:47 - 00788272 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
2015-04-06 07:15 - 2009-07-14 06:33 - 00638088 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-04-06 07:10 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-04-06 07:08 - 2011-04-12 03:46 - 00000000 ____D () C:\Windows\ShellNew
2015-04-06 07:07 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\System
2015-04-06 07:00 - 2008-02-24 22:59 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2015-04-06 06:59 - 2008-02-24 22:59 - 00000000 ____D () C:\Program Files\Microsoft.NET
2015-04-06 06:56 - 2008-02-24 22:57 - 00000000 ____D () C:\Program Files\Microsoft Office
2015-04-05 21:01 - 2013-07-10 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2015-04-05 21:01 - 2013-07-10 20:49 - 00000000 ____D () C:\Program Files\FileZilla FTP Client
2015-03-31 15:47 - 2014-08-21 19:31 - 00000000 ____D () C:\Users\Rodiče\AppData\Local\Adobe
2015-03-29 22:35 - 2010-09-20 20:12 - 00000000 ____D () C:\Users\Rodiče\Desktop\LENKA
2015-03-23 19:18 - 2014-09-29 07:28 - 00000000 ___RD () C:\Program Files\Skype
==================== Files in the root of some directories =======
2008-02-24 23:47 - 2006-03-20 16:37 - 5689344 _____ (Gabest) C:\Program Files\mplayerc.exe
2008-03-23 16:40 - 2008-03-23 16:42 - 0000140 _____ () C:\Users\Rodiče\AppData\Roaming\burnaware.ini
2012-04-17 22:15 - 2012-05-21 15:58 - 0000128 _____ () C:\Users\Rodiče\AppData\Roaming\Earthquakes Meter_Settings.ini
2008-11-25 21:18 - 2008-11-25 22:34 - 0087608 _____ () C:\Users\Rodiče\AppData\Roaming\inst.exe
2008-11-25 21:18 - 2008-11-25 22:34 - 0007887 _____ () C:\Users\Rodiče\AppData\Roaming\pcouffin.cat
2008-11-25 21:18 - 2008-11-25 22:34 - 0001144 _____ () C:\Users\Rodiče\AppData\Roaming\pcouffin.inf
2008-11-25 21:19 - 2008-11-25 22:34 - 0000033 _____ () C:\Users\Rodiče\AppData\Roaming\pcouffin.log
2008-11-25 21:18 - 2008-11-25 22:34 - 0047360 _____ (VSO Software) C:\Users\Rodiče\AppData\Roaming\pcouffin.sys
2011-11-13 07:50 - 2011-11-13 07:50 - 0000600 _____ () C:\Users\Rodiče\AppData\Roaming\winscp.rnd
2012-10-27 22:13 - 2014-12-29 00:19 - 0010240 _____ () C:\Users\Rodiče\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-10-25 21:13 - 2012-10-25 21:13 - 0000000 _____ () C:\Users\Rodiče\AppData\Local\PRAKTIK.INI
2015-03-06 14:39 - 2015-03-06 14:39 - 0000218 _____ () C:\Users\Rodiče\AppData\Local\recently-used.xbel
2015-03-10 18:34 - 2015-04-21 20:59 - 0007631 _____ () C:\Users\Rodiče\AppData\Local\Resmon.ResmonCfg
2012-10-25 14:01 - 2012-10-25 14:02 - 0000413 _____ () C:\ProgramData\hpzinstall.log
2012-10-17 11:14 - 2012-11-22 17:19 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2012-10-25 21:13 - 2012-10-25 21:13 - 0000000 _____ () C:\ProgramData\PRAKTIK.INI
2013-10-19 22:29 - 2013-10-25 22:33 - 0000024 _____ () C:\ProgramData\__FileUploader.log
Files to move or delete:
====================
C:\Users\NFSU\jagex_runescape_preferences.dat
C:\Users\NFSU\jagex_runescape_preferences2.dat
C:\Users\NFSU\jagex__preferences3.dat
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-04-14 16:24
==================== End Of Log ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Proces lvhidsvc.exe vytěžuje procesor, prosím o pomoc o rána
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Proces lvhidsvc.exe vytěžuje procesor, prosím o pomoc o
Co myslíte:
"Resenim se nabizi jednoduse zakazat sluzbu, aby se spoustela pri spusteni PC."
Jaj se to dá udělat?
Děkuji za odpověď.
"Resenim se nabizi jednoduse zakazat sluzbu, aby se spoustela pri spusteni PC."
Jaj se to dá udělat?
Děkuji za odpověď.
Re: Proces lvhidsvc.exe vytěžuje procesor, prosím o pomoc o
- Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
- ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
- znovu spustte FRST a kliknete na Fix
- po restartu bude na plose ulozen fixlog, jehoz obsah mi vlozte do pristi odpovedi
Kód: Vybrat vše
Start CloseProcesses: DisableService: LvHidSvc Reboot: End
Po restartu sledujte, zda je procesor stale vytizen a dejte pak jeste aktualni log FRST.Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Proces lvhidsvc.exe vytěžuje procesor, prosím o pomoc o
Dobrý den,
proces je zastavený, nerozjel se po restartu.
Děkuji!
log po fixu:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 20-04-2015
Ran by Rodiče at 2015-04-21 22:32:23 Run:3
Running from C:\Users\Rodiče\Desktop
Loaded Profiles: Rodiče (Available profiles: Rodiče & Lenka & NFSU)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
CloseProcesses:
DisableService: LvHidSvc
Reboot:
End
*****************
Processes closed successfully.
LvHidSvc service was disabled
The system needed a reboot.
==== End of Fixlog 22:32:23 ====
proces je zastavený, nerozjel se po restartu.
Děkuji!
log po fixu:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 20-04-2015
Ran by Rodiče at 2015-04-21 22:32:23 Run:3
Running from C:\Users\Rodiče\Desktop
Loaded Profiles: Rodiče (Available profiles: Rodiče & Lenka & NFSU)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
CloseProcesses:
DisableService: LvHidSvc
Reboot:
End
*****************
Processes closed successfully.
LvHidSvc service was disabled
The system needed a reboot.
==== End of Fixlog 22:32:23 ====
Re: Proces lvhidsvc.exe vytěžuje procesor, prosím o pomoc o
log FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-04-2015
Ran by Rodiče (administrator) on CERNY on 21-04-2015 22:40:05
Running from C:\Users\Rodiče\Desktop
Loaded Profiles: Rodiče (Available profiles: Rodiče & Lenka & NFSU)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ArtistScope Pty Ltd) C:\Program Files\Common Files\ArtistScope\CSHelper32.exe
() C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
(Hewlett-Packard Company) C:\Program Files\HP\HPBDSService\HPBDSService.exe
(HP) C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
(Microsoft Corporation) C:\Windows\System32\inetsrv\inetinfo.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
() C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Seznam.cz a.s.) C:\Program Files\Seznam\Postak\Postak.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Google Inc.) C:\Users\Rodiče\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Rodiče\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Rodiče\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Google Inc.) C:\Users\Rodiče\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Rodiče\AppData\Local\Google\Chrome\Application\chrome.exe
(Prog-Soft s.r.o.) C:\Program Files\PSPad editor\PSPad.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SMail] => C:\Program Files\Seznam\Postak\Postak.exe [453936 2008-02-21] (Seznam.cz a.s.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5512912 2015-04-07] (Avast Software s.r.o.)
HKU\S-1-5-21-3533039139-1052968357-1368303399-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-04-07] (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-3533039139-1052968357-1368303399-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-3533039139-1052968357-1368303399-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.papeweb.cz/
SearchScopes: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... DF&pc=AVBR
SearchScopes: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> {0EBFFFDA-ABB1-49B2-A89B-594D808AC84F} URL = http://download.seznam.cz/vyhledavani/o ... rceid=IE_5
SearchScopes: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> {41FF3879-BCB7-4B39-B274-FEE2EC2BB8F5} URL = http://www.google.cz/search?q={searchTe ... 1I7GPEA_cs
SearchScopes: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = http://www.icq.com/search/results.php?q ... &ch_id=osd
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-03-31] (Microsoft Corporation)
BHO: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-05-14] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-28] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-07] (Avast Software s.r.o.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-03-18] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-28] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
Toolbar: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Toolbar: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.apple.com.edgesuite.net ... plugin.cab
DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/ ... ontrol.cab
DPF: {461A37E7-17B3-40E3-B6BB-7CAEC732C9E4} https://maxibps.postovnisporitelna.cz/C ... Enroll.dll
DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} http://www.eset.cz/OnlineScanner.cab
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20614.www2.hp.com/ediags/gmd/In ... ct119b.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab
DPF: {CAFEEFAC-0017-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1
FireFox:
========
FF ProfilePath: C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606
FF DefaultSearchEngine: Google (avast)
FF SearchEngineOrder.1: Google (avast)
FF SelectedSearchEngine: Google (avast)
FF Homepage: hxxp://www.papeweb.cz
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2014-06-03] (DivX, LLC)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @google.com/npPicasa2,version=2.0.0 -> C:\Program Files\Picasa2\npPicasa2.dll [2008-08-21] (Google, Inc.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Picasa2\npPicasa3.dll [2013-04-02] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-28] (Oracle Corporation)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-03-31] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.3 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @pack.google.com/Google Updater;version=14 -> C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll [2011-10-03] (Google)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3533039139-1052968357-1368303399-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Rodiče\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin HKU\S-1-5-21-3533039139-1052968357-1368303399-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Rodiče\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-03-31] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2015-01-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2015-01-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2015-01-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2015-01-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2015-01-06] (Apple Inc.)
FF SearchPlugin: C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\searchplugins\google-avast.xml [2014-12-15]
FF Extension: No Name - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\artur.dubovoy@gmail.com [2015-04-10]
FF Extension: gTranslator - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\jyboy.yy@gmail.com [2014-01-03]
FF Extension: ColorZilla - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} [2014-01-03]
FF Extension: Firebug - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\firebug@software.joehewitt.com.xpi [2014-01-03]
FF Extension: Simple Timer - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\simpletimer@grbradt.org.xpi [2014-01-03]
FF Extension: Google Translator for Firefox - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\translator@zoli.bod.xpi [2014-05-11]
FF Extension: View in Office Online Viewer - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\viewinofficeapps@huhsiaotao.xpi [2014-01-03]
FF Extension: No Name - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\{5A170DD3-63CA-4c58-93B7-DE9FF536C2FF}.xpi [2014-01-03]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: No Name - C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-11-20]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF HKLM\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff
Chrome:
=======
CHR HomePage: Default -> hxxp://www.papeweb.cz/
CHR StartupUrls: Default -> "hxxp://www.papeweb.cz/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-05-07]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2013-11-22]
CHR Extension: (Bookmark Manager) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-21]
CHR Extension: (Avast Online Security) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-05-16]
CHR Extension: (Color Picker Tools) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijgamcmigplkkdkhfcjmpjojlklnkgop [2014-01-21]
CHR Extension: (Color Picker) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcmgligingjhdnhdhgepemlckgcgmgaj [2014-08-18]
CHR Extension: (Google Wallet) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2013-11-22]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-07]
CHR HKLM\...\Chrome\Extension: [ocphobfcfafpclibolpjdafgaffkaoci] - C:\Users\Rodiče\AppData\Local\GamePlayLabs Plugin\gplplugin.crx [2011-03-15]
CHR HKU\S-1-5-21-3533039139-1052968357-1368303399-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\RODIE~1\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-05-03]
StartMenuInternet: Google Chrome - C:\Users\Rodiče\AppData\Local\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-04-07] (Avast Software s.r.o.)
S3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3205216 2015-04-07] (Avast Software)
R2 CSHelper; C:\Program Files\Common Files\ArtistScope\CSHelper32.exe [236536 2012-09-26] (ArtistScope Pty Ltd)
R2 ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [387616 2009-07-23] ()
S2 gupdate1ca24ec3816786f; C:\Program Files\Google\Update\GoogleUpdate.exe [107912 2014-10-30] (Google Inc.)
R2 HP DS Service; C:\Program Files\HP\HPBDSService\HPBDSService.exe [13824 2010-10-27] (Hewlett-Packard Company) [File not signed]
R2 HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [145920 2010-10-27] (HP) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 IISADMIN; C:\Windows\system32\inetsrv\inetinfo.exe [13824 2009-07-14] (Microsoft Corporation)
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2010-06-16] (Hewlett-Packard Company) [File not signed]
S4 LvHidSvc; C:\Windows\system32\lvhidsvc.exe [32256 2003-10-31] (Animation Technologies Inc.) [File not signed]
R2 nSvcIp; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [178720 2009-07-23] ()
S2 PCLEPCI; C:\Windows\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24144 2015-04-07] ()
R1 aswKbd; C:\Windows\system32\Drivers\aswKbd.sys [20624 2012-10-31] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [73440 2015-04-07] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81728 2015-04-07] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49904 2015-04-07] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [788272 2015-04-07] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427736 2015-04-07] (Avast Software s.r.o.)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [106912 2015-04-07] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [208024 2015-04-07] ()
S3 AVHybrid; C:\Windows\System32\DRIVERS\AVHybrid.sys [999680 2005-04-29] ()
R1 CSDriver; C:\Program Files\Common Files\ArtistScope\CSDriver32.sys [38328 2012-09-26] ()
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-09-23] (LogMeIn, Inc.)
S3 HPFXBULKLEDM; C:\Windows\System32\drivers\hppcbulkio.sys [20504 2011-10-10] (Hewlett Packard)
R3 MarvinBus; C:\Windows\System32\DRIVERS\MarvinBus.sys [171520 2007-01-04] (Pinnacle Systems GmbH)
R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [56572 2008-11-02] (PowerISO Computing, Inc.) [File not signed]
S3 tap0801; C:\Windows\System32\DRIVERS\tap0801.sys [26624 2006-10-01] (The OpenVPN Project) [File not signed]
R2 tifsfilter; C:\Windows\System32\DRIVERS\tifsfilt.sys [44384 2008-03-23] (Acronis)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [220240 2015-04-07] (Avast Software)
S3 vncmirror; C:\Windows\System32\DRIVERS\vncmirror.sys [4608 2014-06-03] (RealVNC Ltd.)
S3 xxxHpSAMD; C:\Windows\system32\drivers\HpSAMD.sys [67152 2009-07-14] (Hewlett-Packard Company)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\Users\RODIE~1\AppData\Local\Temp\catchme.sys [X]
U5 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [42856 2009-06-10] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-21 17:15 - 2015-04-21 17:15 - 00000000 ____D () C:\Users\Rodiče\Desktop\PCHunter_free
2015-04-21 17:14 - 2015-04-21 17:15 - 06739485 _____ () C:\Users\Rodiče\Desktop\PCHunter_free.zip
2015-04-21 16:52 - 2015-04-21 21:47 - 00000924 _____ () C:\Windows\Tasks\Google Software Updater.job
2015-04-21 16:10 - 2015-04-21 16:10 - 00018948 _____ () C:\Users\Rodiče\Desktop\Addition.zip
2015-04-21 14:40 - 2015-04-21 22:19 - 00076617 _____ () C:\Users\Rodiče\Desktop\Addition.txt
2015-04-21 14:26 - 2015-04-21 22:40 - 00023217 _____ () C:\Users\Rodiče\Desktop\FRST.txt
2015-04-21 14:25 - 2015-04-21 14:25 - 01139200 _____ (Farbar) C:\Users\Rodiče\Desktop\FRST.exe
2015-04-20 21:31 - 2015-04-20 21:31 - 00025386 _____ () C:\ComboFix.txt
2015-04-20 15:38 - 2015-04-20 21:32 - 00000000 ____D () C:\ComboFix
2015-04-20 01:48 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2015-04-20 01:48 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2015-04-20 01:48 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-04-20 01:48 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-04-20 01:48 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-04-20 01:48 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2015-04-20 01:48 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2015-04-20 01:48 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2015-04-20 01:46 - 2015-04-20 21:32 - 00000000 ____D () C:\Qoobox
2015-04-20 01:44 - 2015-04-20 14:37 - 00000000 ____D () C:\Windows\erdnt
2015-04-20 01:42 - 2015-04-20 15:20 - 05619466 ____R (Swearware) C:\ComboFix.exe
2015-04-20 01:29 - 2015-04-20 21:06 - 00001446 _____ () C:\Windows\PFRO.log
2015-04-19 23:17 - 2015-04-19 23:17 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-04-19 23:16 - 2015-04-20 01:29 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-04-19 23:16 - 2015-04-19 23:16 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-19 23:15 - 2015-04-19 23:15 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-04-19 22:37 - 2015-04-21 22:40 - 00000000 ____D () C:\FRST
2015-04-19 09:21 - 2015-04-21 22:33 - 00305712 _____ () C:\Windows\setupact.log
2015-04-19 09:21 - 2015-04-19 09:21 - 00000000 _____ () C:\Windows\setuperr.log
2015-04-15 14:02 - 2015-03-23 05:06 - 00860160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00331264 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-04-15 14:02 - 2015-03-23 04:59 - 00896000 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-04-15 14:02 - 2015-03-04 06:16 - 00249784 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-15 14:02 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-15 14:01 - 2015-04-02 01:49 - 00342704 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-04-15 14:01 - 2015-03-17 07:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-04-15 14:01 - 2015-03-17 07:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-15 14:01 - 2015-03-17 07:01 - 00137656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-04-15 14:01 - 2015-03-17 07:01 - 00067512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-04-15 14:01 - 2015-03-17 06:59 - 01306112 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-04-15 14:01 - 2015-03-17 06:56 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-04-15 14:01 - 2015-03-17 06:56 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-04-15 14:01 - 2015-03-17 06:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-04-15 14:01 - 2015-03-17 06:56 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-04-15 14:01 - 2015-03-17 06:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-04-15 14:01 - 2015-03-17 06:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-04-15 14:01 - 2015-03-17 06:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-04-15 14:01 - 2015-03-17 06:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-04-15 14:01 - 2015-03-17 06:50 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-04-15 14:01 - 2015-03-17 06:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-04-15 14:01 - 2015-03-13 05:42 - 19695616 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-15 14:01 - 2015-03-13 05:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-15 14:01 - 2015-03-13 05:42 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-04-15 14:01 - 2015-03-13 05:28 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-15 14:01 - 2015-03-13 05:28 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-04-15 14:01 - 2015-03-13 05:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-15 14:01 - 2015-03-13 05:27 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-04-15 14:01 - 2015-03-13 05:26 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-04-15 14:01 - 2015-03-13 05:22 - 02278400 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-15 14:01 - 2015-03-13 05:20 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-15 14:01 - 2015-03-13 05:20 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-04-15 14:01 - 2015-03-13 05:17 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-04-15 14:01 - 2015-03-13 05:16 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-04-15 14:01 - 2015-03-13 05:16 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-04-15 14:01 - 2015-03-13 05:15 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-04-15 14:01 - 2015-03-13 05:09 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-15 14:01 - 2015-03-13 05:06 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-15 14:01 - 2015-03-13 05:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-15 14:01 - 2015-03-13 04:57 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-04-15 14:01 - 2015-03-13 04:56 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-15 14:01 - 2015-03-13 04:54 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-15 14:01 - 2015-03-13 04:49 - 04305408 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-15 14:01 - 2015-03-13 04:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-15 14:01 - 2015-03-13 04:43 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-15 14:01 - 2015-03-13 04:43 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-15 14:01 - 2015-03-13 04:42 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-04-15 14:01 - 2015-03-13 04:34 - 12825600 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-15 14:01 - 2015-03-13 04:20 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-15 14:01 - 2015-03-13 04:16 - 01311232 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-15 14:01 - 2015-03-13 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-04-15 14:01 - 2015-03-05 06:06 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 03088384 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 02020864 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-15 14:00 - 2015-03-25 05:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-15 14:00 - 2015-03-25 05:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-04-15 13:59 - 2015-03-10 05:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-15 13:59 - 2015-03-10 05:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-04-15 13:59 - 2015-02-25 05:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-04-10 21:34 - 2015-04-10 21:34 - 00000000 ____D () C:\Users\Rodiče\Documents\Vlastní šablony Office
2015-04-07 13:32 - 2015-04-07 13:31 - 00291312 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-04-07 13:31 - 2015-04-07 13:31 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
2015-04-06 10:41 - 2015-04-06 10:41 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-04-06 07:02 - 2015-04-16 21:50 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-04-06 06:56 - 2015-04-06 06:59 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2015-04-06 06:48 - 2015-04-06 06:48 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2015-04-05 21:01 - 2015-04-05 21:01 - 00001917 _____ () C:\Users\Public\Desktop\FileZilla Client.lnk
2015-04-05 21:00 - 2015-04-05 21:00 - 06196576 _____ (Tim Kosse) C:\Users\Rodiče\Downloads\FileZilla_3.10.3_win32-setup.exe
2015-04-04 22:44 - 2015-04-04 22:45 - 00000000 ___SD () C:\Windows\system32\GWX
2015-03-23 19:18 - 2015-03-23 19:18 - 00000000 ____D () C:\Users\Rodiče\Tracing
2015-03-22 09:50 - 2015-03-22 09:50 - 01079296 _____ (Uniblue Systems Limited ) C:\Users\Rodiče\Downloads\pcmechanicpm.exe
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-21 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\inetsrv
2015-04-21 22:35 - 2008-02-25 22:38 - 00000000 ____D () C:\Users\Rodiče\AppData\Roaming\Skype
2015-04-21 22:33 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-21 22:32 - 2012-10-17 01:09 - 01687175 _____ () C:\Windows\WindowsUpdate.log
2015-04-21 21:58 - 2012-09-28 13:48 - 00018544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-21 21:58 - 2012-09-28 13:48 - 00018544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-21 21:57 - 2012-04-03 08:33 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-21 21:54 - 2008-02-25 22:37 - 00000000 ____D () C:\ProgramData\Skype
2015-04-21 20:59 - 2015-03-10 18:34 - 00007631 _____ () C:\Users\Rodiče\AppData\Local\Resmon.ResmonCfg
2015-04-21 20:57 - 2011-11-03 18:37 - 00000000 ____D () C:\Users\Rodiče\Desktop\+STAŽENÉ+
2015-04-21 18:45 - 2009-05-03 18:59 - 00647680 ___SH () C:\Users\Rodiče\Desktop\Thumbs.db
2015-04-21 18:42 - 2013-10-19 18:48 - 00000349 _____ () C:\Users\Public\Documents\PCLECHAL.INI
2015-04-21 13:45 - 2008-11-08 21:50 - 00000000 ____D () C:\Program Files\Opera
2015-04-20 21:12 - 2006-11-02 12:23 - 00000246 _____ () C:\Windows\system.ini
2015-04-20 14:48 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Public
2015-04-20 01:30 - 2012-10-17 02:41 - 00000008 __RSH () C:\Users\Rodiče\ntuser.pol
2015-04-20 01:30 - 2012-10-16 23:46 - 00000000 ____D () C:\Users\Rodiče
2015-04-20 01:30 - 2012-09-28 15:29 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2015-04-20 01:20 - 2006-11-02 13:18 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2015-04-19 22:30 - 2008-03-15 23:42 - 00000000 ____D () C:\bakalari
2015-04-19 22:27 - 2008-03-15 23:59 - 00000000 ____D () C:\TEMP
2015-04-19 08:46 - 2012-10-17 02:41 - 00175208 _____ () C:\Users\Rodiče\AppData\Local\GDIPFONTCACHEV1.DAT
2015-04-18 21:55 - 2012-09-12 11:40 - 00000000 ___RD () C:\Users\Rodiče\Desktop\__ K TISKU __
2015-04-18 20:26 - 2011-04-18 13:43 - 00000000 ____D () C:\Users\Rodiče\Desktop\MÁMA
2015-04-18 20:01 - 2013-04-15 16:36 - 00000000 ___RD () C:\Users\Rodiče\Desktop\___pošta___
2015-04-18 10:01 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\AppCompat
2015-04-17 16:16 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2015-04-17 13:20 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF
2015-04-16 21:49 - 2008-02-24 22:57 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-04-16 14:19 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-04-16 13:11 - 2014-12-11 09:26 - 00000000 ____D () C:\Windows\system32\appraiser
2015-04-16 13:11 - 2014-05-06 23:38 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-04-15 23:16 - 2006-11-02 12:23 - 00000382 _____ () C:\Windows\win.ini
2015-04-15 23:13 - 2013-08-16 22:29 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-15 22:52 - 2012-10-26 07:43 - 125832184 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-04-15 22:49 - 2010-11-20 23:01 - 01688714 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-15 19:57 - 2012-04-03 08:33 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-04-15 19:57 - 2011-06-13 18:03 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-04-13 22:04 - 2013-07-10 20:49 - 00000000 ____D () C:\Users\Rodiče\AppData\Roaming\FileZilla
2015-04-13 19:12 - 2010-11-17 22:53 - 00000000 ____D () C:\Users\Rodiče\Desktop\ONDRA
2015-04-08 12:45 - 2012-04-25 22:29 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-04-07 13:32 - 2014-06-23 06:41 - 00024144 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-04-07 13:32 - 2014-01-02 19:36 - 00106912 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys
2015-04-07 13:32 - 2013-03-14 07:27 - 00208024 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-04-07 13:32 - 2013-03-14 07:27 - 00049904 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-04-07 13:32 - 2012-11-04 21:41 - 00081728 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys
2015-04-07 13:32 - 2008-04-01 16:46 - 00427736 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
2015-04-07 13:32 - 2008-02-24 23:37 - 00073440 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-04-07 13:30 - 2011-11-20 09:47 - 00788272 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
2015-04-06 07:15 - 2009-07-14 06:33 - 00638088 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-04-06 07:10 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-04-06 07:08 - 2011-04-12 03:46 - 00000000 ____D () C:\Windows\ShellNew
2015-04-06 07:07 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\System
2015-04-06 07:00 - 2008-02-24 22:59 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2015-04-06 06:59 - 2008-02-24 22:59 - 00000000 ____D () C:\Program Files\Microsoft.NET
2015-04-06 06:56 - 2008-02-24 22:57 - 00000000 ____D () C:\Program Files\Microsoft Office
2015-04-05 21:01 - 2013-07-10 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2015-04-05 21:01 - 2013-07-10 20:49 - 00000000 ____D () C:\Program Files\FileZilla FTP Client
2015-03-31 15:47 - 2014-08-21 19:31 - 00000000 ____D () C:\Users\Rodiče\AppData\Local\Adobe
2015-03-29 22:35 - 2010-09-20 20:12 - 00000000 ____D () C:\Users\Rodiče\Desktop\LENKA
2015-03-23 19:18 - 2014-09-29 07:28 - 00000000 ___RD () C:\Program Files\Skype
==================== Files in the root of some directories =======
2008-02-24 23:47 - 2006-03-20 16:37 - 5689344 _____ (Gabest) C:\Program Files\mplayerc.exe
2008-03-23 16:40 - 2008-03-23 16:42 - 0000140 _____ () C:\Users\Rodiče\AppData\Roaming\burnaware.ini
2012-04-17 22:15 - 2012-05-21 15:58 - 0000128 _____ () C:\Users\Rodiče\AppData\Roaming\Earthquakes Meter_Settings.ini
2008-11-25 21:18 - 2008-11-25 22:34 - 0087608 _____ () C:\Users\Rodiče\AppData\Roaming\inst.exe
2008-11-25 21:18 - 2008-11-25 22:34 - 0007887 _____ () C:\Users\Rodiče\AppData\Roaming\pcouffin.cat
2008-11-25 21:18 - 2008-11-25 22:34 - 0001144 _____ () C:\Users\Rodiče\AppData\Roaming\pcouffin.inf
2008-11-25 21:19 - 2008-11-25 22:34 - 0000033 _____ () C:\Users\Rodiče\AppData\Roaming\pcouffin.log
2008-11-25 21:18 - 2008-11-25 22:34 - 0047360 _____ (VSO Software) C:\Users\Rodiče\AppData\Roaming\pcouffin.sys
2011-11-13 07:50 - 2011-11-13 07:50 - 0000600 _____ () C:\Users\Rodiče\AppData\Roaming\winscp.rnd
2012-10-27 22:13 - 2014-12-29 00:19 - 0010240 _____ () C:\Users\Rodiče\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-10-25 21:13 - 2012-10-25 21:13 - 0000000 _____ () C:\Users\Rodiče\AppData\Local\PRAKTIK.INI
2015-03-06 14:39 - 2015-03-06 14:39 - 0000218 _____ () C:\Users\Rodiče\AppData\Local\recently-used.xbel
2015-03-10 18:34 - 2015-04-21 20:59 - 0007631 _____ () C:\Users\Rodiče\AppData\Local\Resmon.ResmonCfg
2012-10-25 14:01 - 2012-10-25 14:02 - 0000413 _____ () C:\ProgramData\hpzinstall.log
2012-10-17 11:14 - 2012-11-22 17:19 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2012-10-25 21:13 - 2012-10-25 21:13 - 0000000 _____ () C:\ProgramData\PRAKTIK.INI
2013-10-19 22:29 - 2013-10-25 22:33 - 0000024 _____ () C:\ProgramData\__FileUploader.log
Files to move or delete:
====================
C:\Users\NFSU\jagex_runescape_preferences.dat
C:\Users\NFSU\jagex_runescape_preferences2.dat
C:\Users\NFSU\jagex__preferences3.dat
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-04-14 16:24
==================== End Of Log ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-04-2015
Ran by Rodiče (administrator) on CERNY on 21-04-2015 22:40:05
Running from C:\Users\Rodiče\Desktop
Loaded Profiles: Rodiče (Available profiles: Rodiče & Lenka & NFSU)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ArtistScope Pty Ltd) C:\Program Files\Common Files\ArtistScope\CSHelper32.exe
() C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
(Hewlett-Packard Company) C:\Program Files\HP\HPBDSService\HPBDSService.exe
(HP) C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
(Microsoft Corporation) C:\Windows\System32\inetsrv\inetinfo.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
() C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Seznam.cz a.s.) C:\Program Files\Seznam\Postak\Postak.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Google Inc.) C:\Users\Rodiče\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Rodiče\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Rodiče\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Google Inc.) C:\Users\Rodiče\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Rodiče\AppData\Local\Google\Chrome\Application\chrome.exe
(Prog-Soft s.r.o.) C:\Program Files\PSPad editor\PSPad.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SMail] => C:\Program Files\Seznam\Postak\Postak.exe [453936 2008-02-21] (Seznam.cz a.s.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5512912 2015-04-07] (Avast Software s.r.o.)
HKU\S-1-5-21-3533039139-1052968357-1368303399-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-04-07] (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-02-19] (Google)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-3533039139-1052968357-1368303399-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-3533039139-1052968357-1368303399-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.papeweb.cz/
SearchScopes: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... DF&pc=AVBR
SearchScopes: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> {0EBFFFDA-ABB1-49B2-A89B-594D808AC84F} URL = http://download.seznam.cz/vyhledavani/o ... rceid=IE_5
SearchScopes: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> {41FF3879-BCB7-4B39-B274-FEE2EC2BB8F5} URL = http://www.google.cz/search?q={searchTe ... 1I7GPEA_cs
SearchScopes: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = http://www.icq.com/search/results.php?q ... &ch_id=osd
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-03-31] (Microsoft Corporation)
BHO: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-05-14] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-28] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-07] (Avast Software s.r.o.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-03-18] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-28] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
Toolbar: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Toolbar: HKU\S-1-5-21-3533039139-1052968357-1368303399-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.apple.com.edgesuite.net ... plugin.cab
DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/ ... ontrol.cab
DPF: {461A37E7-17B3-40E3-B6BB-7CAEC732C9E4} https://maxibps.postovnisporitelna.cz/C ... Enroll.dll
DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} http://www.eset.cz/OnlineScanner.cab
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20614.www2.hp.com/ediags/gmd/In ... ct119b.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab
DPF: {CAFEEFAC-0017-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1
FireFox:
========
FF ProfilePath: C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606
FF DefaultSearchEngine: Google (avast)
FF SearchEngineOrder.1: Google (avast)
FF SelectedSearchEngine: Google (avast)
FF Homepage: hxxp://www.papeweb.cz
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2014-06-03] (DivX, LLC)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @google.com/npPicasa2,version=2.0.0 -> C:\Program Files\Picasa2\npPicasa2.dll [2008-08-21] (Google, Inc.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Picasa2\npPicasa3.dll [2013-04-02] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-28] (Oracle Corporation)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-03-31] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.3 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @pack.google.com/Google Updater;version=14 -> C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll [2011-10-03] (Google)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3533039139-1052968357-1368303399-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Rodiče\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin HKU\S-1-5-21-3533039139-1052968357-1368303399-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Rodiče\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-03-31] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2015-01-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2015-01-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2015-01-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2015-01-06] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2015-01-06] (Apple Inc.)
FF SearchPlugin: C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\searchplugins\google-avast.xml [2014-12-15]
FF Extension: No Name - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\artur.dubovoy@gmail.com [2015-04-10]
FF Extension: gTranslator - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\jyboy.yy@gmail.com [2014-01-03]
FF Extension: ColorZilla - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} [2014-01-03]
FF Extension: Firebug - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\firebug@software.joehewitt.com.xpi [2014-01-03]
FF Extension: Simple Timer - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\simpletimer@grbradt.org.xpi [2014-01-03]
FF Extension: Google Translator for Firefox - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\translator@zoli.bod.xpi [2014-05-11]
FF Extension: View in Office Online Viewer - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\viewinofficeapps@huhsiaotao.xpi [2014-01-03]
FF Extension: No Name - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\94z9eu4z.default-1388757279606\Extensions\{5A170DD3-63CA-4c58-93B7-DE9FF536C2FF}.xpi [2014-01-03]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: No Name - C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-11-20]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF HKLM\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff
Chrome:
=======
CHR HomePage: Default -> hxxp://www.papeweb.cz/
CHR StartupUrls: Default -> "hxxp://www.papeweb.cz/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-05-07]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2013-11-22]
CHR Extension: (Bookmark Manager) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-21]
CHR Extension: (Avast Online Security) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-05-16]
CHR Extension: (Color Picker Tools) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijgamcmigplkkdkhfcjmpjojlklnkgop [2014-01-21]
CHR Extension: (Color Picker) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcmgligingjhdnhdhgepemlckgcgmgaj [2014-08-18]
CHR Extension: (Google Wallet) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2013-11-22]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-07]
CHR HKLM\...\Chrome\Extension: [ocphobfcfafpclibolpjdafgaffkaoci] - C:\Users\Rodiče\AppData\Local\GamePlayLabs Plugin\gplplugin.crx [2011-03-15]
CHR HKU\S-1-5-21-3533039139-1052968357-1368303399-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\RODIE~1\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-05-03]
StartMenuInternet: Google Chrome - C:\Users\Rodiče\AppData\Local\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-04-07] (Avast Software s.r.o.)
S3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3205216 2015-04-07] (Avast Software)
R2 CSHelper; C:\Program Files\Common Files\ArtistScope\CSHelper32.exe [236536 2012-09-26] (ArtistScope Pty Ltd)
R2 ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [387616 2009-07-23] ()
S2 gupdate1ca24ec3816786f; C:\Program Files\Google\Update\GoogleUpdate.exe [107912 2014-10-30] (Google Inc.)
R2 HP DS Service; C:\Program Files\HP\HPBDSService\HPBDSService.exe [13824 2010-10-27] (Hewlett-Packard Company) [File not signed]
R2 HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [145920 2010-10-27] (HP) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 IISADMIN; C:\Windows\system32\inetsrv\inetinfo.exe [13824 2009-07-14] (Microsoft Corporation)
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2010-06-16] (Hewlett-Packard Company) [File not signed]
S4 LvHidSvc; C:\Windows\system32\lvhidsvc.exe [32256 2003-10-31] (Animation Technologies Inc.) [File not signed]
R2 nSvcIp; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [178720 2009-07-23] ()
S2 PCLEPCI; C:\Windows\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24144 2015-04-07] ()
R1 aswKbd; C:\Windows\system32\Drivers\aswKbd.sys [20624 2012-10-31] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [73440 2015-04-07] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81728 2015-04-07] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49904 2015-04-07] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [788272 2015-04-07] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427736 2015-04-07] (Avast Software s.r.o.)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [106912 2015-04-07] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [208024 2015-04-07] ()
S3 AVHybrid; C:\Windows\System32\DRIVERS\AVHybrid.sys [999680 2005-04-29] ()
R1 CSDriver; C:\Program Files\Common Files\ArtistScope\CSDriver32.sys [38328 2012-09-26] ()
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-09-23] (LogMeIn, Inc.)
S3 HPFXBULKLEDM; C:\Windows\System32\drivers\hppcbulkio.sys [20504 2011-10-10] (Hewlett Packard)
R3 MarvinBus; C:\Windows\System32\DRIVERS\MarvinBus.sys [171520 2007-01-04] (Pinnacle Systems GmbH)
R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [56572 2008-11-02] (PowerISO Computing, Inc.) [File not signed]
S3 tap0801; C:\Windows\System32\DRIVERS\tap0801.sys [26624 2006-10-01] (The OpenVPN Project) [File not signed]
R2 tifsfilter; C:\Windows\System32\DRIVERS\tifsfilt.sys [44384 2008-03-23] (Acronis)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [220240 2015-04-07] (Avast Software)
S3 vncmirror; C:\Windows\System32\DRIVERS\vncmirror.sys [4608 2014-06-03] (RealVNC Ltd.)
S3 xxxHpSAMD; C:\Windows\system32\drivers\HpSAMD.sys [67152 2009-07-14] (Hewlett-Packard Company)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\Users\RODIE~1\AppData\Local\Temp\catchme.sys [X]
U5 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [42856 2009-06-10] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-21 17:15 - 2015-04-21 17:15 - 00000000 ____D () C:\Users\Rodiče\Desktop\PCHunter_free
2015-04-21 17:14 - 2015-04-21 17:15 - 06739485 _____ () C:\Users\Rodiče\Desktop\PCHunter_free.zip
2015-04-21 16:52 - 2015-04-21 21:47 - 00000924 _____ () C:\Windows\Tasks\Google Software Updater.job
2015-04-21 16:10 - 2015-04-21 16:10 - 00018948 _____ () C:\Users\Rodiče\Desktop\Addition.zip
2015-04-21 14:40 - 2015-04-21 22:19 - 00076617 _____ () C:\Users\Rodiče\Desktop\Addition.txt
2015-04-21 14:26 - 2015-04-21 22:40 - 00023217 _____ () C:\Users\Rodiče\Desktop\FRST.txt
2015-04-21 14:25 - 2015-04-21 14:25 - 01139200 _____ (Farbar) C:\Users\Rodiče\Desktop\FRST.exe
2015-04-20 21:31 - 2015-04-20 21:31 - 00025386 _____ () C:\ComboFix.txt
2015-04-20 15:38 - 2015-04-20 21:32 - 00000000 ____D () C:\ComboFix
2015-04-20 01:48 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2015-04-20 01:48 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2015-04-20 01:48 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-04-20 01:48 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-04-20 01:48 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-04-20 01:48 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2015-04-20 01:48 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2015-04-20 01:48 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2015-04-20 01:46 - 2015-04-20 21:32 - 00000000 ____D () C:\Qoobox
2015-04-20 01:44 - 2015-04-20 14:37 - 00000000 ____D () C:\Windows\erdnt
2015-04-20 01:42 - 2015-04-20 15:20 - 05619466 ____R (Swearware) C:\ComboFix.exe
2015-04-20 01:29 - 2015-04-20 21:06 - 00001446 _____ () C:\Windows\PFRO.log
2015-04-19 23:17 - 2015-04-19 23:17 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-04-19 23:16 - 2015-04-20 01:29 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-04-19 23:16 - 2015-04-19 23:16 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-19 23:15 - 2015-04-19 23:15 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-04-19 22:37 - 2015-04-21 22:40 - 00000000 ____D () C:\FRST
2015-04-19 09:21 - 2015-04-21 22:33 - 00305712 _____ () C:\Windows\setupact.log
2015-04-19 09:21 - 2015-04-19 09:21 - 00000000 _____ () C:\Windows\setuperr.log
2015-04-15 14:02 - 2015-03-23 05:06 - 00860160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00331264 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-04-15 14:02 - 2015-03-23 05:06 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-04-15 14:02 - 2015-03-23 04:59 - 00896000 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-04-15 14:02 - 2015-03-04 06:16 - 00249784 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-15 14:02 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-15 14:01 - 2015-04-02 01:49 - 00342704 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-04-15 14:01 - 2015-03-17 07:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-04-15 14:01 - 2015-03-17 07:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-15 14:01 - 2015-03-17 07:01 - 00137656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-04-15 14:01 - 2015-03-17 07:01 - 00067512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-04-15 14:01 - 2015-03-17 06:59 - 01306112 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-04-15 14:01 - 2015-03-17 06:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-04-15 14:01 - 2015-03-17 06:56 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-04-15 14:01 - 2015-03-17 06:56 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-04-15 14:01 - 2015-03-17 06:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-04-15 14:01 - 2015-03-17 06:56 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-04-15 14:01 - 2015-03-17 06:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-04-15 14:01 - 2015-03-17 06:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-04-15 14:01 - 2015-03-17 06:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-04-15 14:01 - 2015-03-17 06:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-04-15 14:01 - 2015-03-17 06:50 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-04-15 14:01 - 2015-03-17 06:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-04-15 14:01 - 2015-03-13 05:42 - 19695616 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-15 14:01 - 2015-03-13 05:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-15 14:01 - 2015-03-13 05:42 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-04-15 14:01 - 2015-03-13 05:28 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-15 14:01 - 2015-03-13 05:28 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-04-15 14:01 - 2015-03-13 05:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-15 14:01 - 2015-03-13 05:27 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-04-15 14:01 - 2015-03-13 05:26 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-04-15 14:01 - 2015-03-13 05:22 - 02278400 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-15 14:01 - 2015-03-13 05:20 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-15 14:01 - 2015-03-13 05:20 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-04-15 14:01 - 2015-03-13 05:17 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-04-15 14:01 - 2015-03-13 05:16 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-04-15 14:01 - 2015-03-13 05:16 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-04-15 14:01 - 2015-03-13 05:15 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-04-15 14:01 - 2015-03-13 05:09 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-15 14:01 - 2015-03-13 05:06 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-15 14:01 - 2015-03-13 05:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-15 14:01 - 2015-03-13 04:57 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-04-15 14:01 - 2015-03-13 04:56 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-15 14:01 - 2015-03-13 04:54 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-15 14:01 - 2015-03-13 04:49 - 04305408 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-15 14:01 - 2015-03-13 04:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-15 14:01 - 2015-03-13 04:43 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-15 14:01 - 2015-03-13 04:43 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-15 14:01 - 2015-03-13 04:42 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-04-15 14:01 - 2015-03-13 04:34 - 12825600 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-15 14:01 - 2015-03-13 04:20 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-15 14:01 - 2015-03-13 04:16 - 01311232 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-15 14:01 - 2015-03-13 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-04-15 14:01 - 2015-03-05 06:06 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 03088384 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 02020864 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-15 14:00 - 2015-03-25 05:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-15 14:00 - 2015-03-25 05:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-15 14:00 - 2015-03-25 05:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-04-15 13:59 - 2015-03-10 05:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-15 13:59 - 2015-03-10 05:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-04-15 13:59 - 2015-02-25 05:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-04-10 21:34 - 2015-04-10 21:34 - 00000000 ____D () C:\Users\Rodiče\Documents\Vlastní šablony Office
2015-04-07 13:32 - 2015-04-07 13:31 - 00291312 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-04-07 13:31 - 2015-04-07 13:31 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
2015-04-06 10:41 - 2015-04-06 10:41 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-04-06 07:02 - 2015-04-16 21:50 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-04-06 06:56 - 2015-04-06 06:59 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2015-04-06 06:48 - 2015-04-06 06:48 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2015-04-05 21:01 - 2015-04-05 21:01 - 00001917 _____ () C:\Users\Public\Desktop\FileZilla Client.lnk
2015-04-05 21:00 - 2015-04-05 21:00 - 06196576 _____ (Tim Kosse) C:\Users\Rodiče\Downloads\FileZilla_3.10.3_win32-setup.exe
2015-04-04 22:44 - 2015-04-04 22:45 - 00000000 ___SD () C:\Windows\system32\GWX
2015-03-23 19:18 - 2015-03-23 19:18 - 00000000 ____D () C:\Users\Rodiče\Tracing
2015-03-22 09:50 - 2015-03-22 09:50 - 01079296 _____ (Uniblue Systems Limited ) C:\Users\Rodiče\Downloads\pcmechanicpm.exe
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-21 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\inetsrv
2015-04-21 22:35 - 2008-02-25 22:38 - 00000000 ____D () C:\Users\Rodiče\AppData\Roaming\Skype
2015-04-21 22:33 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-21 22:32 - 2012-10-17 01:09 - 01687175 _____ () C:\Windows\WindowsUpdate.log
2015-04-21 21:58 - 2012-09-28 13:48 - 00018544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-21 21:58 - 2012-09-28 13:48 - 00018544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-21 21:57 - 2012-04-03 08:33 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-21 21:54 - 2008-02-25 22:37 - 00000000 ____D () C:\ProgramData\Skype
2015-04-21 20:59 - 2015-03-10 18:34 - 00007631 _____ () C:\Users\Rodiče\AppData\Local\Resmon.ResmonCfg
2015-04-21 20:57 - 2011-11-03 18:37 - 00000000 ____D () C:\Users\Rodiče\Desktop\+STAŽENÉ+
2015-04-21 18:45 - 2009-05-03 18:59 - 00647680 ___SH () C:\Users\Rodiče\Desktop\Thumbs.db
2015-04-21 18:42 - 2013-10-19 18:48 - 00000349 _____ () C:\Users\Public\Documents\PCLECHAL.INI
2015-04-21 13:45 - 2008-11-08 21:50 - 00000000 ____D () C:\Program Files\Opera
2015-04-20 21:12 - 2006-11-02 12:23 - 00000246 _____ () C:\Windows\system.ini
2015-04-20 14:48 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Public
2015-04-20 01:30 - 2012-10-17 02:41 - 00000008 __RSH () C:\Users\Rodiče\ntuser.pol
2015-04-20 01:30 - 2012-10-16 23:46 - 00000000 ____D () C:\Users\Rodiče
2015-04-20 01:30 - 2012-09-28 15:29 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2015-04-20 01:20 - 2006-11-02 13:18 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2015-04-19 22:30 - 2008-03-15 23:42 - 00000000 ____D () C:\bakalari
2015-04-19 22:27 - 2008-03-15 23:59 - 00000000 ____D () C:\TEMP
2015-04-19 08:46 - 2012-10-17 02:41 - 00175208 _____ () C:\Users\Rodiče\AppData\Local\GDIPFONTCACHEV1.DAT
2015-04-18 21:55 - 2012-09-12 11:40 - 00000000 ___RD () C:\Users\Rodiče\Desktop\__ K TISKU __
2015-04-18 20:26 - 2011-04-18 13:43 - 00000000 ____D () C:\Users\Rodiče\Desktop\MÁMA
2015-04-18 20:01 - 2013-04-15 16:36 - 00000000 ___RD () C:\Users\Rodiče\Desktop\___pošta___
2015-04-18 10:01 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\AppCompat
2015-04-17 16:16 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2015-04-17 13:20 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF
2015-04-16 21:49 - 2008-02-24 22:57 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-04-16 14:19 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-04-16 13:11 - 2014-12-11 09:26 - 00000000 ____D () C:\Windows\system32\appraiser
2015-04-16 13:11 - 2014-05-06 23:38 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-04-15 23:16 - 2006-11-02 12:23 - 00000382 _____ () C:\Windows\win.ini
2015-04-15 23:13 - 2013-08-16 22:29 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-15 22:52 - 2012-10-26 07:43 - 125832184 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-04-15 22:49 - 2010-11-20 23:01 - 01688714 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-15 19:57 - 2012-04-03 08:33 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-04-15 19:57 - 2011-06-13 18:03 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-04-13 22:04 - 2013-07-10 20:49 - 00000000 ____D () C:\Users\Rodiče\AppData\Roaming\FileZilla
2015-04-13 19:12 - 2010-11-17 22:53 - 00000000 ____D () C:\Users\Rodiče\Desktop\ONDRA
2015-04-08 12:45 - 2012-04-25 22:29 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-04-07 13:32 - 2014-06-23 06:41 - 00024144 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-04-07 13:32 - 2014-01-02 19:36 - 00106912 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys
2015-04-07 13:32 - 2013-03-14 07:27 - 00208024 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-04-07 13:32 - 2013-03-14 07:27 - 00049904 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-04-07 13:32 - 2012-11-04 21:41 - 00081728 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys
2015-04-07 13:32 - 2008-04-01 16:46 - 00427736 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
2015-04-07 13:32 - 2008-02-24 23:37 - 00073440 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-04-07 13:30 - 2011-11-20 09:47 - 00788272 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
2015-04-06 07:15 - 2009-07-14 06:33 - 00638088 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-04-06 07:10 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-04-06 07:08 - 2011-04-12 03:46 - 00000000 ____D () C:\Windows\ShellNew
2015-04-06 07:07 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\System
2015-04-06 07:00 - 2008-02-24 22:59 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2015-04-06 06:59 - 2008-02-24 22:59 - 00000000 ____D () C:\Program Files\Microsoft.NET
2015-04-06 06:56 - 2008-02-24 22:57 - 00000000 ____D () C:\Program Files\Microsoft Office
2015-04-05 21:01 - 2013-07-10 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2015-04-05 21:01 - 2013-07-10 20:49 - 00000000 ____D () C:\Program Files\FileZilla FTP Client
2015-03-31 15:47 - 2014-08-21 19:31 - 00000000 ____D () C:\Users\Rodiče\AppData\Local\Adobe
2015-03-29 22:35 - 2010-09-20 20:12 - 00000000 ____D () C:\Users\Rodiče\Desktop\LENKA
2015-03-23 19:18 - 2014-09-29 07:28 - 00000000 ___RD () C:\Program Files\Skype
==================== Files in the root of some directories =======
2008-02-24 23:47 - 2006-03-20 16:37 - 5689344 _____ (Gabest) C:\Program Files\mplayerc.exe
2008-03-23 16:40 - 2008-03-23 16:42 - 0000140 _____ () C:\Users\Rodiče\AppData\Roaming\burnaware.ini
2012-04-17 22:15 - 2012-05-21 15:58 - 0000128 _____ () C:\Users\Rodiče\AppData\Roaming\Earthquakes Meter_Settings.ini
2008-11-25 21:18 - 2008-11-25 22:34 - 0087608 _____ () C:\Users\Rodiče\AppData\Roaming\inst.exe
2008-11-25 21:18 - 2008-11-25 22:34 - 0007887 _____ () C:\Users\Rodiče\AppData\Roaming\pcouffin.cat
2008-11-25 21:18 - 2008-11-25 22:34 - 0001144 _____ () C:\Users\Rodiče\AppData\Roaming\pcouffin.inf
2008-11-25 21:19 - 2008-11-25 22:34 - 0000033 _____ () C:\Users\Rodiče\AppData\Roaming\pcouffin.log
2008-11-25 21:18 - 2008-11-25 22:34 - 0047360 _____ (VSO Software) C:\Users\Rodiče\AppData\Roaming\pcouffin.sys
2011-11-13 07:50 - 2011-11-13 07:50 - 0000600 _____ () C:\Users\Rodiče\AppData\Roaming\winscp.rnd
2012-10-27 22:13 - 2014-12-29 00:19 - 0010240 _____ () C:\Users\Rodiče\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-10-25 21:13 - 2012-10-25 21:13 - 0000000 _____ () C:\Users\Rodiče\AppData\Local\PRAKTIK.INI
2015-03-06 14:39 - 2015-03-06 14:39 - 0000218 _____ () C:\Users\Rodiče\AppData\Local\recently-used.xbel
2015-03-10 18:34 - 2015-04-21 20:59 - 0007631 _____ () C:\Users\Rodiče\AppData\Local\Resmon.ResmonCfg
2012-10-25 14:01 - 2012-10-25 14:02 - 0000413 _____ () C:\ProgramData\hpzinstall.log
2012-10-17 11:14 - 2012-11-22 17:19 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2012-10-25 21:13 - 2012-10-25 21:13 - 0000000 _____ () C:\ProgramData\PRAKTIK.INI
2013-10-19 22:29 - 2013-10-25 22:33 - 0000024 _____ () C:\ProgramData\__FileUploader.log
Files to move or delete:
====================
C:\Users\NFSU\jagex_runescape_preferences.dat
C:\Users\NFSU\jagex_runescape_preferences2.dat
C:\Users\NFSU\jagex__preferences3.dat
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-04-14 16:24
==================== End Of Log ============================
Re: Proces lvhidsvc.exe vytěžuje procesor, prosím o pomoc o
Jeste jednou PC pro jistotu projedte pomoci MBARu, ktery nasel a likvidoval nejzakernejsi havet. Co se procesu C:\Windows\System32\lvhidsvc.exe tyce, vypada to, ze se jednalo o chybu aplikace, protoze proces samotny vcetne vsech navazanych knihoven na jeho cinnost jsou dle antiviru v poradku. Ulozte na plochu MBAR - http://www.bleepingcomputer.com/downloa ... i-rootkit/
- Spuste dvojklikem a extrahujte na plochu
- kliknete na Next
- Aktualizujte virovou databazi klikem na Update a pokracujte na Next
- Vsechny 3 moznosti nechte zaskrtnute a zvolte Scan (potrva cca 15 minut)
- zatrhnete vsechny nalezy a take zkontrolujte zatrzitko u Create Restore Point
- kliknete na Cleanup a souhlaste s restartem - Yes
- obsah logu ulozene na plose v mbar\mbar-log-2015-mm-dd (hh-mm-ss).txt vlozte do pristi odpovedi
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Proces lvhidsvc.exe vytěžuje procesor, prosím o pomoc o
Nic nenašel.
Super! Děkuji.
Super! Děkuji.
Re: Proces lvhidsvc.exe vytěžuje procesor, prosím o pomoc o
Takze jeste uklidime.
- Prejmenujte ComboFix na Uninstall a spustte jako spravce
- ComboFix se odinstaluje.
- Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
- Oznacte jen moznost "Remove disinfection tools"
- kliknete na Run
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Proces lvhidsvc.exe vytěžuje procesor, prosím o pomoc o
Děkuji Vám za Vaši pomoc, ochotu a čas.
Re: Proces lvhidsvc.exe vytěžuje procesor, prosím o pomoc o
Nemate zac, rad jsem pomohl 
Mejte se krasne a treba zase nekdy
Mejte se krasne a treba zase nekdy
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Přispějete na provoz fóra?