preventivka

[altrok]

Start -> vepiste cmd

• na vysledek vyhledavani kliknete pravy a zvolte Spustit jako spravce
• do spusteneho okna vepiste: sfc /scannow
• a odentrujte
• po jeho skonceni jeste do otevreneho prikazoveho radku vepiste (pripadne text zkopirujte do schranky pomoci Ctrl+C a vlozte pres pravy klik a vlozit)
• findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >> "%userprofile%\desktop\sfcdetails.txt"
• a odentrujte
• obsah logu sfcdetails.txt umisteneho na plose zkopirujte do pristi odpovedi

[HINEGB]

Omlouvám se, až dnes jsem si všiml, že Vaše odpověď je na další stránce...

2015-11-23 15:52:25, Info CSI 00000006 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:52:25, Info CSI 00000007 [SR] Beginning Verify and Repair transaction
2015-11-23 15:52:35, Info CSI 00000009 [SR] Verify complete
2015-11-23 15:52:36, Info CSI 0000000a [SR] Verifying 100 (0x00000064) components
2015-11-23 15:52:36, Info CSI 0000000b [SR] Beginning Verify and Repair transaction
2015-11-23 15:52:48, Info CSI 0000000d [SR] Verify complete
2015-11-23 15:52:49, Info CSI 0000000e [SR] Verifying 100 (0x00000064) components
2015-11-23 15:52:49, Info CSI 0000000f [SR] Beginning Verify and Repair transaction
2015-11-23 15:52:59, Info CSI 00000011 [SR] Verify complete
2015-11-23 15:53:00, Info CSI 00000012 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:53:00, Info CSI 00000013 [SR] Beginning Verify and Repair transaction
2015-11-23 15:53:04, Info CSI 00000015 [SR] Verify complete
2015-11-23 15:53:05, Info CSI 00000016 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:53:05, Info CSI 00000017 [SR] Beginning Verify and Repair transaction
2015-11-23 15:53:08, Info CSI 00000019 [SR] Verify complete
2015-11-23 15:53:09, Info CSI 0000001a [SR] Verifying 100 (0x00000064) components
2015-11-23 15:53:09, Info CSI 0000001b [SR] Beginning Verify and Repair transaction
2015-11-23 15:53:13, Info CSI 0000001d [SR] Verify complete
2015-11-23 15:53:14, Info CSI 0000001e [SR] Verifying 100 (0x00000064) components
2015-11-23 15:53:14, Info CSI 0000001f [SR] Beginning Verify and Repair transaction
2015-11-23 15:53:17, Info CSI 00000021 [SR] Verify complete
2015-11-23 15:53:19, Info CSI 00000022 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:53:19, Info CSI 00000023 [SR] Beginning Verify and Repair transaction
2015-11-23 15:53:22, Info CSI 00000025 [SR] Verify complete
2015-11-23 15:53:23, Info CSI 00000026 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:53:23, Info CSI 00000027 [SR] Beginning Verify and Repair transaction
2015-11-23 15:53:26, Info CSI 00000029 [SR] Verify complete
2015-11-23 15:53:27, Info CSI 0000002a [SR] Verifying 100 (0x00000064) components
2015-11-23 15:53:27, Info CSI 0000002b [SR] Beginning Verify and Repair transaction
2015-11-23 15:53:29, Info CSI 0000002d [SR] Verify complete
2015-11-23 15:53:31, Info CSI 0000002e [SR] Verifying 100 (0x00000064) components
2015-11-23 15:53:31, Info CSI 0000002f [SR] Beginning Verify and Repair transaction
2015-11-23 15:53:34, Info CSI 00000031 [SR] Verify complete
2015-11-23 15:53:35, Info CSI 00000032 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:53:35, Info CSI 00000033 [SR] Beginning Verify and Repair transaction
2015-11-23 15:53:38, Info CSI 00000035 [SR] Verify complete
2015-11-23 15:53:39, Info CSI 00000036 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:53:39, Info CSI 00000037 [SR] Beginning Verify and Repair transaction
2015-11-23 15:53:43, Info CSI 00000039 [SR] Verify complete
2015-11-23 15:53:44, Info CSI 0000003a [SR] Verifying 100 (0x00000064) components
2015-11-23 15:53:44, Info CSI 0000003b [SR] Beginning Verify and Repair transaction
2015-11-23 15:53:47, Info CSI 0000003d [SR] Verify complete
2015-11-23 15:53:49, Info CSI 0000003e [SR] Verifying 100 (0x00000064) components
2015-11-23 15:53:49, Info CSI 0000003f [SR] Beginning Verify and Repair transaction
2015-11-23 15:53:51, Info CSI 00000041 [SR] Verify complete
2015-11-23 15:53:52, Info CSI 00000042 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:53:52, Info CSI 00000043 [SR] Beginning Verify and Repair transaction
2015-11-23 15:53:56, Info CSI 00000045 [SR] Verify complete
2015-11-23 15:53:57, Info CSI 00000046 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:53:57, Info CSI 00000047 [SR] Beginning Verify and Repair transaction
2015-11-23 15:54:00, Info CSI 00000049 [SR] Verify complete
2015-11-23 15:54:01, Info CSI 0000004a [SR] Verifying 100 (0x00000064) components
2015-11-23 15:54:01, Info CSI 0000004b [SR] Beginning Verify and Repair transaction
2015-11-23 15:54:05, Info CSI 0000004d [SR] Verify complete
2015-11-23 15:54:06, Info CSI 0000004e [SR] Verifying 100 (0x00000064) components
2015-11-23 15:54:06, Info CSI 0000004f [SR] Beginning Verify and Repair transaction
2015-11-23 15:54:16, Info CSI 00000051 [SR] Verify complete
2015-11-23 15:54:17, Info CSI 00000052 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:54:17, Info CSI 00000053 [SR] Beginning Verify and Repair transaction
2015-11-23 15:54:30, Info CSI 00000055 [SR] Verify complete
2015-11-23 15:54:30, Info CSI 00000056 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:54:30, Info CSI 00000057 [SR] Beginning Verify and Repair transaction
2015-11-23 15:54:38, Info CSI 0000005a [SR] Verify complete
2015-11-23 15:54:40, Info CSI 0000005b [SR] Verifying 100 (0x00000064) components
2015-11-23 15:54:40, Info CSI 0000005c [SR] Beginning Verify and Repair transaction
2015-11-23 15:54:48, Info CSI 0000005f [SR] Verify complete
2015-11-23 15:54:49, Info CSI 00000060 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:54:49, Info CSI 00000061 [SR] Beginning Verify and Repair transaction
2015-11-23 15:55:00, Info CSI 00000063 [SR] Verify complete
2015-11-23 15:55:01, Info CSI 00000064 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:55:01, Info CSI 00000065 [SR] Beginning Verify and Repair transaction
2015-11-23 15:55:19, Info CSI 0000006f [SR] Verify complete
2015-11-23 15:55:20, Info CSI 00000070 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:55:20, Info CSI 00000071 [SR] Beginning Verify and Repair transaction
2015-11-23 15:55:30, Info CSI 00000073 [SR] Verify complete
2015-11-23 15:55:31, Info CSI 00000074 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:55:31, Info CSI 00000075 [SR] Beginning Verify and Repair transaction
2015-11-23 15:55:42, Info CSI 00000077 [SR] Verify complete
2015-11-23 15:55:42, Info CSI 00000078 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:55:42, Info CSI 00000079 [SR] Beginning Verify and Repair transaction
2015-11-23 15:55:50, Info CSI 0000007b [SR] Verify complete
2015-11-23 15:55:50, Info CSI 0000007c [SR] Verifying 100 (0x00000064) components
2015-11-23 15:55:50, Info CSI 0000007d [SR] Beginning Verify and Repair transaction
2015-11-23 15:55:58, Info CSI 0000007f [SR] Verify complete
2015-11-23 15:55:59, Info CSI 00000080 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:55:59, Info CSI 00000081 [SR] Beginning Verify and Repair transaction
2015-11-23 15:56:30, Info CSI 00000085 [SR] Verify complete
2015-11-23 15:56:31, Info CSI 00000086 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:56:31, Info CSI 00000087 [SR] Beginning Verify and Repair transaction
2015-11-23 15:56:57, Info CSI 00000089 [SR] Verify complete
2015-11-23 15:56:58, Info CSI 0000008a [SR] Verifying 100 (0x00000064) components
2015-11-23 15:56:58, Info CSI 0000008b [SR] Beginning Verify and Repair transaction
2015-11-23 15:57:26, Info CSI 0000008d [SR] Verify complete
2015-11-23 15:57:27, Info CSI 0000008e [SR] Verifying 100 (0x00000064) components
2015-11-23 15:57:27, Info CSI 0000008f [SR] Beginning Verify and Repair transaction
2015-11-23 15:57:44, Info CSI 00000091 [SR] Verify complete
2015-11-23 15:57:45, Info CSI 00000092 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:57:45, Info CSI 00000093 [SR] Beginning Verify and Repair transaction
2015-11-23 15:57:50, Info CSI 00000095 [SR] Verify complete
2015-11-23 15:57:50, Info CSI 00000096 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:57:50, Info CSI 00000097 [SR] Beginning Verify and Repair transaction
2015-11-23 15:57:54, Info CSI 00000099 [SR] Verify complete
2015-11-23 15:57:55, Info CSI 0000009a [SR] Verifying 100 (0x00000064) components
2015-11-23 15:57:55, Info CSI 0000009b [SR] Beginning Verify and Repair transaction
2015-11-23 15:58:08, Info CSI 000000a0 [SR] Verify complete
2015-11-23 15:58:08, Info CSI 000000a1 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:58:08, Info CSI 000000a2 [SR] Beginning Verify and Repair transaction
2015-11-23 15:58:27, Info CSI 000000bd [SR] Verify complete
2015-11-23 15:58:27, Info CSI 000000be [SR] Verifying 100 (0x00000064) components
2015-11-23 15:58:27, Info CSI 000000bf [SR] Beginning Verify and Repair transaction
2015-11-23 15:58:31, Info CSI 000000c1 [SR] Verify complete
2015-11-23 15:58:31, Info CSI 000000c2 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:58:31, Info CSI 000000c3 [SR] Beginning Verify and Repair transaction
2015-11-23 15:58:40, Info CSI 000000c5 [SR] Verify complete
2015-11-23 15:58:41, Info CSI 000000c6 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:58:41, Info CSI 000000c7 [SR] Beginning Verify and Repair transaction
2015-11-23 15:58:49, Info CSI 000000c9 [SR] Verify complete
2015-11-23 15:58:50, Info CSI 000000ca [SR] Verifying 100 (0x00000064) components
2015-11-23 15:58:50, Info CSI 000000cb [SR] Beginning Verify and Repair transaction
2015-11-23 15:59:02, Info CSI 000000cd [SR] Verify complete
2015-11-23 15:59:03, Info CSI 000000ce [SR] Verifying 100 (0x00000064) components
2015-11-23 15:59:03, Info CSI 000000cf [SR] Beginning Verify and Repair transaction
2015-11-23 15:59:19, Info CSI 000000d2 [SR] Verify complete
2015-11-23 15:59:19, Info CSI 000000d3 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:59:19, Info CSI 000000d4 [SR] Beginning Verify and Repair transaction
2015-11-23 15:59:24, Info CSI 000000d6 [SR] Verify complete
2015-11-23 15:59:25, Info CSI 000000d7 [SR] Verifying 100 (0x00000064) components
2015-11-23 15:59:25, Info CSI 000000d8 [SR] Beginning Verify and Repair transaction
2015-11-23 15:59:39, Info CSI 000000da [SR] Verify complete
2015-11-23 15:59:40, Info CSI 000000db [SR] Verifying 100 (0x00000064) components
2015-11-23 15:59:40, Info CSI 000000dc [SR] Beginning Verify and Repair transaction
2015-11-23 15:59:49, Info CSI 000000de [SR] Verify complete
2015-11-23 15:59:49, Info CSI 000000df [SR] Verifying 100 (0x00000064) components
2015-11-23 15:59:49, Info CSI 000000e0 [SR] Beginning Verify and Repair transaction
2015-11-23 16:00:03, Info CSI 000000e2 [SR] Verify complete
2015-11-23 16:00:04, Info CSI 000000e3 [SR] Verifying 100 (0x00000064) components
2015-11-23 16:00:04, Info CSI 000000e4 [SR] Beginning Verify and Repair transaction
2015-11-23 16:00:25, Info CSI 00000109 [SR] Verify complete
2015-11-23 16:00:26, Info CSI 0000010a [SR] Verifying 100 (0x00000064) components
2015-11-23 16:00:26, Info CSI 0000010b [SR] Beginning Verify and Repair transaction
2015-11-23 16:00:44, Info CSI 0000010d [SR] Verify complete
2015-11-23 16:00:45, Info CSI 0000010e [SR] Verifying 100 (0x00000064) components
2015-11-23 16:00:45, Info CSI 0000010f [SR] Beginning Verify and Repair transaction
2015-11-23 16:01:31, Info CSI 00000111 [SR] Verify complete
2015-11-23 16:01:34, Info CSI 00000112 [SR] Verifying 100 (0x00000064) components
2015-11-23 16:01:34, Info CSI 00000113 [SR] Beginning Verify and Repair transaction
2015-11-23 16:01:57, Info CSI 00000115 [SR] Verify complete
2015-11-23 16:01:58, Info CSI 00000116 [SR] Verifying 100 (0x00000064) components
2015-11-23 16:01:58, Info CSI 00000117 [SR] Beginning Verify and Repair transaction
2015-11-23 16:02:13, Info CSI 00000119 [SR] Verify complete
2015-11-23 16:02:14, Info CSI 0000011a [SR] Verifying 100 (0x00000064) components
2015-11-23 16:02:14, Info CSI 0000011b [SR] Beginning Verify and Repair transaction
2015-11-23 16:02:23, Info CSI 0000011d [SR] Verify complete
2015-11-23 16:02:24, Info CSI 0000011e [SR] Verifying 100 (0x00000064) components
2015-11-23 16:02:24, Info CSI 0000011f [SR] Beginning Verify and Repair transaction
2015-11-23 16:02:31, Info CSI 00000121 [SR] Verify complete
2015-11-23 16:02:31, Info CSI 00000122 [SR] Verifying 100 (0x00000064) components
2015-11-23 16:02:31, Info CSI 00000123 [SR] Beginning Verify and Repair transaction
2015-11-23 16:02:39, Info CSI 00000126 [SR] Verify complete
2015-11-23 16:02:40, Info CSI 00000127 [SR] Verifying 100 (0x00000064) components
2015-11-23 16:02:40, Info CSI 00000128 [SR] Beginning Verify and Repair transaction
2015-11-23 16:02:47, Info CSI 0000012a [SR] Verify complete
2015-11-23 16:02:47, Info CSI 0000012b [SR] Verifying 100 (0x00000064) components
2015-11-23 16:02:47, Info CSI 0000012c [SR] Beginning Verify and Repair transaction
2015-11-23 16:02:57, Info CSI 0000012e [SR] Verify complete
2015-11-23 16:02:59, Info CSI 0000012f [SR] Verifying 100 (0x00000064) components
2015-11-23 16:02:59, Info CSI 00000130 [SR] Beginning Verify and Repair transaction
2015-11-23 16:03:16, Info CSI 00000132 [SR] Verify complete
2015-11-23 16:03:16, Info CSI 00000133 [SR] Verifying 100 (0x00000064) components
2015-11-23 16:03:16, Info CSI 00000134 [SR] Beginning Verify and Repair transaction
2015-11-23 16:03:35, Info CSI 00000136 [SR] Verify complete
2015-11-23 16:03:35, Info CSI 00000137 [SR] Verifying 100 (0x00000064) components
2015-11-23 16:03:35, Info CSI 00000138 [SR] Beginning Verify and Repair transaction
2015-11-23 16:03:43, Info CSI 0000013a [SR] Verify complete
2015-11-23 16:03:44, Info CSI 0000013b [SR] Verifying 100 (0x00000064) components
2015-11-23 16:03:44, Info CSI 0000013c [SR] Beginning Verify and Repair transaction
2015-11-23 16:04:04, Info CSI 0000013f [SR] Verify complete
2015-11-23 16:04:05, Info CSI 00000140 [SR] Verifying 100 (0x00000064) components
2015-11-23 16:04:05, Info CSI 00000141 [SR] Beginning Verify and Repair transaction
2015-11-23 16:04:26, Info CSI 00000143 [SR] Verify complete
2015-11-23 16:04:27, Info CSI 00000144 [SR] Verifying 100 (0x00000064) components
2015-11-23 16:04:27, Info CSI 00000145 [SR] Beginning Verify and Repair transaction
2015-11-23 16:04:34, Info CSI 00000147 [SR] Verify complete
2015-11-23 16:04:34, Info CSI 00000148 [SR] Verifying 100 (0x00000064) components
2015-11-23 16:04:34, Info CSI 00000149 [SR] Beginning Verify and Repair transaction
2015-11-23 16:04:46, Info CSI 0000014b [SR] Verify complete
2015-11-23 16:04:46, Info CSI 0000014c [SR] Verifying 100 (0x00000064) components
2015-11-23 16:04:46, Info CSI 0000014d [SR] Beginning Verify and Repair transaction
2015-11-23 16:04:56, Info CSI 0000014f [SR] Verify complete
2015-11-23 16:04:56, Info CSI 00000150 [SR] Verifying 100 (0x00000064) components
2015-11-23 16:04:56, Info CSI 00000151 [SR] Beginning Verify and Repair transaction
2015-11-23 16:05:12, Info CSI 00000153 [SR] Repairing corrupted file [ml:58{29},l:56{28}]"\??\C:\Windows\system32\wbem"\[l:42{21}]"Wdf01000Uninstall.mof" from store
2015-11-23 16:05:12, Info CSI 00000155 [SR] Repairing corrupted file [ml:58{29},l:56{28}]"\??\C:\Windows\system32\wbem"\[l:24{12}]"Wdf01000.mof" from store
2015-11-23 16:05:14, Info CSI 00000159 [SR] Verify complete
2015-11-23 16:05:15, Info CSI 0000015a [SR] Verifying 100 (0x00000064) components
2015-11-23 16:05:15, Info CSI 0000015b [SR] Beginning Verify and Repair transaction
2015-11-23 16:05:32, Info CSI 0000015d [SR] Verify complete
2015-11-23 16:05:33, Info CSI 0000015e [SR] Verifying 100 (0x00000064) components
2015-11-23 16:05:33, Info CSI 0000015f [SR] Beginning Verify and Repair transaction
2015-11-23 16:06:04, Info CSI 00000161 [SR] Verify complete
2015-11-23 16:06:05, Info CSI 00000162 [SR] Verifying 100 (0x00000064) components
2015-11-23 16:06:05, Info CSI 00000163 [SR] Beginning Verify and Repair transaction
2015-11-23 16:06:11, Info CSI 00000165 [SR] Verify complete
2015-11-23 16:06:13, Info CSI 00000166 [SR] Verifying 100 (0x00000064) components
2015-11-23 16:06:13, Info CSI 00000167 [SR] Beginning Verify and Repair transaction
2015-11-23 16:06:30, Info CSI 00000169 [SR] Verify complete
2015-11-23 16:06:30, Info CSI 0000016a [SR] Verifying 100 (0x00000064) components
2015-11-23 16:06:30, Info CSI 0000016b [SR] Beginning Verify and Repair transaction
2015-11-23 16:06:46, Info CSI 0000016d [SR] Verify complete
2015-11-23 16:06:47, Info CSI 0000016e [SR] Verifying 100 (0x00000064) components
2015-11-23 16:06:47, Info CSI 0000016f [SR] Beginning Verify and Repair transaction
2015-11-23 16:06:57, Info CSI 00000171 [SR] Verify complete
2015-11-23 16:06:59, Info CSI 00000172 [SR] Verifying 100 (0x00000064) components
2015-11-23 16:06:59, Info CSI 00000173 [SR] Beginning Verify and Repair transaction
2015-11-23 16:07:26, Info CSI 00000175 [SR] Verify complete
2015-11-23 16:07:27, Info CSI 00000176 [SR] Verifying 100 (0x00000064) components
2015-11-23 16:07:27, Info CSI 00000177 [SR] Beginning Verify and Repair transaction
2015-11-23 16:07:32, Info CSI 00000179 [SR] Verify complete
2015-11-23 16:07:32, Info CSI 0000017a [SR] Verifying 100 (0x00000064) components
2015-11-23 16:07:32, Info CSI 0000017b [SR] Beginning Verify and Repair transaction
2015-11-23 16:07:48, Info CSI 0000017d [SR] Verify complete
2015-11-23 16:07:49, Info CSI 0000017e [SR] Verifying 64 (0x00000040) components
2015-11-23 16:07:49, Info CSI 0000017f [SR] Beginning Verify and Repair transaction
2015-11-23 16:07:56, Info CSI 00000181 [SR] Verify complete
2015-11-23 16:07:56, Info CSI 00000182 [SR] Repairing 1 components
2015-11-23 16:07:56, Info CSI 00000183 [SR] Beginning Verify and Repair transaction
2015-11-23 16:07:56, Info CSI 00000185 [SR] Repairing corrupted file [ml:58{29},l:56{28}]"\??\C:\Windows\system32\wbem"\[l:42{21}]"Wdf01000Uninstall.mof" from store
2015-11-23 16:07:56, Info CSI 00000187 [SR] Repairing corrupted file [ml:58{29},l:56{28}]"\??\C:\Windows\system32\wbem"\[l:24{12}]"Wdf01000.mof" from store
2015-11-23 16:07:56, Info CSI 0000018b [SR] Repair complete
2015-11-23 16:07:56, Info CSI 0000018c [SR] Committing transaction
2015-11-23 16:07:57, Info CSI 00000190 [SR] Verify and Repair Transaction completed. All files and registry keys listed in this transaction have been successfully repaired

[altrok]

Dejte prosim nove logy FRST.txt a Addition.txt

[HINEGB]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:22-11-2015
Ran by hynek (administrator) on ESPRIMO (23-11-2015 16:42:35)
Running from C:\Users\hynek.HBWARE\Desktop
Loaded Profiles: hynek (Available Profiles: hynek & hynek)
Platform: Microsoft® Windows Vista™ Business (X86) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(brother Industries Ltd) C:\Windows\System32\brsvc01a.exe
(brother Industries Ltd) C:\Windows\System32\brss01a.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Oki Data Corporation) C:\Program Files\Okidata\Common\Extend3\portmgrsrv.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(TOSHIBA CORPORATION) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\tv_w32.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
() C:\Program Files\FSC\TouchPad HotKey Utility\TouchPad_HotKey.exe
() C:\Program Files\FSC\WebCam HotKey Utility\Webcam_HotKey.exe
(FinePrint Software, LLC) C:\Windows\System32\spool\drivers\w32x86\3\fppdis2a.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Google Inc.) C:\Users\hynek.HBWARE\AppData\Local\Google\Update\GoogleUpdate.exe
(Google) C:\Program Files\Google\Drive\googledrivesync.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe
(Google Inc.) C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\Application\chrome.exe
(ITE Tech Inc.) C:\Program Files\FSC\Wireless Utility\WirelessSelector.exe
(Google Inc.) C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\Application\chrome.exe
(Google) C:\Program Files\Google\Drive\googledrivesync.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtKbd.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtBty.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHSP.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Google Inc.) C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\Application\chrome.exe
() C:\Program Files\ZyXEL\NAS Starter Utility\NAS Starter Utility.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosOBEX.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtProc.exe
(Google Inc.) C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
(Google Inc.) C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Google Inc.) C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\EXCEL.EXE
(forum.viry.cz) C:\Users\hynek.HBWARE\Desktop\FRST-OlderVersion\FRSTLauncher.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1006264 2007-09-12] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [4489216 2007-06-13] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Windows\Skytel.exe [1826816 2007-05-28] (Realtek Semiconductor Corp.)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [174616 2007-07-24] (Intel Corporation)
HKLM\...\Run: [TouchPadHotKey] => C:\Program Files\FSC\TouchPad HotKey Utility\TouchPad_HotKey.exe [360448 2007-06-26] ()
HKLM\...\Run: [WebCamHotKey] => C:\Program Files\FSC\WebCam HotKey Utility\WebCam_HotKey.exe [376832 2007-06-26] ()
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [76304 2008-02-29] (Logitech, Inc.)
HKLM\...\Run: [pdfFactory Pro Dispatcher v2] => C:\Windows\system32\spool\DRIVERS\W32X86\3\fppdis2a.exe [479232 2005-03-03] (FinePrint Software, LLC)
HKLM\...\Run: [NeroFilterCheck] => C:\Windows\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-29] (Microsoft Corporation)
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdcBase.exe [648072 2007-05-31] (Microsoft Corporation)
HKU\S-1-5-21-1715567821-507921405-1957994488-1150\...\Run: [WinSent Messenger] => "C:\Program Files\WinSent Messenger\winsent.exe"
HKU\S-1-5-21-1715567821-507921405-1957994488-1150\...\Run: [Google Update] => C:\Users\hynek.HBWARE\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-11-18] (Google Inc.)
HKU\S-1-5-21-1715567821-507921405-1957994488-1150\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [22568216 2015-10-12] (Google)
HKU\S-1-5-21-1715567821-507921405-1957994488-1150\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-1715567821-507921405-1957994488-1150\...\Run: [GoogleChromeAutoLaunch_5E835259BEFB7618610CEBCBC68C4630] => C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\Application\chrome.exe [811848 2015-11-07] (Google Inc.)
HKU\S-1-5-21-1715567821-507921405-1957994488-1150\Control Panel\Desktop\\SCRNSAVE.EXE ->
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-10-12] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-10-12] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-10-12] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-1715567821-507921405-1957994488-1150] => hbwares:8080
AutoConfigURL: [S-1-5-21-1715567821-507921405-1957994488-1150] => hbwares:8080
Winsock: Catalog5 04 C:\Windows\system32\napinsp.dll [50176 2006-11-02] (Společnost Microsoft)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [152864 2010-10-07] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{74A54890-99E2-4483-86D6-4E456C1A0C9F}: [DhcpNameServer] 192.168.200.1
Tcpip\..\Interfaces\{CACC0914-1A62-420D-ABD5-5C3C9CADBDD7}: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{DF5D0A04-4B97-410D-8879-9041BD60F144}: [DhcpNameServer] 93.153.117.1 93.153.117.33

Internet Explorer:
==================
HKU\S-1-5-21-1715567821-507921405-1957994488-1150\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1715567821-507921405-1957994488-1150\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.fujitsu-siemens.com/index2
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22] (Adobe Systems Incorporated)
BHO: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2012-06-25] (RealPlayer)
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-09-22] (Adobe Systems Incorporated)
BHO: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-09-22] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-09-22] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-1715567821-507921405-1957994488-1150 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-09-22] (Adobe Systems Incorporated)
DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} hxxps://www.mojedatovaschranka.cz/static/pages/ ... ?3,16,13,0
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_60-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0060-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_60-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_60-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

FireFox:
========
FF ProfilePath: C:\Users\hynek.HBWARE\AppData\Roaming\Mozilla\Firefox\Profiles\a262ui4k.default
FF Homepage: hxxp://seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-18] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=15.0.4.53 -> c:\program files\real\realplayer\Netscape6\nppl3260.dll [2012-06-25] (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=15.0.4.53 -> c:\program files\real\realplayer\Netscape6\nprjplug.dll [2012-06-25] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.4.53 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll [2012-06-25] (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.4.53 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll [2012-06-25] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=15.0.4.53 -> c:\program files\real\realplayer\Netscape6\nprpplugin.dll [2012-06-25] (RealPlayer)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-18] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-18] (Google Inc.)
FF Plugin HKU\S-1-5-21-1715567821-507921405-1957994488-1150: @tools.google.com/Google Update;version=3 -> C:\Users\hynek.HBWARE\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-18] (Google Inc.)
FF Plugin HKU\S-1-5-21-1715567821-507921405-1957994488-1150: @tools.google.com/Google Update;version=9 -> C:\Users\hynek.HBWARE\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-18] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-27] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2011-03-12] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2012-06-25] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2011-02-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2011-02-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2011-02-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2011-02-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2011-02-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2011-02-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2011-02-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprjplug.dll [2012-06-25] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll [2012-06-25] (RealPlayer)
FF Extension: 20-20 3D Viewer - IKEA - C:\Users\hynek.HBWARE\AppData\Roaming\Mozilla\Firefox\Profiles\a262ui4k.default\extensions\2020Player_IKEA@2020Technologies.com [2012-04-02] [not signed]
FF Extension: Garmin Communicator - C:\Users\hynek.HBWARE\AppData\Roaming\Mozilla\Firefox\Profiles\a262ui4k.default\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E} [2014-07-19] [not signed]
FF Extension: RealPlayer Browser Record Plugin - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012-06-25] [not signed]
FF Extension: Dman Data Editor - C:\Users\hynek.HBWARE\AppData\Roaming\Mozilla\Firefox\Profiles\a262ui4k.default\Extensions\npdmaned@onyxsoftware.cz [2011-02-18] [not signed]
FF Extension: Microsoft .NET Framework Assistant - C:\Users\hynek.HBWARE\AppData\Roaming\Mozilla\Firefox\Profiles\a262ui4k.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-04-27] [not signed]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-09-02] [not signed]
FF HKLM\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext

Chrome:
=======
CHR Plugin: (Native Client) - C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\Application\46.0.2490.86\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\Application\46.0.2490.86\pdf.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\Application\46.0.2490.86\gcswf32.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll => No File
CHR Plugin: (Skype Click to Call) - C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.0.0.10297_0\npSkypeChromePlugin.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll => No File
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Download Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprpplugin.dll (RealPlayer)
CHR Plugin: (RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (RealJukebox NS Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll (RealNetworks, Inc.)
CHR Plugin: (Garmin Communicator Plug-In) - C:\Program Files\Garmin GPS Plugin\npGarmin.dll => No File
CHR Plugin: (Picasa) - C:\Program Files\Google\Picasa3\npPicasa3.dll => No File
CHR Plugin: (Software602 Form Filler) - C:\Program Files\Software602\602XML\Filler\npfiller.dll => No File
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll => No File
CHR Plugin: (RealNetworks(tm) Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (Google Update) - C:\Users\hynek.HBWARE\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll => No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => No File
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Profile: C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Disk Google) - C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-19]
CHR Extension: (YouTube) - C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-19]
CHR Extension: (Store) - C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-11-19]
CHR Extension: (Vyhledávání Google) - C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-19]
CHR Extension: (Store) - C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-19]
CHR Extension: (Store) - C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk [2012-07-09]
CHR Extension: (Store) - C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2014-11-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-04]
CHR Extension: (Gmail) - C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-08]
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [2012-06-25]
CHR HKU\S-1-5-21-1715567821-507921405-1957994488-1150\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\HYNEK~1.HBW\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-06-19]
CHR HKU\S-1-5-21-1715567821-507921405-1957994488-1150\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - C:\Users\hynek.HBWARE\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Brother XP spl Service; C:\Windows\system32\brsvc01a.exe [57344 2002-04-11] (brother Industries Ltd) [File not signed]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2009-08-18] (Macrovision Europe Ltd.) [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [43520 2008-02-28] (Hewlett-Packard) [File not signed]
R2 OpLclSrv; C:\Program Files\Okidata\Common\Extend3\portmgrsrv.exe [147456 2014-11-20] (Oki Data Corporation) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53248 2008-02-28] (Hewlett-Packard) [File not signed]
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [265912 2007-09-12] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 acpi_contactor; C:\Windows\System32\DRIVERS\acpi_contactor_vista.sys [7680 2007-04-13] (INVENTEC Corporation)
R2 Ethpdrv; C:\Windows\System32\DRIVERS\ethpdrv.sys [16376 2007-08-01] (Gemfor s.r.o.)
R3 FIXUSTOR; C:\Windows\System32\DRIVERS\fixustor.sys [15360 2009-04-23] (Genesys Logic)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [183912 2006-11-02] (Společnost Microsoft)
S3 GT72NDISIPXP; C:\Windows\System32\DRIVERS\Gt51Ip.sys [106624 2008-02-18] (Option N.V.)
S3 GT72UBUS; C:\Windows\System32\DRIVERS\gt72ubus.sys [59648 2008-02-08] (Option N.V.)
S3 GTPTSER; C:\Windows\System32\DRIVERS\gtptser.sys [8064 2007-03-30] (Option N.V.)
S3 GTwinUSB; C:\Windows\System32\Drivers\GTwinUSB.sys [71424 2005-04-15] (Gemplus)
S3 massfilter; C:\Windows\System32\drivers\massfilter.sys [9216 2010-02-22] (MBB Incorporated) [File not signed]
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [245096 2015-03-04] (Microsoft Corporation)
R3 Ntfs; C:\Windows\system32\Drivers\Ntfs.sys [1060920 2008-05-27] (Společnost Microsoft)
S3 s125bus; C:\Windows\System32\DRIVERS\s125bus.sys [83336 2007-04-24] (MCCI Corporation)
S3 s125mdfl; C:\Windows\System32\DRIVERS\s125mdfl.sys [15112 2007-04-24] (MCCI Corporation)
S3 s125mdm; C:\Windows\System32\DRIVERS\s125mdm.sys [108680 2007-04-24] (MCCI Corporation)
S3 s125mgmt; C:\Windows\System32\DRIVERS\s125mgmt.sys [100488 2007-04-24] (MCCI Corporation)
S3 s125obex; C:\Windows\System32\DRIVERS\s125obex.sys [98696 2007-04-24] (MCCI Corporation)
S3 s3017bus; C:\Windows\System32\DRIVERS\s3017bus.sys [83880 2007-12-10] (MCCI Corporation)
S3 s3017mdfl; C:\Windows\System32\DRIVERS\s3017mdfl.sys [15016 2007-12-10] (MCCI Corporation)
S3 s3017mdm; C:\Windows\System32\DRIVERS\s3017mdm.sys [110632 2007-12-10] (MCCI Corporation)
S3 s3017mgmt; C:\Windows\System32\DRIVERS\s3017mgmt.sys [104616 2007-12-10] (MCCI Corporation)
S3 s3017nd5; C:\Windows\System32\DRIVERS\s3017nd5.sys [25512 2007-12-10] (MCCI Corporation)
S3 s3017obex; C:\Windows\System32\DRIVERS\s3017obex.sys [100648 2007-12-10] (MCCI Corporation)
S3 s3017unic; C:\Windows\System32\DRIVERS\s3017unic.sys [110120 2007-12-10] (MCCI Corporation)
S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [9604096 2007-05-24] () [File not signed]
R1 StarOpen; C:\Windows\system32\Drivers\StarOpen.sys [5632 2006-07-24] () [File not signed]
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
R1 MpKsl7d2cbc68; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76EF9060-483A-4CE0-9FF6-8CD69827952D}\MpKsl7d2cbc68.sys [X]
S3 Netaapl; system32\DRIVERS\netaapl.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 pccsmcfd; system32\DRIVERS\pccsmcfd.sys [X]
S3 upperdev; system32\DRIVERS\usbser_lowerflt.sys [X]
S3 USBAAPL; System32\Drivers\usbaapl.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-23 16:42 - 2015-11-23 16:45 - 00026662 _____ C:\Users\hynek.HBWARE\Desktop\FRST.txt
2015-11-23 16:20 - 2015-11-23 16:20 - 00022667 _____ C:\Users\hynek.HBWARE\Desktop\sfcdetails.txt
2015-11-22 17:18 - 2015-11-22 17:18 - 00011461 _____ C:\Users\hynek.HBWARE\Desktop\Addition.rar
2015-11-22 17:05 - 2015-11-23 16:42 - 00000000 ____D C:\Users\hynek.HBWARE\Desktop\FRST-OlderVersion
2015-11-22 16:10 - 2015-11-22 16:25 - 00000000 ____D C:\AdwCleaner
2015-11-22 16:02 - 2015-11-22 16:03 - 01732096 _____ C:\Users\hynek.HBWARE\Desktop\adwcleaner_5.021.exe
2015-11-22 15:42 - 2015-11-22 15:42 - 00002219 _____ C:\Users\hynek.HBWARE\Desktop\aswMBR.txt
2015-11-22 15:42 - 2015-11-22 15:42 - 00000512 _____ C:\Users\hynek.HBWARE\Desktop\MBR.dat
2015-11-22 15:23 - 2015-11-22 15:23 - 00025396 _____ C:\Users\hynek.HBWARE\Desktop\MbrScan.log
2015-11-22 15:23 - 2015-11-22 15:23 - 00000512 _____ C:\Users\hynek.HBWARE\Desktop\Dump_Hdd0_DR0.mbr
2015-11-22 15:21 - 2015-11-22 15:22 - 05200384 _____ (AVAST Software) C:\Users\hynek.HBWARE\Desktop\aswmbr.exe
2015-11-22 15:21 - 2015-11-22 15:21 - 00147456 _____ (Eric_71) C:\Users\hynek.HBWARE\Desktop\MbrScan.exe
2015-11-22 13:04 - 2015-11-22 13:07 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-11-22 13:02 - 2015-11-22 14:03 - 00000000 ____D C:\Users\hynek.HBWARE\Desktop\mbar
2015-11-22 12:58 - 2015-11-22 12:59 - 16563352 _____ (Malwarebytes Corp.) C:\Users\hynek.HBWARE\Desktop\mbar-1.09.3.1001.exe
2015-11-22 12:05 - 2015-11-22 12:06 - 00001986 _____ C:\Users\hynek.HBWARE\Downloads\hynekbrydl@gmail.com-20151122-120557.csv
2015-11-20 10:52 - 2015-11-23 16:42 - 00000000 ____D C:\FRST
2015-11-20 10:47 - 2015-11-23 16:42 - 01717248 _____ (Farbar) C:\Users\hynek.HBWARE\Desktop\FRST.exe
2015-11-20 10:39 - 2015-11-20 10:39 - 00112640 _____ (forum.viry.cz) C:\Users\hynek.HBWARE\Downloads\Nepotvrzeno 928929.crdownload
2015-11-19 15:13 - 2015-11-19 15:13 - 00000000 ___HD C:\OneDriveTemp
2015-11-19 14:52 - 2015-11-19 14:53 - 02449376 _____ (Megaify Software ) C:\Users\hynek.HBWARE\Downloads\DriverToolkitInstaller.exe
2015-11-19 13:00 - 2015-11-19 13:20 - 00000000 ____D C:\Windows\system32\MRT
2015-11-19 12:12 - 2015-11-22 18:41 - 00000000 ___RD C:\Users\hynek.HBWARE\OneDrive
2015-11-19 12:12 - 2015-11-19 12:12 - 00002000 _____ C:\Users\hynek.HBWARE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2015-11-19 12:12 - 2015-11-19 12:12 - 00001927 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2015-11-19 12:12 - 2015-11-19 12:12 - 00000000 ____D C:\Program Files\Microsoft OneDrive
2015-11-19 12:12 - 2015-11-19 12:09 - 07904968 _____ (Microsoft Corporation) C:\Users\hynek.HBWARE\Downloads\OneDriveSetup.exe
2015-11-19 12:04 - 2013-02-05 08:58 - 00000104 _____ C:\Windows\system32\opnetext.ver
2015-11-19 12:04 - 2013-01-29 18:58 - 00094208 ____N (Oki Data Corporation) C:\Windows\system32\opnetext.dll
2015-11-19 12:04 - 2013-01-29 10:03 - 00010104 ____N C:\Windows\system32\OPNETEXT.HLP
2015-11-19 12:04 - 2013-01-29 10:03 - 00005832 ____N C:\Windows\system32\license.txt
2015-11-19 12:04 - 2013-01-29 10:03 - 00003844 ____N C:\Windows\system32\opnedef.str
2015-11-19 12:04 - 2013-01-29 10:03 - 00000144 ____N C:\Windows\system32\opnetext.cnt
2015-11-19 12:04 - 2013-01-29 10:03 - 00000000 ____N C:\Windows\system32\OPNETEXT.GID
2015-11-19 11:58 - 2014-04-04 14:58 - 00000000 ____D C:\Users\hynek.HBWARE\Downloads\OKW3C04O107
2015-11-19 11:58 - 2009-06-25 18:00 - 00040960 _____ (Oki Data Corporation) C:\Windows\system32\OKLMON32.DLL
2015-11-19 11:53 - 2015-11-19 11:57 - 13647416 _____ C:\Users\hynek.HBWARE\Downloads\OKW3C04O107_tcm3-138073.exe
2015-11-19 11:49 - 2015-11-19 11:49 - 00000000 ____D C:\Program Files\Okidata
2015-11-19 11:49 - 2015-11-19 11:48 - 00052141 _____ C:\Windows\system32\OKDRTPRN.chm
2015-11-19 11:49 - 2015-11-19 11:48 - 00040960 _____ C:\Windows\system32\OkDPnRes.dll
2015-11-19 11:49 - 2015-03-09 12:41 - 00469272 _____ (Oki Data Corporation) C:\Windows\system32\OkDrtPrn.exe
2015-11-19 11:49 - 2014-10-13 18:01 - 00196608 _____ (Oki Data Corporation) C:\Windows\system32\OkDrtPrn.dll
2015-11-19 11:49 - 2014-07-11 15:25 - 00005120 _____ (Oki Data Corporation) C:\Windows\system32\okComDLL.dll
2015-11-19 11:49 - 2012-05-28 16:54 - 00004096 _____ (Oki Data Corporation) C:\Windows\system32\fxComDLL.dll
2015-11-19 11:49 - 2012-05-28 16:54 - 00004096 _____ (Oki Data Corporation) C:\Windows\system32\efComDLL.dll
2015-11-19 11:44 - 2015-11-19 11:45 - 06816512 _____ (Acresso Software Inc. ) C:\Users\hynek.HBWARE\Downloads\PDFP_ALL_040200_1_tcm3-53582.exe
2015-11-19 11:08 - 2015-06-19 15:51 - 00000000 ____D C:\Users\hynek.HBWARE\Downloads\CT_010618_2-3-ALWEB163022
2015-11-19 11:03 - 2015-11-19 11:06 - 28365648 _____ C:\Users\hynek.HBWARE\Downloads\CT_010618_2-3-ALWEB163022_tcm3-124644.exe
2015-11-19 10:18 - 2015-11-19 10:18 - 00001972 _____ C:\Users\Public\Desktop\NAS Starter Utility.lnk
2015-11-19 10:18 - 2015-11-19 10:18 - 00000000 ____D C:\Program Files\ZyXEL
2015-11-19 10:04 - 2015-11-19 10:04 - 00000292 _____ C:\Windows\SynInst.log
2015-11-19 09:49 - 2015-11-19 09:49 - 00000036 _____ C:\Windows\wininit.ini
2015-11-19 09:49 - 2007-05-22 10:02 - 00282624 _____ (Monet+, a.s.) C:\Windows\tmpun.tmp
2015-11-19 07:01 - 2015-11-19 07:01 - 00087608 _____ C:\Users\hynek.HBWARE\AppData\Roaming\inst.exe
2015-11-18 17:01 - 2015-11-18 17:01 - 00000000 ____D C:\Program Files\Common Files\Logitech
2015-11-18 17:00 - 2015-11-18 17:00 - 00000000 ____D C:\Users\hynek.HBWARE\AppData\LocalLow\Oracle
2015-11-18 17:00 - 2015-11-18 17:00 - 00000000 ____D C:\Users\hynek.HBWARE\AppData\Local\Downloaded Installations

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-23 16:45 - 2009-08-31 12:50 - 00000422 ____H C:\Windows\Tasks\User_Feed_Synchronization-{F49D08F9-F437-4469-8920-5D8403C0ED0D}.job
2015-11-23 16:45 - 2008-05-27 21:30 - 00000418 ____H C:\Windows\Tasks\User_Feed_Synchronization-{A734A4B6-56BF-4618-BD52-3C746DF2B429}.job
2015-11-23 16:44 - 2012-11-29 08:11 - 00000000 ___RD C:\Users\hynek.HBWARE\Disk Google
2015-11-23 16:34 - 2012-04-13 16:08 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-23 16:24 - 2006-11-02 13:47 - 00003584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-23 16:24 - 2006-11-02 13:47 - 00003584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-23 14:38 - 2008-05-27 19:43 - 01965846 _____ C:\Windows\WindowsUpdate.log
2015-11-23 12:24 - 2009-10-15 14:27 - 00000000 ____D C:\Users\hynek.HBWARE\Documents\Bluetooth
2015-11-23 12:24 - 2008-09-17 18:00 - 00000000 ____D C:\Users\hynek.HBWARE\AppData\Roaming\Skype
2015-11-22 22:27 - 2012-04-10 13:22 - 00000000 ____D C:\Users\hynek.HBWARE\NSU
2015-11-22 21:27 - 2008-07-26 09:38 - 00189440 _____ C:\Users\hynek.HBWARE\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-11-22 18:33 - 2008-05-28 20:23 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2015-11-22 18:33 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-22 18:33 - 2006-11-02 14:00 - 00065144 _____ C:\Windows\PFRO.log
2015-11-22 18:32 - 2008-05-27 20:04 - 00000012 _____ C:\Windows\bthservsdp.dat
2015-11-22 18:32 - 2006-11-02 14:01 - 00032618 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-11-22 18:22 - 2008-11-27 13:37 - 00000000 ____D C:\Program Files\Java
2015-11-22 14:08 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\tracing
2015-11-19 14:35 - 2010-02-28 19:27 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-11-19 12:12 - 2008-05-28 09:25 - 00000000 ____D C:\Users\hynek.HBWARE
2015-11-19 12:04 - 2008-05-27 19:45 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2015-11-19 12:03 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Web
2015-11-19 11:11 - 2014-07-04 07:13 - 00000000 ____D C:\Users\hynek.HBWARE\Ubiquiti UniFi
2015-11-19 10:51 - 2009-02-02 11:48 - 00000000 ____D C:\Users\hynek.HBWARE\AppData\Roaming\dvdcss
2015-11-19 10:17 - 2008-05-27 19:45 - 00000000 ____D C:\Program Files\Common Files\InstallShield
2015-11-19 10:16 - 2008-09-15 08:15 - 00674370 _____ C:\Windows\DPINST.LOG
2015-11-19 10:12 - 2006-11-02 13:42 - 00000000 ____D C:\Windows\WindowsMobile
2015-11-19 10:10 - 2008-11-23 20:26 - 00000000 ____D C:\Program Files\Common Files\soft602
2015-11-19 10:09 - 2006-11-02 12:18 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-11-19 10:03 - 2011-04-28 09:26 - 00000000 ____D C:\WinSetupFromUSB
2015-11-19 09:56 - 2009-11-10 13:15 - 00000000 ____D C:\Program Files\remoteAP
2015-11-19 09:54 - 2011-04-29 08:00 - 00000000 ____D C:\Program Files\nLite
2015-11-19 09:43 - 2008-06-01 18:53 - 00000000 ____D C:\Windows\Downloaded Installations
2015-11-19 09:43 - 2008-05-28 09:27 - 00000000 ____D C:\Users\hynek.HBWARE\AppData\Roaming\Teleca
2015-11-19 09:42 - 2008-05-27 21:02 - 00000000 ____D C:\Program Files\Common Files\Teleca Shared
2015-11-19 09:35 - 2006-11-02 13:37 - 00000000 ____D C:\Windows\twain_32
2015-11-19 08:11 - 2014-07-19 08:25 - 01292172 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-19 07:29 - 2009-05-29 19:39 - 00000000 ____D C:\Program Files\Google
2015-11-19 07:28 - 2009-05-29 19:40 - 00000000 ____D C:\Users\hynek.HBWARE\AppData\Local\Google
2015-11-19 07:06 - 2008-06-01 17:39 - 00000000 ____D C:\WIN_SYS61
2015-11-19 07:04 - 2012-05-17 12:31 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-11-19 07:04 - 2011-02-25 16:39 - 00000000 ____D C:\Program Files\QuickTime
2015-11-19 07:04 - 2009-08-21 08:36 - 00000000 ____D C:\Program Files\Ahead
2015-11-19 07:04 - 2009-01-19 15:11 - 00000000 ____D C:\Fujitsu Siemens Computers
2015-11-19 07:04 - 2007-02-19 13:32 - 00000000 ____D C:\Windows\Panther
2015-11-19 07:04 - 2006-11-02 13:37 - 00000000 ____D C:\Windows\DigitalLocker
2015-11-19 07:04 - 2006-11-02 12:18 - 00000000 __RHD C:\Users\Default
2015-11-19 07:04 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Registration
2015-11-19 07:04 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\PLA
2015-11-19 07:04 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\MSAgent
2015-11-19 07:04 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Microsoft.NET
2015-11-19 07:04 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\IME
2015-11-19 07:04 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Help
2015-11-19 07:01 - 2009-01-16 15:25 - 00000033 _____ C:\Users\hynek.HBWARE\AppData\Roaming\pcouffin.log
2015-11-19 07:01 - 2009-01-16 15:24 - 00047360 _____ (VSO Software) C:\Users\hynek.HBWARE\AppData\Roaming\pcouffin.sys
2015-11-19 07:01 - 2009-01-16 15:24 - 00007887 _____ C:\Users\hynek.HBWARE\AppData\Roaming\pcouffin.cat
2015-11-19 07:01 - 2009-01-16 15:24 - 00000000 ____D C:\Users\hynek.HBWARE\AppData\Roaming\Vso
2015-11-18 20:59 - 2013-03-21 10:09 - 00000000 ____D C:\Users\hynek.HBWARE\AppData\Local\Garmin
2015-11-18 20:59 - 2010-01-05 20:54 - 00000000 ____D C:\Users\hynek.HBWARE\AppData\Roaming\GARMIN
2015-11-18 20:37 - 2009-04-20 14:49 - 00000009 _____ C:\Windows\Brfaxrx.ini
2015-11-18 20:37 - 2009-04-20 14:47 - 00000000 ____D C:\Program Files\Brother
2015-11-18 18:34 - 2012-04-13 16:07 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-11-18 18:34 - 2011-05-24 07:52 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-10-27 18:44 - 2006-11-02 11:24 - 143250520 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe

==================== Files in the root of some directories =======

2009-01-16 15:24 - 2009-01-16 15:24 - 0087608 _____ () C:\Users\hynek.HBWARE\AppData\Roaming\ezpinst.exe
2012-08-17 07:49 - 2012-08-17 07:49 - 0038492 _____ () C:\Users\hynek.HBWARE\AppData\Roaming\Hodnoty oddělené čárkami (DOS).ADR
2012-08-17 08:06 - 2012-08-17 08:06 - 0038491 _____ () C:\Users\hynek.HBWARE\AppData\Roaming\Hodnoty oddělené čárkami (Windows).ADR
2015-11-19 07:01 - 2015-11-19 07:01 - 0087608 _____ () C:\Users\hynek.HBWARE\AppData\Roaming\inst.exe
2009-01-16 15:24 - 2015-11-19 07:01 - 0007887 _____ () C:\Users\hynek.HBWARE\AppData\Roaming\pcouffin.cat
2009-01-16 15:24 - 2015-11-19 07:01 - 0001144 _____ () C:\Users\hynek.HBWARE\AppData\Roaming\pcouffin.inf
2009-01-16 15:25 - 2015-11-19 07:01 - 0000033 _____ () C:\Users\hynek.HBWARE\AppData\Roaming\pcouffin.log
2009-01-16 15:24 - 2015-11-19 07:01 - 0047360 _____ (VSO Software) C:\Users\hynek.HBWARE\AppData\Roaming\pcouffin.sys
2010-07-01 15:20 - 2010-07-01 15:21 - 0000180 _____ () C:\Users\hynek.HBWARE\AppData\Roaming\setup.log
2010-07-01 15:20 - 2010-07-01 15:20 - 0000760 _____ () C:\Users\hynek.HBWARE\AppData\Roaming\setup_ldm.iss
2009-12-13 18:23 - 2010-12-25 09:35 - 0000668 _____ () C:\Users\hynek.HBWARE\AppData\Roaming\vso_ts_preview.xml
2010-12-03 18:34 - 2013-11-21 12:11 - 0000680 _____ () C:\Users\hynek.HBWARE\AppData\Local\d3d9caps.dat
2008-07-26 09:38 - 2015-11-22 21:27 - 0189440 _____ () C:\Users\hynek.HBWARE\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-07-19 07:20 - 2011-08-09 06:22 - 0000147 _____ () C:\Users\hynek.HBWARE\AppData\Local\RAExpertHistory.xml
2009-08-21 08:47 - 2009-10-21 15:15 - 0000147 _____ () C:\Users\hynek.HBWARE\AppData\Local\rahistory.xml
2008-09-17 18:06 - 2008-09-17 18:06 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2008-06-01 18:03 - 2009-02-07 10:02 - 0000000 _____ () C:\ProgramData\LauncherAccess.dt

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\User_Feed_Synchronization-{A734A4B6-56BF-4618-BD52-3C746DF2B429}.job => C:\Windows\system32\msfeedssync.exe
Task: C:\Windows\Tasks\User_Feed_Synchronization-{F49D08F9-F437-4469-8920-5D8403C0ED0D}.job => C:\Windows\system32\msfeedssync.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================




===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\hynek.HBWARE\Desktop" je 68 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

[altrok]

Omluva - mam toho ted hodne.



Vyzkousejte vyhledat a nainstalovat alespon 1 aktualizaci operacniho systemu (windows update) - neinstalujte vsechny nalezene.



Ulozte a spustte SecurityCheck http://www.bleepingcomputer.com/download/securitycheck/

• pokracujte libovolnou klavesou a cca minutu pockejte
• obsah vygenerovaneho logu vlozte do pristi odpovedi

Ulozte na plochu FSS http://www.bleepingcomputer.com/downloa ... e-scanner/

• spustte a zaskrtnete vsechny ramecky (checkboxy) vlevo
• kliknete na Scan, obsah logu FSS.txt (ulozeny v miste umisteni FSS.exe) vlozte do pristiho prispevku.

[HINEGB]

to je v pohodě, nemusíte se vůbec omlouvat

našlo mi to dvě volitelné aktualizace, ale ani jdna se nezobrazuje v seznamu k instalaci (viz obr.)

[altrok]

To je dobre vedet. Pokracujte prosim dalsimi kroky.

[HINEGB]

Results of screen317's Security Check version 1.012 --- 11/09/15
Windows Vista x86 (UAC is enabled)
Out of date service pack!!
Internet Explorer 8 Out of date!
Internet Explorer 8
``````````````Antivirus/Firewall Check:``````````````
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Adobe Flash Player 19.0.0.245
Mozilla Firefox 30.0 Firefox out of Date!
Google Chrome (44.0.2403.125)
Google Chrome (46.0.2490.86)
````````Process Check: objlist.exe by Laurent````````
Microsoft Security Essentials MSMpEng.exe
Microsoft Security Essentials msseces.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````

[HINEGB]

Farbar Service Scanner Version: 10-06-2014
Ran by hynek (administrator) on 24-11-2015 at 16:37:38
Running from "C:\Users\hynek.HBWARE\Desktop"
Microsoft® Windows Vista™ Business (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============
VSS Service is not running. Checking service configuration:
The start type of VSS service is set to Disabled. The default start type is 3.
The ImagePath of VSS service is OK.


System Restore Disabled Policy:
========================


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => File is digitally signed
C:\Windows\system32\Drivers\nsiproxy.sys => File is digitally signed
C:\Windows\system32\dhcpcsvc.dll => File is digitally signed
C:\Windows\system32\Drivers\afd.sys => File is digitally signed
C:\Windows\system32\Drivers\tdx.sys => File is digitally signed
C:\Windows\system32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\system32\dnsrslvr.dll => File is digitally signed
C:\Windows\system32\mpssvc.dll => File is digitally signed
C:\Windows\system32\bfe.dll => File is digitally signed
C:\Windows\system32\Drivers\mpsdrv.sys => File is digitally signed
C:\Windows\system32\SDRSVC.dll => File is digitally signed
C:\Windows\system32\vssvc.exe => File is digitally signed
C:\Windows\system32\wscsvc.dll => File is digitally signed
C:\Windows\system32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\system32\wuaueng.dll => File is digitally signed
C:\Windows\system32\qmgr.dll => File is digitally signed
C:\Windows\system32\es.dll => File is digitally signed
C:\Windows\system32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\system32\ipnathlp.dll => File is digitally signed
C:\Windows\system32\iphlpsvc.dll => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed


**** End of log ****

[HINEGB]

Farbar Service Scanner Version: 10-06-2014
Ran by hynek (administrator) on 24-11-2015 at 16:37:38
Running from "C:\Users\hynek.HBWARE\Desktop"
Microsoft® Windows Vista™ Business (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============
VSS Service is not running. Checking service configuration:
The start type of VSS service is set to Disabled. The default start type is 3.
The ImagePath of VSS service is OK.


System Restore Disabled Policy:
========================


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => File is digitally signed
C:\Windows\system32\Drivers\nsiproxy.sys => File is digitally signed
C:\Windows\system32\dhcpcsvc.dll => File is digitally signed
C:\Windows\system32\Drivers\afd.sys => File is digitally signed
C:\Windows\system32\Drivers\tdx.sys => File is digitally signed
C:\Windows\system32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\system32\dnsrslvr.dll => File is digitally signed
C:\Windows\system32\mpssvc.dll => File is digitally signed
C:\Windows\system32\bfe.dll => File is digitally signed
C:\Windows\system32\Drivers\mpsdrv.sys => File is digitally signed
C:\Windows\system32\SDRSVC.dll => File is digitally signed
C:\Windows\system32\vssvc.exe => File is digitally signed
C:\Windows\system32\wscsvc.dll => File is digitally signed
C:\Windows\system32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\system32\wuaueng.dll => File is digitally signed
C:\Windows\system32\qmgr.dll => File is digitally signed
C:\Windows\system32\es.dll => File is digitally signed
C:\Windows\system32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\system32\ipnathlp.dll => File is digitally signed
C:\Windows\system32\iphlpsvc.dll => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed


**** End of log ****

[altrok]

Nainstalujte MBAM a udelejte vlastni sken vsech disku - http://forum.viry.cz/viewtopic.php?f=29&t=144868

• Upozorneni: tento sken zabere od 30 minut po nekolik hodin

Je Vas operacni system legalni?


Pro Vasi predstavu, jak jsme na tom. V PC jste mel (radeji jeste zkontrolujeme MBAMem) nemilou potvurku ZeroAccess (ZA) neboli Sirefef a Poweliks. ZA vyradil nektere sluzby Windows jako jsou body obnoveni, security center (nefunguje Vam antivir), jsou poskozene sluzby pro vyhledavani a instalovani aktualizaci apod. Nez se sluzby pokusime opravit, radeji zazalohujte dulezite data.

[HINEGB]

Windejsy mám legální

scan trval hoooodně dlouho, našel a odstranil nějakou havěť

nevím kam si uložil log

[altrok]

Spustte MBAM -> zalozka History -> vlevo Application Logs -> tam pohledejte Scan Log -> pokud nejaky takovy bude, dvakrat na nej poklepejte -> Export a ulozte jako .txt


Pokuste se zapnout funkci bodu obnoveni:

• Kliknete pravym na Tento pocitac -> Vlastnosti -> Upresnit nastaveni systemu -> nahore zalozka Ochrana systemu -> Konfigurovat -> vyberte Obnovit nastaveni systemu a predchozi verze souboru a ulozte klikem na Pouzit.
• Pokud si chcete hrat s velikosti mista na disku, ktere je vyuzito body obnoveni, nedoporucuji tuto hranici snizovat pod 1 GB. Pokud mate mista na disku dost, ponechte defaultni 3-5% vyuziti disku.

[HINEGB]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 25.11.2015
Čas skenování: 8:47:50
Protokol:
Správce: Ano

Verze: 2.2.0.1024
Databáze malwaru: v2015.11.25.01
Databáze rootkitů: v2015.11.23.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows Vista
CPU: x86
Souborový systém: NTFS
Uživatel: hynek

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 818185
Uplynulý čas: 8 hod, 43 min, 17 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 3
Trojan.Agent.Generic, D:\Instal\Adobe Photoshop CS5 CZ + keygen,crack\KeyGen\Adobe Photoshop CS-5 Extended.exe, Do karantény, [062f1969c2c9f2448b3a96be7091d030],
Trojan.Agent.Generic, D:\Instal\Adobe Photoshop CS5 CZ + keygen,crack\KeyGen\Adobe.Photoshop.CS5.Extended.rar, Do karantény, [a68fdfa337544cea1fa6e66e44bdde22],
PUP.Optional.InstallCore, C:\FRST\Quarantine\C\Users\hynek.HBWARE\AppData\Local\Temp\ICReinstall_JavaSetup.exe, Do karantény, [8baa1b67b7d4f83eda43d276eb16c43c],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[HINEGB]

Výstřižek.JPG (67.39 KiB) Zobrazeno 1480 x