Prosím o kontrolu logu.

Zpráva

BijViry · #1 Příspěvek od **BijViry** » 13 črc 2016 11:55

Dobrý den počítač i po vyčištění MalwareBates a Avastem neustále hlásí viry.

Děkuji

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10-07-2016 01
Ran by Lukáš Tesárek (administrator) on TESAREK (12-07-2016 11:13:12)
Running from C:\Users\Lukáš Tesárek\Desktop
Loaded Profiles: Lukáš Tesárek (Available Profiles: Lukáš Tesárek)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTD58E.tmp
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(CANON INC.) C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
() C:\Users\Lukáš Tesárek\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\Lukáš Tesárek\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(ASUS) C:\Windows\AsScrPro.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(TrueCrypt Foundation) C:\Program Files\TrueCrypt\TrueCrypt.exe
(TeamViewer GmbH) C:\Users\Lukáš Tesárek\AppData\Local\Temp\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Users\Lukáš Tesárek\AppData\Local\Temp\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Users\Lukáš Tesárek\AppData\Local\Temp\TeamViewer\Version9\tv_x64.exe
(TeamViewer GmbH) C:\Users\Lukáš Tesárek\AppData\Local\Temp\TeamViewer\Version9\TeamViewer_Desktop.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12459112 2012-03-15] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1158248 2012-03-09] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [177936 2012-02-18] (Intel Corporation)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [361984 2011-03-17] (Alcor Micro Corp.)
HKLM\...\Run: [MFNetworkScanUtility] => C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE [508312 2009-12-15] (CANON INC.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-12] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-26] (Intel Corporation)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [ASUS Screen Saver Protector] => C:\Windows\AsScrPro.exe
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [8900328 2016-07-11] (AVAST Software)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174720 2011-10-25] (ASUS)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322176 2012-02-16] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-3641434464-2453301294-1024503575-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-3641434464-2453301294-1024503575-1002\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Lukáš Tesárek\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-3641434464-2453301294-1024503575-1002\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Lukáš Tesárek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-3641434464-2453301294-1024503575-1002\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [465920 2015-10-30] (Microsoft Corporation)
HKU\S-1-5-21-3641434464-2453301294-1024503575-1002\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1399208 2016-03-23] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-3641434464-2453301294-1024503575-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8810200 2016-06-10] (Piriform Ltd)
HKU\S-1-5-21-3641434464-2453301294-1024503575-1002\...\RunOnce: [Uninstall C:\Users\Luk�a Tes�rek\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Lukáš Tesárek\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-3641434464-2453301294-1024503575-1002\...\RunOnce: [Uninstall C:\Users\Luk�a Tes�rek\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Lukáš Tesárek\AppData\Local\Microsoft\OneDrive\17.3.5892.0626"
HKU\S-1-5-21-3641434464-2453301294-1024503575-1002\...\MountPoints2: {736b6bd2-414b-11e6-8dc3-685d4370c7ee} - "K:\SETUP.EXE"
HKU\S-1-5-21-3641434464-2453301294-1024503575-1002\...\MountPoints2: {dccba3a4-172c-11e5-b30a-685d4370c7ee} - "I:\setup.exe"
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-07-09] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-07-12]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe (McAfee, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 160.218.161.54
Tcpip\..\Interfaces\{b34df52c-c4f8-4026-916b-7e099fdf0cfa}: [DhcpNameServer] 192.168.1.1 160.218.161.54
ManualProxies:

Internet Explorer:
==================
HKU\S-1-5-21-3641434464-2453301294-1024503575-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
HKU\S-1-5-21-3641434464-2453301294-1024503575-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-3641434464-2453301294-1024503575-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3641434464-2453301294-1024503575-1002 -> {02F56810-56EE-4253-888C-F9435A03DA05} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3641434464-2453301294-1024503575-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3641434464-2453301294-1024503575-1002 -> {0C44920E-3DAC-401B-A7FB-6D62812B69AF} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_12454
SearchScopes: HKU\S-1-5-21-3641434464-2453301294-1024503575-1002 -> {1BE01500-90CC-42DF-8DE6-8ACE7E2CF4CE} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3641434464-2453301294-1024503575-1002 -> {6A4BFB67-9417-4A8A-9D19-832A7704562D} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_12454
SearchScopes: HKU\S-1-5-21-3641434464-2453301294-1024503575-1002 -> {8908DF65-62F5-44D4-933D-0F3703E4AA56} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3641434464-2453301294-1024503575-1002 -> {9051CCB2-739A-4349-AC08-B201505667F1} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3641434464-2453301294-1024503575-1002 -> {B9ADAF60-0967-4B71-A96C-9475818D1C67} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3641434464-2453301294-1024503575-1002 -> {EE15FA2E-8EE5-4E97-8E2B-FADA4B14DC52} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_12454
SearchScopes: HKU\S-1-5-21-3641434464-2453301294-1024503575-1002 -> {F4D6C7BE-2950-498D-AFF5-F8B4E9E58346} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_12454
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-02-09] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-06-28] (Intel Security)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-03-15] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-22] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-06-28] (Intel Security)
Toolbar: HKU\S-1-5-21-3641434464-2453301294-1024503575-1002 -> No Name - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - No File
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Lukáš Tesárek\AppData\Roaming\Mozilla\Firefox\Profiles\j7vrtlqk.default
FF Homepage: hxxps://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_22_0_0_192.dll [2016-06-22] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-22] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-18] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-05-10] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-05-10] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-11] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-04-26] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-04-26] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-11-18] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-07-09]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-07-09]

Chrome:
=======
CHR Profile: C:\Users\Lukáš Tesárek\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Avast Online Security) - C:\Users\Lukáš Tesárek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-06-11]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2016-06-19]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-06-19]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 0181021468313472mcinstcleanup; C:\WINDOWS\TEMP\018102~1.EXE [922152 2016-03-02] (McAfee, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-07-09] (AVAST Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
S2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [792080 2016-03-23] (Garmin Ltd. or its subsidiaries)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-12] (NVIDIA Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [337888 2016-05-03] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-02-21] ()
R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc64.exe [3026584 2016-05-06] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-21] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.334\McCHSvc.exe [293128 2016-05-31] (McAfee, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-12] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-12] (NVIDIA Corporation)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [38200 2015-03-19] (The OpenVPN Project)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [905672 2016-06-22] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [15736 2016-06-22] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-06-22] (McAfee, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AsusVBus; C:\Windows\System32\DRIVERS\AsusVBus.sys [35968 2011-12-21] (Windows (R) Win 7 DDK provider)
S3 AsusVTouch; C:\Windows\System32\DRIVERS\AsusVTouch.sys [16512 2011-11-08] (Windows (R) Win 7 DDK provider)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-07-09] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-07-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108304 2016-07-09] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-07-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-07-09] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-07-09] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [473592 2016-07-09] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [162904 2016-07-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [290088 2016-07-09] (AVAST Software)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [100776 2015-08-23] (ASUS Corporation)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-06-24] (Disc Soft Ltd)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-07-11] ()
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [15416 2009-07-20] ( )
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-07-12] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3343872 2015-10-30] (Intel Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
U3 idsvc; no ImagePath
S1 UCGuard; system32\DRIVERS\ucguard.sys [X]
U3 wpcsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-12 11:13 - 2016-07-12 11:13 - 00025947 _____ C:\Users\Lukáš Tesárek\Desktop\FRST.txt
2016-07-12 11:13 - 2016-07-12 11:13 - 00000000 ____D C:\FRST
2016-07-12 11:11 - 2016-07-12 11:12 - 02390528 _____ (Farbar) C:\Users\Lukáš Tesárek\Desktop\FRST64.exe
2016-07-12 10:51 - 2016-07-12 10:51 - 00001331 _____ C:\Users\Lukáš Tesárek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UC浏览器.lnk
2016-07-12 10:51 - 2016-07-12 10:51 - 00001301 _____ C:\Users\Lukáš Tesárek\Desktop\UC浏览器.lnk
2016-07-12 10:51 - 2016-07-12 10:51 - 00000000 ____D C:\Users\Lukáš Tesárek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UC浏览器
2016-07-11 18:56 - 2016-07-12 10:59 - 00000080 _____ C:\Users\Lukáš Tesárek\Desktop\Warcraft III.exe - zástupce.lnk
2016-07-11 18:56 - 2016-07-12 10:59 - 00000080 _____ C:\Users\Lukáš Tesárek\Desktop\Réva vinná a její pěstování - Salon Valtice.ppt - zástupce.lnk
2016-07-11 18:29 - 2016-07-11 19:06 - 00000488 _____ C:\WINDOWS\Tasks\UCBrowserUpdater.job
2016-07-11 18:29 - 2016-07-11 18:29 - 00003522 _____ C:\WINDOWS\System32\Tasks\UCBrowserUpdater
2016-07-11 18:29 - 2016-07-11 18:29 - 00000000 ____D C:\Users\Lukáš Tesárek\AppData\Local\UCBrowser
2016-07-11 18:29 - 2016-07-11 18:27 - 00001048 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2016-07-11 18:28 - 2016-07-11 18:29 - 00000000 ____D C:\Program Files (x86)\UCBrowser
2016-07-11 18:27 - 2016-07-11 18:29 - 00128512 _____ C:\Users\Lukáš Tesárek\AppData\Roaming\Installer.dat
2016-07-11 17:32 - 2016-07-11 17:32 - 00000000 ____D C:\Users\Lukáš Tesárek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2016-07-11 17:32 - 2016-07-11 17:32 - 00000000 ____D C:\sh4ldr
2016-07-11 11:46 - 2016-07-11 13:14 - 00000000 ____D C:\Users\Lukáš Tesárek\AppData\Roaming\Enigma Software Group
2016-07-11 11:46 - 2016-07-11 11:46 - 00000000 _____ C:\autoexec.bat
2016-07-11 11:45 - 2016-07-11 11:45 - 00022704 _____ C:\WINDOWS\system32\Drivers\EsgScanner.sys
2016-07-11 11:23 - 2016-07-11 11:23 - 00000000 ____D C:\Program Files (x86)\ESET
2016-07-09 15:33 - 2016-07-09 15:32 - 00390984 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-07-09 15:32 - 2016-07-09 15:32 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-07-08 11:03 - 2016-07-11 19:05 - 00000000 ____D C:\AdwCleaner
2016-07-08 06:51 - 2016-07-10 16:05 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-07-07 19:50 - 2016-07-07 19:50 - 00003264 _____ C:\WINDOWS\System32\Tasks\AutoKMSCustom
2016-07-07 17:44 - 2016-07-12 10:59 - 00001177 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-07-07 17:44 - 2016-07-12 10:52 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-07-07 17:44 - 2016-07-07 17:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-07-07 17:44 - 2016-07-07 17:44 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-07-07 17:44 - 2016-07-07 17:44 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-07-07 17:44 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-07-07 17:44 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-07-07 17:44 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-07-07 17:37 - 2016-07-07 17:37 - 00000000 ____H C:\Users\Lukáš Tesárek\Documents\Default.rdp
2016-07-05 12:45 - 2016-07-05 19:17 - 00000000 ____D C:\Users\Lukáš Tesárek\Desktop\klíč
2016-07-05 12:45 - 2016-07-05 12:46 - 40073713 _____ C:\Users\Lukáš Tesárek\Downloads\o2013a (1).rar
2016-07-05 12:44 - 2016-07-05 12:44 - 00000000 ____D C:\Users\Lukáš Tesárek\Downloads\o2013a
2016-07-05 12:35 - 2016-07-05 12:44 - 40073713 _____ C:\Users\Lukáš Tesárek\Downloads\o2013a.rar
2016-06-28 18:49 - 2016-06-28 18:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2016-06-22 15:37 - 2016-06-22 15:45 - 00011169 _____ C:\Users\Lukáš Tesárek\Desktop\Tabulka učetní.xlsx
2016-06-22 09:15 - 2016-07-12 10:59 - 00000909 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-06-22 09:15 - 2016-06-22 09:15 - 00002870 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-06-22 09:15 - 2016-06-22 09:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-06-22 09:15 - 2016-06-22 09:15 - 00000000 ____D C:\Program Files\CCleaner
2016-06-19 08:01 - 2016-07-12 11:00 - 00002025 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Pro Antivirus.lnk

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-12 11:10 - 2015-04-02 22:35 - 00000000 ____D C:\Users\Lukáš Tesárek\AppData\Roaming\TeamViewer
2016-07-12 11:09 - 2016-06-06 14:58 - 02039646 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-07-12 11:09 - 2015-10-30 20:31 - 00844794 _____ C:\WINDOWS\system32\perfh005.dat
2016-07-12 11:09 - 2015-10-30 20:31 - 00192772 _____ C:\WINDOWS\system32\perfc005.dat
2016-07-12 11:09 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-07-12 11:00 - 2016-06-06 15:06 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-07-12 11:00 - 2016-06-01 15:03 - 00001285 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-07-12 11:00 - 2016-05-09 14:30 - 00001180 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2016-07-12 11:00 - 2016-01-31 12:05 - 00001224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-07-12 11:00 - 2015-07-16 08:58 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-07-12 11:00 - 2015-04-02 20:59 - 00001136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-07-12 11:00 - 2012-02-24 13:49 - 00001307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
2016-07-12 11:00 - 2012-02-24 13:48 - 00001376 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
2016-07-12 11:00 - 2012-02-24 13:40 - 00001381 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-12 10:59 - 2016-06-06 15:32 - 00002456 _____ C:\Users\Lukáš Tesárek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-07-12 10:59 - 2016-06-06 15:31 - 00001053 _____ C:\Users\Lukáš Tesárek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Volitelné funkce.lnk
2016-07-12 10:59 - 2016-06-06 14:54 - 00001263 _____ C:\Users\Public\Desktop\Waves MAXXAudio.lnk
2016-07-12 10:59 - 2016-06-01 15:03 - 00001222 _____ C:\Users\Public\Desktop\True Key.lnk
2016-07-12 10:59 - 2016-05-31 21:07 - 00001114 _____ C:\Users\Public\Desktop\Call of Duty United Offensive.lnk
2016-07-12 10:59 - 2016-05-31 21:07 - 00001104 _____ C:\Users\Public\Desktop\Call of Duty.lnk
2016-07-12 10:59 - 2016-05-09 18:19 - 00000672 _____ C:\Users\Public\Desktop\Total War - Rome II.lnk
2016-07-12 10:59 - 2016-05-09 14:30 - 00001168 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2016-07-12 10:59 - 2016-04-06 23:59 - 00001892 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2016-07-12 10:59 - 2016-03-29 19:42 - 00002129 _____ C:\Users\Public\Desktop\Smart Switch.lnk
2016-07-12 10:59 - 2016-01-31 12:05 - 00001083 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-07-12 10:59 - 2016-01-12 12:59 - 00000936 _____ C:\Users\Lukáš Tesárek\Desktop\pwr.lnk
2016-07-12 10:59 - 2015-09-16 10:21 - 00001329 _____ C:\Users\Public\Desktop\Bentley View V8i (SELECTseries 2) .lnk
2016-07-12 10:59 - 2015-07-31 11:44 - 00001383 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-07-12 10:59 - 2015-07-29 16:53 - 00001145 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-07-12 10:59 - 2015-07-16 08:58 - 00002049 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-07-12 10:59 - 2015-06-25 20:51 - 00001147 _____ C:\Users\Public\Desktop\Czech Soccer Manager.lnk
2016-07-12 10:59 - 2015-06-24 16:28 - 00002147 _____ C:\Users\Public\Desktop\Age of Mythology - The Titans Expansion.lnk
2016-07-12 10:59 - 2015-06-24 16:03 - 00002138 _____ C:\Users\Public\Desktop\Age of Mythology.lnk
2016-07-12 10:59 - 2015-06-24 15:54 - 00001819 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2016-07-12 10:59 - 2015-06-18 10:04 - 00000865 _____ C:\Users\Lukáš Tesárek\Desktop\pwr-XXX ComArr2014.lnk
2016-07-12 10:59 - 2015-05-28 13:38 - 00000865 _____ C:\Users\Lukáš Tesárek\Desktop\pwr-XXX, ComArr2013.lnk
2016-07-12 10:59 - 2015-04-20 14:26 - 00001850 _____ C:\Users\Lukáš Tesárek\Desktop\CMS Lite.lnk
2016-07-12 10:59 - 2015-04-14 19:47 - 00000954 _____ C:\Users\Public\Desktop\OpenVPN GUI.lnk
2016-07-12 10:59 - 2015-04-05 19:06 - 00002055 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2016-07-12 10:59 - 2015-04-03 22:24 - 00000921 _____ C:\Users\Public\Desktop\TrueCrypt.lnk
2016-07-12 10:59 - 2015-04-02 22:07 - 00001078 _____ C:\Users\Lukáš Tesárek\Desktop\eWallet.lnk
2016-07-12 10:59 - 2015-04-02 21:30 - 00002537 _____ C:\Users\Lukáš Tesárek\Desktop\Outlook 2013.lnk
2016-07-12 10:59 - 2015-04-02 21:29 - 00002645 _____ C:\Users\Lukáš Tesárek\Desktop\Word 2013.lnk
2016-07-12 10:59 - 2015-04-02 21:29 - 00002627 _____ C:\Users\Lukáš Tesárek\Desktop\Excel 2013.lnk
2016-07-12 10:59 - 2015-04-02 20:59 - 00001124 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-07-12 10:59 - 2015-04-02 20:57 - 00000634 _____ C:\Users\Lukáš Tesárek\Desktop\Total Commander.lnk
2016-07-12 10:59 - 2015-04-02 20:55 - 00001968 _____ C:\Users\Public\Desktop\Avast Pro Antivirus.lnk
2016-07-12 10:59 - 2015-04-02 19:34 - 00000716 _____ C:\Users\Public\Desktop\eManual.Lnk
2016-07-12 10:56 - 2015-07-29 16:53 - 00000000 ____D C:\Users\Lukáš Tesárek\AppData\Roaming\Seznam.cz
2016-07-12 10:55 - 2016-06-01 14:53 - 00000000 ____D C:\Program Files\TrueKey
2016-07-12 10:55 - 2012-02-24 14:03 - 00000000 ____D C:\ProgramData\McAfee
2016-07-12 10:51 - 2016-06-08 09:18 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-07-12 10:51 - 2016-06-06 15:29 - 00000000 __SHD C:\Users\Lukáš Tesárek\IntelGraphicsProfiles
2016-07-12 10:51 - 2016-06-01 15:03 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-07-12 10:51 - 2015-04-03 05:22 - 00000828 _____ C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2016-07-12 10:51 - 2012-02-24 13:40 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-11 19:06 - 2016-06-06 15:13 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-07-11 19:06 - 2016-06-06 14:55 - 00000000 ____D C:\ProgramData\NVIDIA
2016-07-11 19:06 - 2015-10-30 08:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-07-11 18:57 - 2015-06-24 16:18 - 00000000 ____D C:\Users\Lukáš Tesárek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-07-11 18:26 - 2015-06-24 15:54 - 00000000 ____D C:\Users\Lukáš Tesárek\AppData\Roaming\DAEMON Tools Lite
2016-07-11 18:19 - 2015-04-02 21:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-07-11 17:39 - 2015-04-02 20:57 - 00000000 ____D C:\Users\Lukáš Tesárek\AppData\Roaming\GHISLER
2016-07-11 12:13 - 2016-06-06 15:29 - 00000000 ____D C:\Users\Lukáš Tesárek\AppData\Local\Packages
2016-07-11 11:46 - 2016-06-06 15:00 - 00000000 ____D C:\Users\Lukáš Tesárek
2016-07-11 11:45 - 2015-04-02 21:47 - 00000000 ____D C:\Datová schránka
2016-07-11 11:23 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2016-07-11 11:21 - 2016-06-01 15:05 - 00000000 ____D C:\Users\Lukáš Tesárek\AppData\Local\tkdata
2016-07-09 15:48 - 2015-08-20 16:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-07-09 15:38 - 2016-01-31 12:05 - 00004004 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1454234737
2016-07-09 15:33 - 2015-04-02 20:55 - 00473592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2016-07-09 15:33 - 2015-04-02 20:55 - 00004004 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-07-09 15:32 - 2016-01-28 17:47 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-07-09 15:32 - 2015-04-02 20:55 - 01070904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-07-09 15:32 - 2015-04-02 20:55 - 00473592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys.146807120775002
2016-07-09 15:32 - 2015-04-02 20:55 - 00290088 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-07-09 15:32 - 2015-04-02 20:55 - 00162904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-07-09 15:32 - 2015-04-02 20:55 - 00108304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-07-09 15:32 - 2015-04-02 20:55 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-07-09 15:32 - 2015-04-02 20:55 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-07-09 15:32 - 2015-04-02 20:55 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-07-09 15:13 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-07-08 11:06 - 2016-06-06 14:50 - 00364056 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-07-07 19:33 - 2015-10-30 20:35 - 00000000 ____D C:\WINDOWS\ShellNew
2016-07-07 19:33 - 2009-07-14 04:34 - 00000510 _____ C:\WINDOWS\win.ini
2016-07-07 19:25 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Common Files\System
2016-07-07 19:25 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-07-07 19:25 - 2015-04-02 21:13 - 00000000 ____D C:\Program Files\Microsoft Office
2016-07-07 18:17 - 2015-04-02 21:21 - 00000000 ____D C:\WINDOWS\AutoKMS
2016-07-07 18:16 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\IME
2016-07-07 18:16 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Help
2016-07-07 18:16 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\appcompat
2016-07-07 18:04 - 2012-02-24 13:50 - 00000000 ____D C:\WINDOWS\ro
2016-07-07 17:31 - 2016-04-25 11:19 - 00000226 _____ C:\WINDOWS\Tasks\AutoKMSDaily.job
2016-07-07 12:01 - 2015-04-02 21:17 - 00000000 ____D C:\Users\Lukáš Tesárek\AppData\Local\Microsoft Toolkit
2016-07-05 12:55 - 2015-07-05 22:50 - 00000645 _____ C:\Users\Lukáš Tesárek\Desktop\Malostranská Beseda a.s.website
2016-06-28 18:49 - 2015-11-16 23:35 - 00000000 ____D C:\Program Files\McAfee Security Scan
2016-06-28 18:44 - 2015-04-03 21:16 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-06-28 16:42 - 2015-04-02 21:48 - 00000571 _____ C:\Users\Lukáš Tesárek\Desktop\Malostranská beseda Gastro.website
2016-06-22 09:16 - 2016-06-06 15:49 - 00000000 ___DC C:\WINDOWS\Panther
2016-06-22 09:16 - 2015-04-02 22:35 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-06-14 20:33 - 2015-10-30 09:26 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-06-14 20:33 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2015-04-14 20:08 - 2016-03-29 20:46 - 0000509 _____ () C:\Users\Lukáš Tesárek\AppData\Roaming\com.iliumsoft.ewallet.plist
2016-07-11 18:27 - 2016-07-11 18:29 - 0128512 _____ () C:\Users\Lukáš Tesárek\AppData\Roaming\Installer.dat
2016-01-21 22:47 - 2016-01-21 22:47 - 0007606 _____ () C:\Users\Lukáš Tesárek\AppData\Local\Resmon.ResmonCfg
2015-04-02 20:20 - 2015-04-02 20:20 - 0024576 _____ () C:\Users\Lukáš Tesárek\AppData\Local\uninst.tmp
2015-04-17 10:30 - 2015-04-26 05:25 - 0000005 _____ () C:\ProgramData\dvrs.dat
2015-04-17 10:30 - 2015-04-17 10:30 - 0000005 _____ () C:\ProgramData\dvrs_dat.old
2012-02-24 13:55 - 2010-10-06 19:45 - 0131984 _____ () C:\ProgramData\FullRemove.exe
2015-04-02 19:40 - 2015-04-02 19:45 - 0000110 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2015-04-02 19:44 - 2015-04-02 19:45 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2015-04-02 19:44 - 2015-04-02 19:44 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2015-04-02 19:37 - 2015-04-02 19:39 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
2015-04-02 19:39 - 2015-04-02 19:40 - 0000108 _____ () C:\ProgramData\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}.log
2015-04-02 19:35 - 2015-04-02 19:37 - 0000110 _____ () C:\ProgramData\{E3739848-5329-48E3-8D28-5BBD6E8BE384}.log

Files to move or delete:
====================
C:\ProgramData\dvrs.dat

Some files in TEMP:
====================
C:\Users\Lukáš Tesárek\AppData\Local\Temp\70FE.tmp.exe
C:\Users\Lukáš Tesárek\AppData\Local\Temp\Browser_V5.6.12150.8_r_4726_(Build1604251144).exe
C:\Users\Lukáš Tesárek\AppData\Local\Temp\libeay32.dll
C:\Users\Lukáš Tesárek\AppData\Local\Temp\msvcr120.dll
C:\Users\Lukáš Tesárek\AppData\Local\Temp\setup.exe
C:\Users\Lukáš Tesárek\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-06-06 14:50

==================== End of FRST.txt ============================

#2 Příspěvek od **Rudy** » 13 črc 2016 17:20

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

BijViry · #3 Příspěvek od **BijViry** » 14 črc 2016 12:39

Díky za pomoc.
Posílám log z ADWCleaneru.

... a sakra, koukám, že jsem ho nespustil z plochy, ale z adresáře. Pokud s tím bude problém, samozřejmě to předělám.

Díky

# AdwCleaner v5.201 - Log vytvořen 14/07/2016 v 11:50:00
# Aktualizováno 30/06/2016 by ToolsLib
# Databáze : 2016-07-12.1 [Server]
# Operační system : Windows 10 Home (X64)
# Uživatelské jméno : Lukáš Tesárek - TESAREK
# Spuštěno z : D:\antivir\AdwCleaner.exe
# Nastavení : Čištění
# Podpora : https://toolslib.net/forum

***** [ Služby ] *****

[-] Služba Smazáno : UCGuard

***** [ Složky ] *****

***** [ Soubory ] *****

***** [ DLLs ] *****

***** [ WMI ] *****

***** [ Zástupci ] *****

***** [ Naplánované úlohy ] *****

***** [ Registry ] *****

[-] Klíč Smazáno : HKCU\Software\UCBrowserPID

***** [ Prohlížeče ] *****

*************************

:: "Tracing" klíče smazány
:: Nastavení Winsock vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [1847 bytů] - [08/07/2016 11:05:23]
C:\AdwCleaner\AdwCleaner[C2].txt - [3915 bytů] - [11/07/2016 19:05:24]
C:\AdwCleaner\AdwCleaner[C3].txt - [981 bytů] - [12/07/2016 11:50:00]
C:\AdwCleaner\AdwCleaner[S1].txt - [2171 bytů] - [08/07/2016 11:04:04]
C:\AdwCleaner\AdwCleaner[S2].txt - [945 bytů] - [11/07/2016 11:16:06]
C:\AdwCleaner\AdwCleaner[S3].txt - [3859 bytů] - [11/07/2016 19:02:15]
C:\AdwCleaner\AdwCleaner[S4].txt - [1329 bytů] - [12/07/2016 11:47:45]

########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [1344 bytů] ##########

#4 Příspěvek od **Rudy** » 14 črc 2016 17:43

Dejte nový log FRST.

VIRY.CZ

Prosím o kontrolu logu.

Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.