Kontrola logu

Zpráva

Radek9999 · #1 Příspěvek od **Radek9999** » 09 říj 2016 18:41

Zdravím,

poprosil bych taky o kontrolu logu.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-10-2016
Ran by Radek (administrator) on RADEK (09-10-2016 18:57:16)
Running from C:\Users\Radek\Desktop
Loaded Profiles: Radek (Available Profiles: Radek)
Platform: Windows 8.1 Service Pack 1 (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Lenovo) C:\Program Files (x86)\MagicPlus\MagicPlus_helper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(forum.viry.cz) C:\Users\Radek\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13267016 2013-01-30] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1276488 2013-01-18] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\nvspcap64.dll [1283136 2014-07-25] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9107616 2016-09-26] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [766464 2016-02-29] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [MagicPlusHelper] => C:\Program Files (x86)\MagicPlus\MagicPlus_helper.exe [2499208 2016-01-14] (Lenovo)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-01-28] (Qualcomm Atheros Commnucations)
HKU\S-1-5-21-2255875871-1199464176-1346690243-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2255875871-1199464176-1346690243-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29635712 2016-09-12] (Skype Technologies S.A.)
HKU\S-1-5-21-2255875871-1199464176-1346690243-1002\...\MountPoints2: {021be679-26d6-11e5-bf2f-a4db303d954e} - "F:\Lenovo_Suite.exe"
HKU\S-1-5-21-2255875871-1199464176-1346690243-1002\...\MountPoints2: {0df275a7-7c46-11e6-bfa9-a4db303d954e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2255875871-1199464176-1346690243-1002\...\MountPoints2: {0df275f1-7c46-11e6-bfa9-a4db303d954e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2255875871-1199464176-1346690243-1002\...\MountPoints2: {2200ecc2-23a7-11e4-beb9-a4db303d954e} - "E:\setup.exe"
HKU\S-1-5-21-2255875871-1199464176-1346690243-1002\...\MountPoints2: {2631cf68-2648-11e5-bf2e-a4db303d954e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2255875871-1199464176-1346690243-1002\...\MountPoints2: {2c25696b-7d10-11e6-bfaa-a4db303d954e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2255875871-1199464176-1346690243-1002\...\MountPoints2: {2c256b27-7d10-11e6-bfaa-a4db303d954e} - "F:\Lenovo_Suite.exe"
HKU\S-1-5-21-2255875871-1199464176-1346690243-1002\...\MountPoints2: {87ca4271-339a-11e5-bf33-a4db303d954e} - "F:\Lenovo_Suite.exe"
HKU\S-1-5-21-2255875871-1199464176-1346690243-1002\...\MountPoints2: {a3d6dfa8-2571-11e5-bf2d-a4db303d954e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2255875871-1199464176-1346690243-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Mystify.scr [133632 2014-10-29] (Microsoft Corporation)
AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [166568 2014-07-02] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [146480 2014-07-02] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-26] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138 192.168.1.1
Tcpip\..\Interfaces\{7B7756B9-6D60-4FAB-8B27-BF8B7AC43C25}: [DhcpNameServer] 10.0.0.138 192.168.1.1
Tcpip\..\Interfaces\{F47AF90A-69F7-4917-A809-486FF068ECC0}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2255875871-1199464176-1346690243-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {EFE522B3-7ABD-49CB-A5C3-A2AFBBA83B9D} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2255875871-1199464176-1346690243-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2255875871-1199464176-1346690243-1002 -> {EFE522B3-7ABD-49CB-A5C3-A2AFBBA83B9D} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-09-26] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Microsoft Web Test Recorder 12.0 Helper -> {432dd630-7e03-4c97-9d62-b99f52df4fc2} -> C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2013-10-05] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-10-14] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-09-26] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-10-14] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Radek\AppData\Roaming\Mozilla\Firefox\Profiles\srtgqky5.default-1444849550489 [2016-10-09]
FF Extension: (Firefox Hotfix) - C:\Users\Radek\AppData\Roaming\Mozilla\Firefox\Profiles\srtgqky5.default-1444849550489\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-31]
FF Extension: (Adblock Plus) - C:\Users\Radek\AppData\Roaming\Mozilla\Firefox\Profiles\srtgqky5.default-1444849550489\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]
FF Extension: (Seznam lištička) - C:\Users\Radek\AppData\Roaming\Mozilla\Firefox\Profiles\srtgqky5.default-1444849550489\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2016-09-30]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-29]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-29]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-09-13] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-13] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-10-14] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-10-14] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-06-23] (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://google.com/
CHR StartupUrls: Default -> "hxxp://www.mystartsearch.com/?type=hp&ts=14164 ... kid=sp-006"
CHR DefaultSearchURL: Default -> hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
CHR DefaultSearchKeyword: Default -> mystartsearch
CHR Profile: C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default [2016-10-06]
CHR Extension: (Prezentace Google) - C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-24]
CHR Extension: (Dokumenty Google) - C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-24]
CHR Extension: (Disk Google) - C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-14]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2015-12-17]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2015-12-17]
CHR Extension: (YouTube) - C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-14]
CHR Extension: (Vyhledávání Google) - C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-29]
CHR Extension: (Tabulky Google) - C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-14]
CHR Extension: (Avast Online Security) - C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-03-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-14]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2015-12-17]
CHR Extension: (pdnfnkhpgegpcingjbfihlkjeighnddk) - C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnfnkhpgegpcingjbfihlkjeighnddk [2014-11-24]
CHR Extension: (Gmail) - C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

Opera:
=======
StartMenuInternet: (HKLM) Opera - C:\Program Files\Opera x64\Opera.exe

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [227456 2013-01-28] (Qualcomm Atheros Commnucations) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-26] (AVAST Software)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2015-10-26] (Microsoft Corporation)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-20] (Acer Incorporated)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-16] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-16] (Acer Incorporated)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2013-08-22] (Microsoft Corporation) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18956064 2014-07-25] (NVIDIA Corporation)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2013-10-09] (Dritek System INC.)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicvss; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-04] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-09-26] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-09-26] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-09-26] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-09-26] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-26] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-09-26] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-09-26] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-09-26] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [292704 2016-09-26] (AVAST Software)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-28] (Qualcomm Atheros)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-08-14] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S3 MarvinBus; C:\Windows\System32\drivers\MarvinBus64.sys [261120 2005-09-23] (Pinnacle Systems GmbH) [File not signed]
S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-07-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-10-09] (Dritek System Inc.)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [28624 2016-03-06] () [File not signed]
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [127456 2016-03-04] (Oracle Corporation)
S3 vpnva; C:\Windows\system32\DRIVERS\vpnva64-6.sys [52592 2015-02-19] (Cisco Systems, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 wdm_usb; C:\Windows\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 OSFMount; \??\C:\Program Files (x86)\Counter-Strike Global Offensive\image\x64\OSFMount.sys [X]
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [X]
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-10-09 18:57 - 2016-10-09 18:57 - 00024945 _____ C:\Users\Radek\Desktop\FRST.txt
2016-10-09 18:56 - 2016-10-09 18:56 - 00112640 _____ (forum.viry.cz) C:\Users\Radek\Desktop\FRSTLauncher.exe
2016-10-09 17:55 - 2016-10-09 18:43 - 00000000 ____D C:\FRST
2016-10-06 22:30 - 2016-10-06 22:30 - 00000000 ____D C:\Users\Radek\Documents\Ghost Games
2016-10-06 22:26 - 2016-10-06 22:26 - 00001318 _____ C:\Users\Radek\Desktop\Need for Speed - Rivals (x32).lnk
2016-10-06 22:26 - 2016-10-06 22:26 - 00001294 _____ C:\Users\Radek\Desktop\Need for Speed - Rivals (x64).lnk
2016-10-06 22:26 - 2016-10-06 22:26 - 00000000 ____D C:\Users\Radek\AppData\Roaming\Need for Speed - Rivals
2016-10-06 22:26 - 2016-10-06 22:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2016-10-05 16:01 - 2016-10-05 16:11 - 00286720 ____N (Microsoft Corporation) C:\WINDOWS\Setup1.exe
2016-10-05 16:01 - 2016-10-05 16:11 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\ST6UNST.EXE
2016-09-30 19:49 - 2016-09-30 19:49 - 00000000 ____D C:\Users\Radek\Documents\SkidRow
2016-09-30 19:23 - 2016-09-30 19:23 - 00000000 ____D C:\R.G. Catalyst
2016-09-29 12:03 - 2016-09-29 12:03 - 00000000 ____D C:\Users\Radek\AppData\Local\CEF
2016-09-29 11:58 - 2016-09-29 11:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-09-29 11:53 - 2016-09-26 22:06 - 00391496 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-09-27 19:54 - 2016-10-07 01:02 - 00000527 _____ C:\Users\Radek\ticket1.xml
2016-09-27 19:54 - 2016-09-27 19:54 - 00003980 _____ C:\WINDOWS\System32\Tasks\lenovo mobile auto run
2016-09-27 19:54 - 2016-09-27 19:54 - 00000965 _____ C:\Users\Public\Desktop\Mobile Assistant.lnk
2016-09-27 19:54 - 2016-09-27 19:54 - 00000000 ____D C:\Users\Radek\.android
2016-09-27 19:54 - 2016-09-27 19:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobile Assistant
2016-09-27 19:54 - 2016-09-27 19:54 - 00000000 ____D C:\Program Files (x86)\MagicPlus
2016-09-27 19:54 - 2016-09-27 19:54 - 00000000 ____D C:\MagicPlus
2016-09-27 19:53 - 2016-09-27 19:54 - 00000000 ____D C:\Users\Radek\AppData\Roaming\Lenovo
2016-09-27 19:50 - 2016-09-27 21:27 - 00000000 ____D C:\Users\Radek\Desktop\lenovo k3 note
2016-09-26 22:06 - 2016-09-26 22:06 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-09-25 16:15 - 2016-09-29 11:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-09-18 03:23 - 2016-09-27 16:56 - 00000000 ____D C:\Program Files (x86)\LenovoUsbDriver
2016-09-17 21:56 - 2016-09-07 03:11 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-09-17 21:56 - 2016-09-07 03:11 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-09-14 22:16 - 2016-08-21 01:22 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-09-14 22:16 - 2016-08-21 00:50 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-09-14 22:16 - 2016-08-10 00:47 - 00803176 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-09-14 22:16 - 2016-08-10 00:47 - 00611576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-09-14 22:16 - 2016-08-04 16:17 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-09-14 22:16 - 2016-08-03 20:06 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-09-14 22:16 - 2016-08-03 20:05 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-09-14 22:15 - 2016-08-21 01:45 - 07076864 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2016-09-14 22:15 - 2016-08-21 01:05 - 05273600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2016-09-14 22:15 - 2016-08-21 00:42 - 07795712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-09-14 22:15 - 2016-08-21 00:27 - 05268480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-09-14 22:14 - 2016-09-01 05:08 - 20312064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-09-14 22:14 - 2016-09-01 03:27 - 13808128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-09-14 22:14 - 2016-09-01 02:45 - 25770496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-09-14 22:14 - 2016-09-01 02:06 - 06047232 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-09-14 22:14 - 2016-09-01 01:15 - 15411712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-09-14 22:14 - 2016-08-26 06:41 - 02881536 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-09-14 22:13 - 2016-09-01 04:46 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-09-14 22:13 - 2016-09-01 04:24 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-09-14 22:13 - 2016-09-01 03:39 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-09-14 22:13 - 2016-09-01 03:30 - 00692736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-09-14 22:13 - 2016-09-01 03:24 - 04607488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-09-14 22:13 - 2016-09-01 02:43 - 02445824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-09-14 22:13 - 2016-09-01 02:42 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-09-14 22:13 - 2016-09-01 02:38 - 01316352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-09-14 22:13 - 2016-09-01 02:24 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-09-14 22:13 - 2016-09-01 02:10 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-09-14 22:13 - 2016-09-01 01:38 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-09-14 22:13 - 2016-09-01 01:28 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-09-14 22:13 - 2016-09-01 01:10 - 02921472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-09-14 22:13 - 2016-09-01 00:58 - 01550848 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-09-14 22:13 - 2016-09-01 00:47 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-09-14 22:13 - 2016-08-26 07:51 - 02894336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-09-14 22:13 - 2016-08-26 06:44 - 02286592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-09-14 22:13 - 2016-08-26 06:00 - 01049600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-09-14 22:04 - 2016-07-09 18:10 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2016-09-14 22:04 - 2016-07-09 00:35 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2016-09-14 22:04 - 2016-07-08 16:17 - 00377344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-09-14 22:04 - 2016-07-08 16:17 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2016-09-14 22:04 - 2016-07-08 00:32 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2016-09-14 22:04 - 2016-07-08 00:18 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2016-09-14 22:04 - 2016-07-08 00:10 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-09-14 22:04 - 2016-07-08 00:01 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasppp.dll
2016-09-14 22:04 - 2016-07-07 23:04 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2016-09-14 22:04 - 2016-07-07 22:59 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-09-14 22:04 - 2016-07-07 22:44 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-09-14 22:04 - 2016-07-07 22:41 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-09-14 22:04 - 2016-07-07 22:34 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-09-14 22:04 - 2016-07-07 22:29 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-09-14 22:04 - 2016-07-07 22:29 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-09-14 22:04 - 2016-07-07 22:23 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2016-09-14 22:04 - 2016-07-07 22:18 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2016-09-14 22:04 - 2016-07-07 22:11 - 01661064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-09-14 22:04 - 2016-07-07 22:11 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-09-14 22:04 - 2016-07-07 22:11 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasppp.dll
2016-09-14 22:04 - 2016-07-07 21:35 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2016-09-14 22:04 - 2016-07-07 21:14 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-09-14 22:04 - 2016-07-04 07:09 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-09-14 22:04 - 2016-07-04 05:45 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2016-09-14 22:04 - 2016-07-04 05:37 - 02897920 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-09-14 22:04 - 2016-07-04 05:33 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-09-14 22:04 - 2016-07-04 05:04 - 02539008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-09-14 22:04 - 2016-07-04 05:02 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-09-14 22:04 - 2016-07-04 04:19 - 03547136 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-09-14 22:04 - 2016-07-01 22:39 - 00197352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssenh.dll
2016-09-14 22:04 - 2016-07-01 22:39 - 00157016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dssenh.dll
2016-09-14 22:04 - 2016-01-10 19:08 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-09-14 22:03 - 2016-09-08 23:51 - 00443224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-09-14 22:03 - 2016-09-08 23:51 - 00332632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-09-14 22:03 - 2016-08-22 18:06 - 00179248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-09-14 22:03 - 2016-08-22 18:06 - 00100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-09-14 22:03 - 2016-08-21 03:03 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-09-14 22:03 - 2016-08-21 03:01 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-09-14 22:03 - 2016-08-21 03:01 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-09-14 22:03 - 2016-08-21 02:17 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-09-14 22:03 - 2016-08-21 01:27 - 01445376 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-09-14 22:03 - 2016-08-21 01:26 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-09-14 22:03 - 2016-08-21 00:55 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-09-14 22:03 - 2016-08-14 21:34 - 01541248 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-09-14 22:03 - 2016-08-14 20:25 - 04171264 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-09-14 22:03 - 2016-08-14 18:14 - 01376768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-09-14 22:03 - 2016-08-13 09:41 - 07445848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-09-14 22:03 - 2016-08-13 09:40 - 01737080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-09-14 22:03 - 2016-08-13 09:40 - 01663184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-09-14 22:03 - 2016-08-13 09:40 - 01523208 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-09-14 22:03 - 2016-08-13 09:40 - 01490120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-09-14 22:03 - 2016-08-13 09:40 - 01358952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-09-14 22:03 - 2016-08-13 02:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-09-14 22:03 - 2016-08-11 18:26 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-09-14 22:03 - 2016-08-11 18:17 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-09-14 22:03 - 2016-08-11 18:16 - 00455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-10-09 18:52 - 2015-02-06 01:56 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-09 18:37 - 2014-01-07 04:59 - 00000000 ____D C:\Programy
2016-10-09 18:31 - 2016-04-09 18:08 - 00000000 ____D C:\Users\Radek\Desktop\Záloha fotek a videa
2016-10-09 18:30 - 2014-01-06 16:52 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2255875871-1199464176-1346690243-1002
2016-10-09 18:23 - 2014-01-14 00:04 - 00000000 ____D C:\Hudba
2016-10-09 18:14 - 2014-03-04 17:45 - 00000000 ____D C:\Users\Radek\AppData\Local\Deployment
2016-10-09 18:07 - 2014-01-06 23:02 - 08384512 ___SH C:\Users\Radek\Desktop\Thumbs.db
2016-10-09 18:04 - 2015-01-22 21:04 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-10-09 17:54 - 2015-01-12 23:11 - 02405376 _____ (Farbar) C:\Users\Radek\Desktop\FRST64.exe
2016-10-09 16:49 - 2014-01-06 22:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
2016-10-09 16:48 - 2014-01-06 22:59 - 00000000 ____D C:\Users\Radek\Documents\My Games
2016-10-09 16:43 - 2014-01-17 18:06 - 00000000 ____D C:\Program Files (x86)\Crysis 3
2016-10-09 16:39 - 2015-12-17 23:54 - 00000000 ____D C:\Users\Radek\AppData\Local\CrashDumps
2016-10-09 15:14 - 2015-04-20 17:39 - 00000000 ____D C:\Users\Radek\AppData\Roaming\Skype
2016-10-09 13:11 - 2014-03-02 18:45 - 00003958 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{C14F67F8-2F2F-47EE-AE71-94F39D10661E}
2016-10-07 11:33 - 2014-04-11 12:35 - 00000000 ___RD C:\Users\Radek\OneDrive
2016-10-07 11:32 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-10-07 03:12 - 2014-01-06 14:31 - 00000000 ____D C:\Users\Radek\AppData\Roaming\uTorrent
2016-10-06 22:13 - 2015-06-28 23:58 - 00000000 ____D C:\Program Files (x86)\R.G. Mechanics
2016-10-06 22:12 - 2014-02-18 13:20 - 00000000 ____D C:\Filmy
2016-10-06 22:12 - 2014-01-24 14:59 - 00000000 ____D C:\Users\Radek\AppData\Roaming\vlc
2016-10-06 22:10 - 2014-01-18 12:51 - 00000000 ____D C:\BBT
2016-10-06 19:53 - 2014-01-06 22:30 - 00000000 ____D C:\Hry
2016-10-06 12:40 - 2015-10-26 19:52 - 00000000 ____D C:\Program Files\SharePoint Client Components
2016-10-06 12:17 - 2014-01-06 15:40 - 00004180 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-10-06 12:10 - 2014-01-08 01:38 - 00000000 ____D C:\Program Files\Opera x64
2016-10-06 12:00 - 2014-02-25 19:22 - 00000000 ____D C:\Users\Radek
2016-10-06 00:47 - 2014-03-12 10:04 - 00000000 ____D C:\WINDOWS\Minidump
2016-10-04 15:08 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-10-04 00:19 - 2014-02-25 12:31 - 00002219 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-04 00:19 - 2014-02-25 12:31 - 00002207 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-10-03 22:03 - 2015-12-17 16:23 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2016-10-03 22:03 - 2014-01-10 14:27 - 00000000 ____D C:\Users\Radek\AppData\Roaming\Seznam.cz
2016-10-03 21:44 - 2014-02-25 19:50 - 00000000 ____D C:\Users\Radek\Documents\Bluetooth Folder
2016-10-01 00:36 - 2014-08-14 22:26 - 00000000 ____D C:\Users\Radek\AppData\Roaming\DAEMON Tools Lite
2016-10-01 00:35 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf
2016-09-30 18:38 - 2016-03-15 13:34 - 00003884 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1458041641
2016-09-30 18:38 - 2016-03-15 13:34 - 00001023 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-09-30 18:31 - 2015-12-05 13:15 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2016-09-30 18:28 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-30 18:21 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\registration
2016-09-30 15:30 - 2015-10-01 23:17 - 00000000 ____D C:\PES 2016
2016-09-29 19:54 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-09-29 11:58 - 2015-08-04 21:25 - 00001902 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-09-29 11:47 - 2014-01-07 05:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-28 17:12 - 2014-12-28 14:21 - 00004476 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-09-28 13:45 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2016-09-28 12:08 - 2016-07-11 21:31 - 00000000 ____D C:\Users\Radek\AppData\Local\Colossal Order
2016-09-28 12:08 - 2016-03-22 00:54 - 00000000 ____D C:\ProgramData\VMware
2016-09-28 12:07 - 2013-11-14 14:24 - 00782050 _____ C:\WINDOWS\system32\perfh005.dat
2016-09-28 12:07 - 2013-11-14 14:24 - 00173410 _____ C:\WINDOWS\system32\perfc005.dat
2016-09-28 12:05 - 2016-03-22 00:56 - 00000000 ____D C:\Users\Radek\AppData\Roaming\VMware
2016-09-28 12:02 - 2013-04-18 06:39 - 00000000 ____D C:\ProgramData\Nero
2016-09-28 11:52 - 2016-03-06 23:20 - 00000000 ____D C:\Program Files\HP
2016-09-28 11:52 - 2015-06-28 00:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
2016-09-28 11:52 - 2013-04-18 06:42 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-09-27 19:51 - 2015-07-08 21:24 - 00000000 ____D C:\MagicPlusMini
2016-09-27 16:57 - 2014-05-05 20:32 - 00000000 ____D C:\Program Files\DIFX
2016-09-26 22:08 - 2014-01-06 15:40 - 00969184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-09-26 22:08 - 2014-01-06 15:40 - 00513632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-09-26 22:06 - 2014-06-07 16:21 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-09-26 22:06 - 2014-01-07 22:23 - 00163416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-09-26 22:06 - 2014-01-06 15:40 - 00513496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys.147492051456210
2016-09-26 22:06 - 2014-01-06 15:40 - 00292704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-09-26 22:06 - 2014-01-06 15:40 - 00108816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-09-26 22:06 - 2014-01-06 15:40 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-09-26 22:06 - 2014-01-06 15:40 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-09-26 22:05 - 2016-03-14 21:57 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-09-26 22:05 - 2014-01-06 15:40 - 00969560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys.147492051281207
2016-09-26 16:25 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-09-25 15:00 - 2015-04-20 17:38 - 00000000 ____D C:\ProgramData\Skype
2016-09-17 21:55 - 2013-08-22 16:44 - 05157448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-09-17 21:47 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-09-17 21:47 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\setup
2016-09-17 12:47 - 2013-11-14 14:26 - 00000000 ____D C:\WINDOWS\ShellNew
2016-09-17 12:47 - 2013-11-14 14:26 - 00000000 ____D C:\Program Files\Windows Journal
2016-09-16 21:45 - 2015-04-12 16:04 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-09-16 21:45 - 2015-04-12 16:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-09-16 21:41 - 2015-04-12 16:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-09-16 21:26 - 2014-01-08 14:37 - 144199024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-09-16 21:26 - 2014-01-08 14:37 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-09-13 20:04 - 2014-01-06 14:50 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-09-13 20:04 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-09-13 20:04 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Macromed

==================== Files in the root of some directories =======

2014-02-17 13:32 - 2014-07-15 20:32 - 0000096 _____ () C:\Users\Radek\AppData\Roaming\Camdata.ini
2014-02-17 13:32 - 2014-07-15 20:32 - 0000408 _____ () C:\Users\Radek\AppData\Roaming\CamLayout.ini
2014-02-17 13:32 - 2014-07-15 20:32 - 0000408 _____ () C:\Users\Radek\AppData\Roaming\CamShapes.ini
2014-02-17 13:32 - 2014-07-15 20:32 - 0004535 _____ () C:\Users\Radek\AppData\Roaming\CamStudio.cfg
2014-03-09 19:58 - 2014-03-09 19:58 - 0000098 _____ () C:\Users\Radek\AppData\Roaming\CamStudio.Producer.command
2014-03-09 19:21 - 2014-03-09 19:54 - 0000096 _____ () C:\Users\Radek\AppData\Roaming\version2.xml
2014-01-07 00:33 - 2014-01-07 00:33 - 0000093 _____ () C:\Users\Radek\AppData\Local\fusioncache.dat
2014-11-06 14:46 - 2014-11-06 14:46 - 0000769 _____ () C:\Users\Radek\AppData\Local\recently-used.xbel
2014-08-15 16:20 - 2015-09-17 22:21 - 0007602 _____ () C:\Users\Radek\AppData\Local\resmon.resmoncfg
2013-10-09 19:31 - 2013-10-09 19:31 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Radek\AppData\Local\Temp\eauninstall.exe
C:\Users\Radek\AppData\Local\Temp\SpotifyUninstall.exe

Some zero byte size files/folders:
==========================
C:\Windows\KMSEmulator.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Radek\Desktop" je 3533 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#2 Příspěvek od **Márty84** » 10 říj 2016 08:07

Zdravim

Radek9999 píše:***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Radek\Desktop" je 3533 MB.

Velikost plochy by nemela presahovat 200 - 300 MB! Brzdi to chod pc. Cili ji trosku uklidte a na plochu dejte jen zastupce. Jen pozor na obcasnou chybu, ze uzivatele maji na plose slozku, v ni dalsi a v ni dalsi a do te to schovaji. To je sice hezke, ale plochu to nezmensi, jen je to v jinem supliku

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.

Radek9999 · #3 Příspěvek od **Radek9999** » 10 říj 2016 15:26

Děkuji,

jedná se hlavně o kontrolu, ale v poslední době pozoruji zpomalení PC.

Zde je log:

# AdwCleaner v6.021 - Log soubor vytvořen 10/10/2016 na 16:16:48
# Aktualizováno dne 06/10/2016 z ToolsLib
# Databáze : 2016-10-07.1 [Server]
# Operační systém : Windows 8.1 Service Pack 1 (X64)
# Uživatelské jméno : Radek - RADEK
# Beží od : C:\Users\Radek\Desktop\adwcleaner_6.021.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum

***** [ Služby ] *****

***** [ Adresáře ] *****

[-] Adresář smazán:C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_ljefoakgfhcoeobgicjgejglnpfpemgb_0
[-] Adresář smazán:C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ljefoakgfhcoeobgicjgejglnpfpemgb

***** [ Soubory ] *****

***** [ DLL ] *****

***** [ WMI ] *****

***** [ Zástupce ] *****

***** [ Plánovač úloh ] *****

***** [ Registry ] *****

[-] Klíč smazán:HKLM\SOFTWARE\Classes\Applications\iLividSetup-r484-n-bf.exe
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Klíč smazán:HKU\S-1-5-21-2255875871-1199464176-1346690243-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Crossrider
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}

***** [ Prohlížeče ] *****

[-] [C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazání:mystartsearch
[-] [C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default] [startup_urls] Smazání:hxxp://www.mystartsearch.com/?type=hp&ts=14164 ... NKRJ5NKRJ5
[-] [C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazání:ljefoakgfhcoeobgicjgejglnpfpemgb

*************************

:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [4152 Bajtů] - [10/10/2016 16:16:48]
C:\AdwCleaner\AdwCleaner[S0].txt - [4541 Bajtů] - [10/10/2016 16:15:38]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [4300 Bajtů] ##########

#4 Příspěvek od **Márty84** » 10 říj 2016 18:43

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

Radek9999 · #5 Příspěvek od **Radek9999** » 11 říj 2016 23:25

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 10. 10. 2016
Čas skenování: 21:38
Protokol: log_MBAM.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.10.10.07
Databáze rootkitů: v2016.09.26.02
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 8.1 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Radek

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 912135
Uplynulý čas: 26 hod, 41 min, 9 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 6
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\TotalPlusHD-3.1V19.11-nv, , [ff904a4d96044beb8b68841a0cf7b34d],
PUP.Optional.Yontoo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\Update HulaToo, , [b3dcdbbcc2d85cdaabaf7f603bc8f010],
PUP.Optional.Yontoo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\Util HulaToo, , [66296f28465474c2d189e4fb81822ed2],
PUP.Optional.PlusHD, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\HD-V1.9, , [93fce0b7c0daea4cbad6dfd0887b946c],
PUP.Optional.TornTV, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\Torntv V9.0, , [117e7f18326849ed865502b63ac9f010],
PUP.Optional.CrossRider, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\TotalPlusHD-3.1V19.11, , [5b34187fd7c3ae88c8a8a7f7b44f60a0],

Hodnoty registru: 1
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION|TotalPlusHD-3.1V19.11-bg.exe, 8000, , [58372f68178377bf0d14d027af54b64a]

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 20
PUP.Optional.Bunndle, C:\Program Files\CamStudio 2.7\BunndleOfferManager.exe, , [2e61484ff4a6e74f5a0fc1536898b34d],
RiskWare.Tool.CK, C:\Program Files (x86)\EA GAMES\Need for Speed Underground 2\rld-nu2k.exe, , [107ff89fe6b4e84e8f3aa2c521df50b0],
RiskWare.GameHack, C:\Program Files (x86)\Pro Evolution Soccer 2016\steam_api.dll, , [f996adea0b8fe74fb204abfc17ed4fb1],
PUP.Optional.MultiPlug.B5P, C:\ProgramData\BlockiTheAds\DauOr5Agf.dll, , [721dd9be16841125e4b0e943af52936d],
PUP.Optional.APNToolBar, C:\Programy\atubecatcher-setup.exe, , [850a781f574372c4e7d89e8bd62bbc44],
PUP.Optional.InstallCore, C:\Programy\CR_Downloader_for_virtuanes.exe, , [3956aaede7b3db5b96d6df5ca25f8080],
PUP.Optional.Bundler, C:\Programy\daemon-tools-lista-centrumcz.exe, , [bad51b7cc7d30a2c503637227d84a759],
PUP.Optional.Amonetize, C:\Programy\GTA5KeyGeneratorV3.2Setup__6196_il2928.exe, , [1778aceb03970135549ca98c02ff8a76],
PUP.Optional.Installex, C:\Programy\SketchUp Pro 13 License key, Crack incl 2013 Full Version Free Download.exe, , [751a17806a30f83e7f6306b23ac68779],
PUP.Optional.DownLoadAdmin, C:\Programy\windows-movie-maker.exe, , [a6e92f68b9e1c76fbb27dae8986934cc],
PUP.Optional.OpenCandy, C:\Programy\DTLite4491-0356.exe, , [cdc2d6c1d0ca9c9a288092f735cfff01],
PUP.Optional.MultiPlug, C:\Programy\nes games\Konami World Jap.exe, , [e6a9b7e04159092d0ea08e997190d22e],
CrackTool.Agent, C:\Programy\Google_SketchUp_Pro_2013_13.0.4812\MPT.rar, , [fa955a3dd5c5f83e5b855455be42c43c],
CrackTool.Agent, C:\Programy\Google_SketchUp_Pro_2013_13.0.4812\Patch.exe, , [a2ed9bfc1f7b6bcb5888b0f958a831cf],
Trojan.PasswordStealer.GM, C:\Hry\Watch_Dogs\bin\3dmGameDll.dll, , [038c3b5c54460f2742d18db3c93902fe],
PUP.Optional.InstallCore, C:\Hry\NFS_RIVALS\[R.G. Mechanics] Need for Speed - Rivals\setup.exe, , [e8a7afe8b5e5db5b14875de4649d8e72],
RiskWare.Tool.CK, C:\Users\Radek\Downloads\Crysis ISO - Full Install + Cracked Multiplayer\Extras\Crysis - Private Servers.rar, , [d2bdf4a3257557df9db16e0efe0612ee],
VirTool.Obfuscator, C:\Users\Radek\Downloads\PES 2014-RELOADED\Crack\rld.dll, , [57381a7d2a701d190c6931833fc12ad6],
VirTool.Obfuscator, C:\Users\Radek\Downloads\PES 2014-RELOADED\program files\KONAMI\Pro Evolution Soccer 2014\rld.dll, , [b3dca3f47d1d89ad472eb5ff42be6a96],
Backdoor.Bifrose, C:\Program Files\HP\HP.exe, , [9ef1286f9a0006305d45ff0e36cdf50b],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)

(end)

#6 Příspěvek od **Márty84** » 12 říj 2016 19:43

Vsechny nalezy nechte odstranit. Po odstraneni a restartu pc test s MBAM zopakujte, at vime, jestli se to nevraci. Napiste vysledek testu a podle nej zvolim dalsi postup.

Radek9999 · #7 Příspěvek od **Radek9999** » 19 říj 2016 15:37

Vyčištěno, a dál se nic nevrací. V příloze posílám obrázek

Radek9999 · #8 Příspěvek od **Radek9999** » 19 říj 2016 21:36

ted mi nejedou hry samozřejmě

#9 Příspěvek od **Márty84** » 20 říj 2016 00:25

Cracknute, co?

No jo, to je riziko cisteni. Jestli si je zas natahate zpatky i s tou haveti, to uz je na vas.

Dejte nove logy z FRST

VIRY.CZ

Kontrola logu

Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu