VIRY.CZ

Ahoj
Dnes se mi začal zvláštně chovat prohlízeč chrome. Přesměrovává z youtube a FB rovnou na http://trkingapp.com/rd.php?s=1&u=www.m ... 3Dintlrees
Nějaký filesfetcher kde jsou knihy.
A taky mi jede pomaleji internet, dlouhé načítání videa.
Děkuju

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-01-2015 01
Ran by Jiri (administrator) on INDIGO on 25-01-2015 16:41:37
Running from C:\Users\Jiri\Desktop
Loaded Profiles: Jiri (Available profiles: Jiri & DefaultAppPool)
Platform: Windows 8.1 (X64) OS Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
() C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\sSettings.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\Support Center\GuaranaAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13191824 2012-08-10] (Realtek Semiconductor)
HKLM\...\Run: [Bitcasa] => C:\Program Files\Bitcasa\Bitcasa.exe [3952128 2012-11-27] (Bitcasa, Inc)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2917688 2012-10-16] (Synaptics Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595336 2014-10-01] (ESET)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-13] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-09-15] (Advanced Micro Devices, Inc.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [134784 2014-06-17] ( (Qualcomm®Atheros®))
HKU\S-1-5-21-983421063-3644458213-3332401588-1001\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [1967616 2014-04-17] (AMD)
HKU\S-1-5-21-983421063-3644458213-3332401588-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7063832 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-983421063-3644458213-3332401588-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1942720 2015-01-23] (Valve Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\windows\system32\CbFsMntNtf3.dll (EldoS Corporation)
SSODL-x32: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\windows\SysWow64\CbFsMntNtf3.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [1EldosIconOverlay] -> {34AB5510-ED94-4435-B45C-ADCAA6F1DEC1} => C:\windows\SYSTEM32\CbFsMntNtf3.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [EldosIconOverlay] -> {5BB532A2-BF14-4CCC-86B7-71B81EF6F8BC} => C:\windows\system32\CbFsMntNtf3.dll (EldoS Corporation)
ShellIconOverlayIdentifiers-x32: [1EldosIconOverlay] -> {34AB5510-ED94-4435-B45C-ADCAA6F1DEC1} => C:\windows\SysWOW64\CbFsMntNtf3.dll (EldoS Corporation)
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay] -> {5BB532A2-BF14-4CCC-86B7-71B81EF6F8BC} => C:\windows\SysWow64\CbFsMntNtf3.dll (EldoS Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-983421063-3644458213-3332401588-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.cz/
HKU\S-1-5-21-983421063-3644458213-3332401588-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung13.msn.com
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Jiri\AppData\Roaming\Mozilla\Firefox\Profiles\4wqxyzey.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_296.dll ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default ->
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.2.464\_platform_specific\win_x86\widevinecdmadapter.dll No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.99\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.99\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.99\pdf.dll ()
CHR Plugin: (Microsoft Office 2013) - C:\PROGRA~2\Microsoft Office\Office15\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Java Deployment Toolkit 7.0.550.14) - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U55) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File
CHR Plugin: (Microsoft Office 2013) - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Jiri\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll No File
CHR Profile: C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-06]
CHR Extension: (Vyhledávání Google) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-06]
CHR Extension: (Calculator) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmiidjflinmfhfeeajgogjbhpbndacof [2013-11-06]
CHR Extension: (Video Downloader professional) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2014-11-20]
CHR Extension: (AdBlock Premium) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj [2014-10-20]
CHR Extension: (Dictionary Instant) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\hngaklbjlbjhmoilkegninbmpfigheol [2013-11-06]
CHR Extension: (Download Helper Plus) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\iildbkkcibbelkbkgeajjhiihofmkloi [2014-05-10]
CHR Extension: (Youtube-to-MP3) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\jekmfmemcfggilfpgplgjbfaijgchhfc [2015-01-10]
CHR Extension: (Mapy Google) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2013-11-06]
CHR Extension: (Peněženka Google) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-06]
CHR Extension: (Google Chrome to Phone Extension) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco [2014-10-12]
CHR Extension: (Fotoaparát) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofmpffnppnlgkgmbgidhhjcglloeejpg [2014-05-10]
CHR Extension: (Gmail) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-06]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeActiveFileMonitor11.0; C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe [172104 2013-01-26] (Adobe Systems Incorporated)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [322176 2014-06-17] (Windows (R) Win 7 DDK provider)
R2 Easy Launcher; C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe [1593152 2014-01-29] (Samsung Electronics CO., LTD.)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1349576 2014-10-01] (ESET)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
S2 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3000664 2014-08-28] (Samsung Electronics CO., LTD.)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-05-09] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [546304 2014-05-09] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-06-17] (Atheros) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36608 2013-12-13] (Advanced Micro Devices, Inc.)
R3 BTATH_HID; C:\Windows\system32\DRIVERS\btath_hid.sys [223432 2014-06-17] (Qualcomm Atheros)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-06-17] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R1 cbfs3; C:\windows\system32\drivers\cbfs3.sys [352456 2012-08-06] (EldoS Corporation)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-10-10] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [241368 2014-10-10] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [169280 2014-10-10] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [158968 2014-10-10] (ESET)
R0 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20672 2014-06-05] (Glarysoft Ltd)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-08-09] (Corel Corporation)
R3 RadioHIDMini; C:\Windows\System32\drivers\RadioHIDMini.sys [23408 2012-07-27] (Windows (R) Win 7 DDK provider)
S3 StMp3Recx64; C:\Windows\System32\Drivers\StMp3Recx64.sys [26112 2007-01-12] (Generic)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-25 16:41 - 2015-01-25 16:41 - 00021038 _____ () C:\Users\Jiri\Desktop\FRST.txt
2015-01-25 16:41 - 2015-01-25 16:41 - 00000000 ____D () C:\FRST
2015-01-25 16:38 - 2015-01-25 16:39 - 02129920 _____ (Farbar) C:\Users\Jiri\Desktop\FRST64.exe
2015-01-25 16:37 - 2015-01-25 16:37 - 00015327 _____ () C:\Users\Jiri\Desktop\LM.bat
2015-01-25 16:36 - 2015-01-25 16:37 - 00029696 _____ () C:\Users\Jiri\AppData\Local\MSGBOX.EXE
2015-01-25 16:36 - 2015-01-25 16:36 - 00112640 _____ (forum.viry.cz) C:\Users\Jiri\Desktop\FRSTLauncher.exe
2015-01-25 15:18 - 2015-01-25 15:18 - 00000000 ___RD () C:\Users\Jiri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-01-25 15:06 - 2015-01-25 15:06 - 00000219 _____ () C:\Users\Jiri\Desktop\Counter-Strike Global Offensive.url
2015-01-25 14:44 - 2015-01-25 15:18 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-01-25 14:44 - 2015-01-25 14:44 - 01142128 _____ () C:\Users\Jiri\Downloads\SteamSetup.exe
2015-01-25 14:44 - 2015-01-25 14:44 - 00000975 _____ () C:\Users\Public\Desktop\Steam.lnk
2015-01-25 14:44 - 2015-01-25 14:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-01-25 13:25 - 2015-01-25 13:25 - 00017939 _____ () C:\Users\Jiri\Downloads\[kickass.so]czechav.czechcasting.tereza.2172.torrent
2015-01-19 14:46 - 2015-01-19 15:04 - 217255095 _____ () C:\Users\Jiri\Downloads\Danny D Cumshot Compilation - Pornhubcom.mp4
2015-01-17 20:14 - 2015-01-17 20:14 - 00017431 _____ () C:\Users\Jiri\Downloads\[CzT]Advanced_SystemCare_Ultimate_8_0_1_660_Final_Advanced_System_Care_with_Antivirus_2013_CZ_x86_x64_.torrent
2015-01-17 19:53 - 2015-01-17 19:53 - 00019886 _____ () C:\Users\Jiri\Downloads\[CzT]Hot_Slut_Teen_Young_Girls_Cumshot_Compilation_2015_720p_.torrent
2015-01-17 19:18 - 2015-01-17 19:39 - 99204322 _____ () C:\Users\Jiri\Downloads\Beautiful babe just loves to fuck.flv
2015-01-17 18:45 - 2015-01-25 15:17 - 00001140 _____ () C:\WINDOWS\PFRO.log
2015-01-15 19:14 - 2015-01-25 15:17 - 00001347 _____ () C:\WINDOWS\setupact.log
2015-01-15 19:14 - 2015-01-15 19:14 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-01-15 18:55 - 2015-01-15 18:55 - 00014186 _____ () C:\Users\Jiri\Downloads\[CzT]X_Art_Angelica_Good_Night_Kiss_2015_1080pLQ_.torrent
2015-01-13 19:43 - 2014-12-19 07:26 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-01-13 19:43 - 2014-12-12 03:04 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-01-13 19:43 - 2014-12-12 01:51 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-01-13 19:43 - 2014-12-09 02:50 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-01-13 19:42 - 2014-12-08 20:42 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-01-13 19:42 - 2014-12-08 20:42 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-01-13 19:42 - 2014-12-08 20:42 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-01-13 19:42 - 2014-12-08 20:42 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-01-13 19:42 - 2014-12-08 20:42 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-01-13 19:42 - 2014-12-08 20:42 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-01-13 19:42 - 2014-12-08 20:42 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-01-13 19:42 - 2014-12-08 20:42 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-01-13 19:42 - 2014-12-06 04:17 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-01-13 19:42 - 2014-12-06 02:41 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-01-13 19:42 - 2014-12-06 02:35 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-01-13 19:42 - 2014-10-29 05:00 - 00465320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2015-01-13 19:42 - 2014-10-29 05:00 - 00139984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2015-01-13 19:42 - 2014-10-29 04:52 - 00500016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-01-13 19:42 - 2014-10-29 04:52 - 00482872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-01-13 19:42 - 2014-10-29 04:52 - 00394120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2015-01-13 19:42 - 2014-10-29 04:52 - 00272248 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2015-01-13 19:42 - 2014-10-29 04:12 - 00413136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2015-01-13 19:42 - 2014-10-29 04:12 - 00136296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2015-01-13 19:42 - 2014-10-29 04:07 - 00424544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-01-13 19:42 - 2014-10-29 04:07 - 00370424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-01-13 19:42 - 2014-10-29 04:07 - 00344536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2015-01-13 19:42 - 2014-10-29 03:44 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2015-01-13 19:42 - 2014-10-29 02:59 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2015-01-13 19:42 - 2014-10-29 02:24 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2015-01-13 19:42 - 2014-10-29 02:02 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-01-13 19:42 - 2014-10-29 02:01 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2015-01-11 16:44 - 2015-01-11 16:46 - 00000000 ____D () C:\Program Files (x86)\Total Video Converter
2015-01-11 16:44 - 2015-01-11 16:44 - 00001020 _____ () C:\Users\Jiri\Desktop\Total Video Converter.lnk
2015-01-11 16:44 - 2015-01-11 16:44 - 00000989 _____ () C:\Users\Jiri\Desktop\Total Video Player.lnk
2015-01-11 16:44 - 2015-01-11 16:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Video Converter
2015-01-11 16:44 - 2015-01-11 16:44 - 00000000 ____D () C:\Program Files\Total Video Converter
2015-01-11 16:31 - 2015-01-11 16:31 - 00005817 _____ () C:\Users\Jiri\Downloads\[CzT]Total_Video_Converter_HD_3_70_100621_CZ_a_SK_.torrent
2015-01-11 16:28 - 2015-01-11 16:28 - 00013733 _____ () C:\Users\Jiri\Downloads\[CzT]PublicPickUps_Alexa_Tomas.torrent
2015-01-11 14:57 - 2015-01-25 15:50 - 01228425 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-11 00:02 - 2015-01-11 01:09 - 517436419 _____ () C:\Users\Jiri\Downloads\Nech m to polknout - nvratdorealitycz (1).flv
2015-01-09 16:43 - 2015-01-09 16:43 - 13078073 _____ () C:\Users\Jiri\Downloads\mms.mp4
2015-01-09 15:02 - 2015-01-09 15:02 - 00000470 _____ () C:\DelFix.txt
2015-01-08 17:14 - 2015-01-08 17:50 - 160316858 _____ () C:\Users\Jiri\Downloads\Not on My Face.flv
2015-01-08 16:04 - 2015-01-08 16:04 - 15312556 _____ () C:\Users\Jiri\Downloads\Cyanide And Happiness - JunkMail Whistle song.mp4
2015-01-06 20:56 - 2015-01-06 20:56 - 00014041 _____ () C:\Users\Jiri\Downloads\[kat.sitescrack.com]brazzers.bigtitsatschool.peta.jensen.peta.pledges.her.cleavage.allegiance.december.08.2014.new.torrent
2015-01-06 20:56 - 2015-01-06 20:56 - 00013402 _____ () C:\Users\Jiri\Downloads\[CzT]Peta_Jensen_Dressed_to_Impressed_1080pLQ_.torrent
2015-01-06 20:55 - 2015-01-06 20:55 - 00049748 _____ () C:\Users\Jiri\Downloads\[kat.sitescrack.com]bigtitsatschool.peta.jensen.peta.pledges.her.cleavage.allegiance.pornleech.mp4.torrent
2015-01-06 20:54 - 2015-01-06 20:54 - 00014591 _____ () C:\Users\Jiri\Downloads\[kat.sitescrack.com]brazzers.pornstarslikeitbig.peta.jensen.i.cum.into.your.home.nov.15.2014.new.torrent
2015-01-05 18:27 - 2015-01-05 18:27 - 00092950 _____ () C:\Users\Jiri\Downloads\[kickass.so]pervsonpatrol.14.11.25.ashley.sinclair.putting.on.a.show.for.a.v.torrent
2015-01-05 18:27 - 2015-01-05 18:27 - 00027124 _____ () C:\Users\Jiri\Downloads\[kickass.so]tonightsgirlfriend.14.12.12.ashley.sinclair.xxx.sd.mp4.rarbg.torrent
2015-01-05 18:27 - 2015-01-05 18:27 - 00021088 _____ () C:\Users\Jiri\Downloads\[kickass.so]babygotboobs.ashley.sinclair.ashleys.big.boob.fuck.gonzo.13.11.14.torrent
2015-01-05 18:27 - 2015-01-05 18:27 - 00020645 _____ () C:\Users\Jiri\Downloads\[kickass.so]naughtyamerica.mydadshotgirlfriend.ashley.sinclair.december.26.2014.new.torrent
2015-01-05 18:27 - 2015-01-05 18:27 - 00018512 _____ () C:\Users\Jiri\Downloads\[kickass.so]mygf.ashley.sinclair.dildo.and.the.blonde.mp4.pornleech.torrent
2015-01-05 18:27 - 2015-01-05 18:27 - 00013993 _____ () C:\Users\Jiri\Downloads\[kickass.so]bigtitsatschool.ashley.sinclair.ripe.to.be.a.pornstar.torrent
2015-01-05 18:27 - 2015-01-05 18:27 - 00011937 _____ () C:\Users\Jiri\Downloads\[kickass.so]i.know.that.girl.ashley.sinclair.brunette.s.pool.hopping.fuck.10.20.2014.mofos.new.october.20.2014.torrent
2015-01-05 18:22 - 2015-01-05 18:22 - 00010998 _____ () C:\Users\Jiri\Downloads\[CzT]PublicPickUps_Alive_Bell_Russian_Nurse_Public_Sex_4_1_2015_.torrent
2015-01-04 16:35 - 2015-01-04 16:35 - 00093568 _____ () C:\Users\Jiri\Downloads\[kickass.so]publicagent.e257.alex.c.xxx.1080p.torrent
2015-01-04 16:32 - 2015-01-04 16:32 - 00001567 _____ () C:\Users\Jiri\Downloads\[CzT]aCalendar_v1_0_2_2014_CZ_Android_.torrent
2015-01-03 17:21 - 2015-01-03 17:21 - 00012625 _____ () C:\Users\Jiri\Downloads\[CzT]Roman_Vanek_Snadno_Rychle_2014_CZ_.torrent
2015-01-03 17:16 - 2015-01-03 17:16 - 00012199 _____ () C:\Users\Jiri\Downloads\[CzT]Medvedi_Bears_2014_CZ_720pHD_.torrent
2014-12-28 17:02 - 2014-12-28 17:02 - 00027898 _____ () C:\Users\Jiri\Downloads\[kickass.so]x.art.amarna.strawberry.morning.new.27.december.2014.new.torrent
2014-12-28 17:02 - 2014-12-28 17:02 - 00018405 _____ () C:\Users\Jiri\Downloads\[kickass.so]czechcasting.zaneta.5112.czechav.new.26.december.2014.new.torrent
2014-12-26 12:02 - 2014-12-26 12:06 - 55490840 _____ () C:\Users\Jiri\Downloads\Existuj 2 piny strachu a zkosti on Vimeo.mp4
2014-12-26 11:58 - 2014-12-26 12:20 - 505046383 _____ () C:\Users\Jiri\Downloads\Evoluce lidskho vdom 2 st on Vimeo.mp4
2014-12-26 11:57 - 2014-12-26 12:20 - 491226309 _____ () C:\Users\Jiri\Downloads\ET - RLV 1 st on Vimeo.mp4

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-25 16:37 - 2013-11-07 21:16 - 01794048 ___SH () C:\Users\Jiri\Downloads\Thumbs.db
2015-01-25 16:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-01-25 15:52 - 2014-04-26 18:22 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-25 15:24 - 2013-11-06 19:14 - 00980668 _____ () C:\WINDOWS\system32\perfh005.dat
2015-01-25 15:24 - 2013-11-06 19:14 - 00230274 _____ () C:\WINDOWS\system32\perfc005.dat
2015-01-25 15:24 - 2013-09-30 05:04 - 02204132 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-25 15:22 - 2013-11-06 19:11 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-983421063-3644458213-3332401588-1001
2015-01-25 15:20 - 2013-03-18 11:17 - 00000000 ____D () C:\ProgramData\WinClon
2015-01-25 15:17 - 2013-11-07 15:32 - 00000000 __RDO () C:\Users\Jiri\SkyDrive
2015-01-25 15:17 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-25 15:16 - 2013-08-22 14:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2015-01-25 15:06 - 2013-12-12 23:16 - 00000000 ____D () C:\Users\Jiri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-01-25 13:25 - 2013-11-07 16:11 - 00000000 ____D () C:\Users\Jiri\AppData\Roaming\uTorrent
2015-01-25 12:13 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-01-25 11:52 - 2014-04-26 18:22 - 00003802 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-01-25 11:34 - 2013-11-09 00:05 - 00003958 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A3978973-D763-40CD-B67C-4982CE685256}
2015-01-25 11:32 - 2013-11-10 12:40 - 00000000 ____D () C:\Users\Jiri\AppData\Roaming\vlc
2015-01-20 13:18 - 2013-11-15 23:00 - 00016896 ___SH () C:\Users\Jiri\Desktop\Thumbs.db
2015-01-19 22:32 - 2013-08-22 16:38 - 00714720 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-01-19 22:32 - 2013-08-22 16:38 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-18 19:04 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-01-18 17:43 - 2013-11-06 21:41 - 00000000 ____D () C:\Users\Jiri\AppData\Local\CrashDumps
2015-01-18 17:09 - 2014-09-21 17:55 - 00002029 _____ () C:\Users\Jiri\Desktop\MyBookLive (192.168.0.100).lnk
2015-01-17 19:48 - 2014-01-07 16:12 - 00002029 _____ () C:\Users\Jiri\Desktop\MyBookLive (192.168.0.101).lnk
2015-01-17 19:37 - 2013-11-06 20:05 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-01-17 19:34 - 2013-11-06 20:05 - 113365784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-01-17 18:46 - 2013-08-22 15:44 - 00645104 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-01-17 15:08 - 2013-11-06 20:07 - 00002205 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-11 20:05 - 2013-11-30 17:27 - 00000000 ____D () C:\Users\Jiri\AppData\Roaming\AIMP3
2015-01-11 19:14 - 2014-01-08 16:59 - 00000000 ____D () C:\Users\Jiri\Downloads\Darinka
2015-01-09 19:32 - 2014-08-23 21:22 - 00000000 ____D () C:\Program Files\CCleaner
2015-01-09 19:31 - 2014-08-23 21:22 - 00000834 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-01-09 16:26 - 2013-11-06 19:06 - 00000000 ____D () C:\Users\Jiri\Documents\Bluetooth Folder
2015-01-08 21:03 - 2014-06-05 16:25 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2015-01-08 21:02 - 2013-08-22 16:36 - 00000000 ___HD () C:\WINDOWS\system32\GroupPolicy
2015-01-05 20:22 - 2014-06-25 19:39 - 00000000 ____D () C:\Program Files\trend micro

==================== Files in the root of some directories =======

2013-12-27 12:57 - 2014-04-27 00:22 - 0099384 _____ () C:\Users\Jiri\AppData\Roaming\inst.exe
2013-12-27 12:55 - 2014-01-07 16:17 - 0001699 _____ () C:\Users\Jiri\AppData\Roaming\msemhjr.dat
2013-12-27 12:55 - 2014-01-16 19:06 - 0000027 _____ () C:\Users\Jiri\AppData\Roaming\msudbgs.dat
2013-12-27 12:57 - 2014-04-27 00:22 - 0007859 _____ () C:\Users\Jiri\AppData\Roaming\pcouffin.cat
2013-12-27 12:57 - 2014-04-27 00:22 - 0001167 _____ () C:\Users\Jiri\AppData\Roaming\pcouffin.inf
2013-12-27 12:57 - 2014-04-27 00:22 - 0000055 _____ () C:\Users\Jiri\AppData\Roaming\pcouffin.log
2013-12-27 12:57 - 2014-04-27 00:22 - 0082816 _____ (VSO Software) C:\Users\Jiri\AppData\Roaming\pcouffin.sys
2014-03-25 16:32 - 2014-08-30 18:08 - 0037574 _____ () C:\Users\Jiri\AppData\Local\MRDownloader.err
2014-03-22 18:43 - 2014-08-30 19:34 - 0001128 _____ () C:\Users\Jiri\AppData\Local\MRDownloader.nast
2015-01-25 16:36 - 2015-01-25 16:37 - 0029696 _____ () C:\Users\Jiri\AppData\Local\MSGBOX.EXE
2013-11-12 19:46 - 2014-01-30 20:25 - 0007602 _____ () C:\Users\Jiri\AppData\Local\resmon.resmoncfg
2014-05-06 10:24 - 2014-09-09 12:04 - 0001340 _____ () C:\ProgramData\hpzinstall.log
2013-03-18 11:30 - 2013-01-12 15:51 - 0003004 _____ () C:\ProgramData\MakeMarkerFile.xml

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-18 11:17

==================== End Of Log ============================

Zdravim

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Po spusteni probehne stazeni databaze
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  resethosts;
  emptyclsid;
  IEdefaults;
  FFdefaults;
  CHRdefaults;
  emptyIEcache;
  emptyFFcache;
  emptyCHRcache;
  emptyalltemp;
  emptyflash;
  emptyjava;
  emptyrecycle.bin;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

tak tady je prozatím ADW cleaner..
a teď jdu na to druhé zmíněné

# AdwCleaner v4.109 - Report created 25/01/2015 at 17:01:37
# Updated 24/01/2015 by Xplode
# Database : 2015-01-25.1 [Live]
# Operating System : Windows 8.1 (64 bits)
# Username : Jiri - INDIGO
# Running from : C:\Users\Jiri\Desktop\adwcleaner_4.109.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

File Deleted : C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.olark.com_0.localstorage-journal

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Mozilla Firefox v33.1.1 (x86 cs)


-\\ Google Chrome v39.0.2171.99


-\\ Comodo Dragon v


-\\ Chrome Canary v


*************************

AdwCleaner[R0].txt - [1052 octets] - [25/01/2015 16:59:28]
AdwCleaner[S0].txt - [979 octets] - [25/01/2015 17:01:37]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1038 octets] ##########

a tady zoek


Zoek.exe v5.0.0.0 Updated 18-01-2015
Tool run by Jiri on ne 25. 01. 2015 at 17:05:43,92.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Jiri\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

25. 1. 2015 17:06:15 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully
C:\Program Files\ATI Technologies deleted successfully
C:\PROGRA~3\GlarySoft deleted successfully
C:\Users\Jiri\AppData\Roaming\GlarySoft deleted successfully
C:\Users\Jiri\AppData\Roaming\Vso deleted successfully
C:\Users\Jiri\AppData\Local\PackageStaging deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Jiri\AppData\Roaming\Mozilla\Firefox\Profiles\4wqxyzey.default\prefs.js:

Added to C:\Users\Jiri\AppData\Roaming\Mozilla\Firefox\Profiles\4wqxyzey.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Deleting Files \ Folders ======================

C:\Users\Jiri\AppData\LocalLow\{6C756914-2F28-6104-C3AF-B0239A116F56} deleted
C:\Users\Jiri\AppData\LocalLow\{E6F415C6-8271-DED4-A4E1-C83E6DA11D2C} deleted
C:\Users\Jiri\AppData\LocalLow\{F2769398-90D4-6D81-B05A-C60B6AD38B1C} deleted
C:\Users\Jiri\AppData\Local\Packages\windows_ie_ac_001\AC\{E6F415C6-8271-DED4-A4E1-C83E6DA11D2C} deleted
C:\Users\Jiri\AppData\Local\Packages\windows_ie_ac_001\AC\{F2769398-90D4-6D81-B05A-C60B6AD38B1C} deleted
C:\Users\Jiri\.android deleted
C:\Users\Jiri\AppData\Roaming\MAGIX deleted
C:\PROGRA~3\boost_interprocess deleted
C:\PROGRA~3\MAGIX deleted
C:\PROGRA~3\InstallMate deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\WINDOWS\SysNative\config\systemprofile\Searches deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\WINDOWS\Syswow64\GroupPolicy\gpt.ini deleted
C:\Users\Jiri\Desktop\Driver Genius.lnk deleted
C:\Users\Jiri\AppData\Local\MSGBOX.EXE deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Jiri\AppData\Roaming\Mozilla\Firefox\Profiles\4wqxyzey.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================


==== Fake Chromium Profiles Check ======================

Fake profile C:\Users\Administrator\AppData\Local\Google\Chrome deleted
Fake profile C:\Users\Administrator\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\Administrator\AppData\Local\Comodo\Dragon deleted
Fake profile C:\Users\Guest\AppData\Local\Google\Chrome deleted
Fake profile C:\Users\Guest\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\Guest\AppData\Local\Comodo\Dragon deleted
Fake profile C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome deleted
Fake profile C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon deleted
Fake profile C:\Users\Jiri\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\Jiri\AppData\Local\Comodo\Dragon deleted

==== Chromium Look ======================

Google Chrome Version: 40.0.2214.91 (Possible outdated, latest Stable version: 39.0.2171.99)


Calculator - Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmiidjflinmfhfeeajgogjbhpbndacof
AdBlock Premium - Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj
Dictionary Instant - Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\hngaklbjlbjhmoilkegninbmpfigheol
Download Helper Plus - Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\iildbkkcibbelkbkgeajjhiihofmkloi

==== Chromium Fix ======================

C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_planefinder.net_0.localstorage deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_radiorage.dl.tb.ask.com_0.localstorage deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.cz/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.cz/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"

==== Reset Google Chrome ======================

C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jiri\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Jiri\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=728 folders=85 164720982 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\DefaultAppPool\AppData\Local\Temp emptied successfully
C:\Users\Jiri\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Jiri\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on ne 25. 01. 2015 at 17:24:21,29 ======================

stále přesměrovává z youtube, FB celkově se nic viditelné nezměnilo - rychlost netu, videa.

Poprosim o novy log z FRST

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-01-2015 01
Ran by Jiri (administrator) on INDIGO on 25-01-2015 17:50:59
Running from C:\Users\Jiri\Desktop
Loaded Profiles: Jiri (Available profiles: Jiri & DefaultAppPool)
Platform: Windows 8.1 (X64) OS Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Samsung Electronics CO., LTD.) C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
() C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\sSettings.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\Support Center\GuaranaAgent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13191824 2012-08-10] (Realtek Semiconductor)
HKLM\...\Run: [Bitcasa] => C:\Program Files\Bitcasa\Bitcasa.exe [3952128 2012-11-27] (Bitcasa, Inc)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2917688 2012-10-16] (Synaptics Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595336 2014-10-01] (ESET)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-13] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-09-15] (Advanced Micro Devices, Inc.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [134784 2014-06-17] ( (Qualcomm®Atheros®))
HKU\S-1-5-21-983421063-3644458213-3332401588-1001\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [1967616 2014-04-17] (AMD)
HKU\S-1-5-21-983421063-3644458213-3332401588-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7063832 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-983421063-3644458213-3332401588-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1942720 2015-01-23] (Valve Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\windows\system32\CbFsMntNtf3.dll (EldoS Corporation)
SSODL-x32: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\windows\SysWow64\CbFsMntNtf3.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [1EldosIconOverlay] -> {34AB5510-ED94-4435-B45C-ADCAA6F1DEC1} => C:\windows\SYSTEM32\CbFsMntNtf3.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [EldosIconOverlay] -> {5BB532A2-BF14-4CCC-86B7-71B81EF6F8BC} => C:\windows\system32\CbFsMntNtf3.dll (EldoS Corporation)
ShellIconOverlayIdentifiers-x32: [1EldosIconOverlay] -> {34AB5510-ED94-4435-B45C-ADCAA6F1DEC1} => C:\windows\SysWOW64\CbFsMntNtf3.dll (EldoS Corporation)
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay] -> {5BB532A2-BF14-4CCC-86B7-71B81EF6F8BC} => C:\windows\SysWow64\CbFsMntNtf3.dll (EldoS Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-983421063-3644458213-3332401588-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.cz/
HKU\S-1-5-21-983421063-3644458213-3332401588-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung13.msn.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-983421063-3644458213-3332401588-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Jiri\AppData\Roaming\Mozilla\Firefox\Profiles\4wqxyzey.default
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_296.dll ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default ->
CHR Profile: C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-25]
CHR Extension: (Dokumenty Google) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-25]
CHR Extension: (YouTube) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-06]
CHR Extension: (Vyhledávání Google) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-06]
CHR Extension: (Calculator) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmiidjflinmfhfeeajgogjbhpbndacof [2013-11-06]
CHR Extension: (Video Downloader professional) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2014-11-20]
CHR Extension: (Tabulky Google) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-25]
CHR Extension: (AdBlock Premium) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj [2014-10-20]
CHR Extension: (Dictionary Instant) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\hngaklbjlbjhmoilkegninbmpfigheol [2013-11-06]
CHR Extension: (Download Helper Plus) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\iildbkkcibbelkbkgeajjhiihofmkloi [2014-05-10]
CHR Extension: (Youtube-to-MP3) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\jekmfmemcfggilfpgplgjbfaijgchhfc [2015-01-10]
CHR Extension: (Mapy Google) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2013-11-06]
CHR Extension: (Peněženka Google) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-06]
CHR Extension: (Google Chrome to Phone Extension) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco [2014-10-12]
CHR Extension: (Fotoaparát) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofmpffnppnlgkgmbgidhhjcglloeejpg [2014-05-10]
CHR Extension: (Gmail) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-06]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeActiveFileMonitor11.0; C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe [172104 2013-01-26] (Adobe Systems Incorporated)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [322176 2014-06-17] (Windows (R) Win 7 DDK provider)
R2 Easy Launcher; C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe [1593152 2014-01-29] (Samsung Electronics CO., LTD.)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1349576 2014-10-01] (ESET)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3000664 2014-08-28] (Samsung Electronics CO., LTD.)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-05-09] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [546304 2014-05-09] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-06-17] (Atheros) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36608 2013-12-13] (Advanced Micro Devices, Inc.)
R3 BTATH_HID; C:\Windows\system32\DRIVERS\btath_hid.sys [223432 2014-06-17] (Qualcomm Atheros)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-06-17] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R1 cbfs3; C:\windows\system32\drivers\cbfs3.sys [352456 2012-08-06] (EldoS Corporation)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-10-10] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [241368 2014-10-10] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [169280 2014-10-10] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [158968 2014-10-10] (ESET)
R0 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20672 2014-06-05] (Glarysoft Ltd)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-08-09] (Corel Corporation)
R3 RadioHIDMini; C:\Windows\System32\drivers\RadioHIDMini.sys [23408 2012-07-27] (Windows (R) Win 7 DDK provider)
S3 StMp3Recx64; C:\Windows\System32\Drivers\StMp3Recx64.sys [26112 2007-01-12] (Generic)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-25 17:50 - 2015-01-25 17:51 - 00018720 _____ () C:\Users\Jiri\Desktop\FRST.txt
2015-01-25 17:25 - 2015-01-25 17:25 - 00000000 ___RD () C:\Users\Jiri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-01-25 17:22 - 2015-01-25 17:05 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2015-01-25 17:06 - 2015-01-25 17:24 - 00008719 _____ () C:\zoek-results.log
2015-01-25 17:05 - 2015-01-25 17:20 - 00000000 ____D () C:\zoek_backup
2015-01-25 17:04 - 2015-01-25 17:05 - 01295360 _____ () C:\Users\Jiri\Desktop\zoek.exe
2015-01-25 16:59 - 2015-01-25 17:01 - 00000000 ____D () C:\AdwCleaner
2015-01-25 16:58 - 2015-01-25 16:58 - 02194432 _____ () C:\Users\Jiri\Desktop\adwcleaner_4.109.exe
2015-01-25 16:51 - 2015-01-25 16:53 - 00000000 ____D () C:\rsit
2015-01-25 16:49 - 2015-01-25 16:50 - 01222144 _____ () C:\Users\Jiri\Desktop\RSITx64.exe
2015-01-25 16:41 - 2015-01-25 17:51 - 00000000 ____D () C:\FRST
2015-01-25 16:38 - 2015-01-25 16:39 - 02129920 _____ (Farbar) C:\Users\Jiri\Desktop\FRST64.exe
2015-01-25 15:06 - 2015-01-25 15:06 - 00000219 _____ () C:\Users\Jiri\Desktop\Counter-Strike Global Offensive.url
2015-01-25 14:44 - 2015-01-25 17:24 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-01-25 14:44 - 2015-01-25 14:44 - 01142128 _____ () C:\Users\Jiri\Downloads\SteamSetup.exe
2015-01-25 14:44 - 2015-01-25 14:44 - 00000975 _____ () C:\Users\Public\Desktop\Steam.lnk
2015-01-25 14:44 - 2015-01-25 14:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-01-25 13:25 - 2015-01-25 13:25 - 00017939 _____ () C:\Users\Jiri\Downloads\[kickass.so]czechav.czechcasting.tereza.2172.torrent
2015-01-19 14:46 - 2015-01-19 15:04 - 217255095 _____ () C:\Users\Jiri\Downloads\Danny D Cumshot Compilation - Pornhubcom.mp4
2015-01-17 20:14 - 2015-01-17 20:14 - 00017431 _____ () C:\Users\Jiri\Downloads\[CzT]Advanced_SystemCare_Ultimate_8_0_1_660_Final_Advanced_System_Care_with_Antivirus_2013_CZ_x86_x64_.torrent
2015-01-17 19:53 - 2015-01-17 19:53 - 00019886 _____ () C:\Users\Jiri\Downloads\[CzT]Hot_Slut_Teen_Young_Girls_Cumshot_Compilation_2015_720p_.torrent
2015-01-17 19:18 - 2015-01-17 19:39 - 99204322 _____ () C:\Users\Jiri\Downloads\Beautiful babe just loves to fuck.flv
2015-01-17 18:45 - 2015-01-25 17:24 - 00001776 _____ () C:\WINDOWS\PFRO.log
2015-01-15 19:14 - 2015-01-25 17:24 - 00001501 _____ () C:\WINDOWS\setupact.log
2015-01-15 19:14 - 2015-01-15 19:14 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-01-15 18:55 - 2015-01-15 18:55 - 00014186 _____ () C:\Users\Jiri\Downloads\[CzT]X_Art_Angelica_Good_Night_Kiss_2015_1080pLQ_.torrent
2015-01-13 19:43 - 2014-12-19 07:26 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-01-13 19:43 - 2014-12-12 03:04 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-01-13 19:43 - 2014-12-12 01:51 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-01-13 19:43 - 2014-12-09 02:50 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-01-13 19:42 - 2014-12-08 20:42 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-01-13 19:42 - 2014-12-08 20:42 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-01-13 19:42 - 2014-12-08 20:42 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-01-13 19:42 - 2014-12-08 20:42 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-01-13 19:42 - 2014-12-08 20:42 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-01-13 19:42 - 2014-12-08 20:42 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-01-13 19:42 - 2014-12-08 20:42 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-01-13 19:42 - 2014-12-08 20:42 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-01-13 19:42 - 2014-12-06 04:17 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-01-13 19:42 - 2014-12-06 02:41 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-01-13 19:42 - 2014-12-06 02:35 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-01-13 19:42 - 2014-10-29 05:00 - 00465320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2015-01-13 19:42 - 2014-10-29 05:00 - 00139984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2015-01-13 19:42 - 2014-10-29 04:52 - 00500016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-01-13 19:42 - 2014-10-29 04:52 - 00482872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-01-13 19:42 - 2014-10-29 04:52 - 00394120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2015-01-13 19:42 - 2014-10-29 04:52 - 00272248 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2015-01-13 19:42 - 2014-10-29 04:12 - 00413136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2015-01-13 19:42 - 2014-10-29 04:12 - 00136296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2015-01-13 19:42 - 2014-10-29 04:07 - 00424544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-01-13 19:42 - 2014-10-29 04:07 - 00370424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-01-13 19:42 - 2014-10-29 04:07 - 00344536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2015-01-13 19:42 - 2014-10-29 03:44 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2015-01-13 19:42 - 2014-10-29 02:59 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2015-01-13 19:42 - 2014-10-29 02:24 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2015-01-13 19:42 - 2014-10-29 02:02 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-01-13 19:42 - 2014-10-29 02:01 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2015-01-11 16:44 - 2015-01-11 16:46 - 00000000 ____D () C:\Program Files (x86)\Total Video Converter
2015-01-11 16:44 - 2015-01-11 16:44 - 00001020 _____ () C:\Users\Jiri\Desktop\Total Video Converter.lnk
2015-01-11 16:44 - 2015-01-11 16:44 - 00000989 _____ () C:\Users\Jiri\Desktop\Total Video Player.lnk
2015-01-11 16:44 - 2015-01-11 16:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Video Converter
2015-01-11 16:44 - 2015-01-11 16:44 - 00000000 ____D () C:\Program Files\Total Video Converter
2015-01-11 16:31 - 2015-01-11 16:31 - 00005817 _____ () C:\Users\Jiri\Downloads\[CzT]Total_Video_Converter_HD_3_70_100621_CZ_a_SK_.torrent
2015-01-11 16:28 - 2015-01-11 16:28 - 00013733 _____ () C:\Users\Jiri\Downloads\[CzT]PublicPickUps_Alexa_Tomas.torrent
2015-01-11 14:57 - 2015-01-25 17:33 - 01311223 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-09 16:43 - 2015-01-09 16:43 - 13078073 _____ () C:\Users\Jiri\Downloads\mms.mp4
2015-01-09 15:02 - 2015-01-09 15:02 - 00000470 _____ () C:\DelFix.txt
2015-01-08 17:14 - 2015-01-08 17:50 - 160316858 _____ () C:\Users\Jiri\Downloads\Not on My Face.flv
2015-01-08 16:04 - 2015-01-08 16:04 - 15312556 _____ () C:\Users\Jiri\Downloads\Cyanide And Happiness - JunkMail Whistle song.mp4
2015-01-06 20:56 - 2015-01-06 20:56 - 00014041 _____ () C:\Users\Jiri\Downloads\[kat.sitescrack.com]brazzers.bigtitsatschool.peta.jensen.peta.pledges.her.cleavage.allegiance.december.08.2014.new.torrent
2015-01-06 20:56 - 2015-01-06 20:56 - 00013402 _____ () C:\Users\Jiri\Downloads\[CzT]Peta_Jensen_Dressed_to_Impressed_1080pLQ_.torrent
2015-01-06 20:55 - 2015-01-06 20:55 - 00049748 _____ () C:\Users\Jiri\Downloads\[kat.sitescrack.com]bigtitsatschool.peta.jensen.peta.pledges.her.cleavage.allegiance.pornleech.mp4.torrent
2015-01-06 20:54 - 2015-01-06 20:54 - 00014591 _____ () C:\Users\Jiri\Downloads\[kat.sitescrack.com]brazzers.pornstarslikeitbig.peta.jensen.i.cum.into.your.home.nov.15.2014.new.torrent
2015-01-05 18:27 - 2015-01-05 18:27 - 00092950 _____ () C:\Users\Jiri\Downloads\[kickass.so]pervsonpatrol.14.11.25.ashley.sinclair.putting.on.a.show.for.a.v.torrent
2015-01-05 18:27 - 2015-01-05 18:27 - 00027124 _____ () C:\Users\Jiri\Downloads\[kickass.so]tonightsgirlfriend.14.12.12.ashley.sinclair.xxx.sd.mp4.rarbg.torrent
2015-01-05 18:27 - 2015-01-05 18:27 - 00021088 _____ () C:\Users\Jiri\Downloads\[kickass.so]babygotboobs.ashley.sinclair.ashleys.big.boob.fuck.gonzo.13.11.14.torrent
2015-01-05 18:27 - 2015-01-05 18:27 - 00020645 _____ () C:\Users\Jiri\Downloads\[kickass.so]naughtyamerica.mydadshotgirlfriend.ashley.sinclair.december.26.2014.new.torrent
2015-01-05 18:27 - 2015-01-05 18:27 - 00018512 _____ () C:\Users\Jiri\Downloads\[kickass.so]mygf.ashley.sinclair.dildo.and.the.blonde.mp4.pornleech.torrent
2015-01-05 18:27 - 2015-01-05 18:27 - 00013993 _____ () C:\Users\Jiri\Downloads\[kickass.so]bigtitsatschool.ashley.sinclair.ripe.to.be.a.pornstar.torrent
2015-01-05 18:27 - 2015-01-05 18:27 - 00011937 _____ () C:\Users\Jiri\Downloads\[kickass.so]i.know.that.girl.ashley.sinclair.brunette.s.pool.hopping.fuck.10.20.2014.mofos.new.october.20.2014.torrent
2015-01-05 18:22 - 2015-01-05 18:22 - 00010998 _____ () C:\Users\Jiri\Downloads\[CzT]PublicPickUps_Alive_Bell_Russian_Nurse_Public_Sex_4_1_2015_.torrent
2015-01-04 16:35 - 2015-01-04 16:35 - 00093568 _____ () C:\Users\Jiri\Downloads\[kickass.so]publicagent.e257.alex.c.xxx.1080p.torrent
2015-01-04 16:32 - 2015-01-04 16:32 - 00001567 _____ () C:\Users\Jiri\Downloads\[CzT]aCalendar_v1_0_2_2014_CZ_Android_.torrent
2015-01-03 17:21 - 2015-01-03 17:21 - 00012625 _____ () C:\Users\Jiri\Downloads\[CzT]Roman_Vanek_Snadno_Rychle_2014_CZ_.torrent
2015-01-03 17:16 - 2015-01-03 17:16 - 00012199 _____ () C:\Users\Jiri\Downloads\[CzT]Medvedi_Bears_2014_CZ_720pHD_.torrent
2014-12-28 17:02 - 2014-12-28 17:02 - 00027898 _____ () C:\Users\Jiri\Downloads\[kickass.so]x.art.amarna.strawberry.morning.new.27.december.2014.new.torrent
2014-12-28 17:02 - 2014-12-28 17:02 - 00018405 _____ () C:\Users\Jiri\Downloads\[kickass.so]czechcasting.zaneta.5112.czechav.new.26.december.2014.new.torrent
2014-12-26 12:02 - 2014-12-26 12:06 - 55490840 _____ () C:\Users\Jiri\Downloads\Existuj 2 piny strachu a zkosti on Vimeo.mp4
2014-12-26 11:58 - 2014-12-26 12:20 - 505046383 _____ () C:\Users\Jiri\Downloads\Evoluce lidskho vdom 2 st on Vimeo.mp4
2014-12-26 11:57 - 2014-12-26 12:20 - 491226309 _____ () C:\Users\Jiri\Downloads\ET - RLV 1 st on Vimeo.mp4

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-25 17:49 - 2013-11-10 12:40 - 00000000 ____D () C:\Users\Jiri\AppData\Roaming\vlc
2015-01-25 17:30 - 2013-11-06 19:14 - 00980668 _____ () C:\WINDOWS\system32\perfh005.dat
2015-01-25 17:30 - 2013-11-06 19:14 - 00230274 _____ () C:\WINDOWS\system32\perfc005.dat
2015-01-25 17:30 - 2013-09-30 05:04 - 02204132 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-25 17:29 - 2013-11-06 19:11 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-983421063-3644458213-3332401588-1001
2015-01-25 17:27 - 2013-03-18 11:17 - 00000000 ____D () C:\ProgramData\WinClon
2015-01-25 17:24 - 2013-11-07 15:32 - 00000000 __RDO () C:\Users\Jiri\SkyDrive
2015-01-25 17:24 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-25 17:23 - 2013-08-22 14:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2015-01-25 17:20 - 2014-06-05 16:24 - 00000000 ____D () C:\Users\Jiri\AppData\Local\Comodo
2015-01-25 17:20 - 2014-06-05 16:24 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2015-01-25 17:20 - 2014-06-05 16:24 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2015-01-25 17:20 - 2014-06-05 16:24 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2015-01-25 17:20 - 2014-06-05 16:24 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2015-01-25 17:20 - 2014-06-05 16:24 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2015-01-25 17:20 - 2014-06-05 16:24 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2015-01-25 17:20 - 2013-11-06 20:06 - 00000000 ____D () C:\Users\Jiri\AppData\Local\Google
2015-01-25 17:19 - 2013-11-07 14:13 - 00000000 ____D () C:\Users\Jiri
2015-01-25 17:19 - 2013-08-22 16:36 - 00000000 ___HD () C:\WINDOWS\system32\GroupPolicy
2015-01-25 17:19 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\GroupPolicy
2015-01-25 17:05 - 2013-11-06 20:07 - 00002205 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-25 17:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-01-25 16:57 - 2014-06-25 19:39 - 00000000 ____D () C:\Program Files\trend micro
2015-01-25 16:54 - 2014-01-08 16:59 - 00000000 ____D () C:\Users\Jiri\Downloads\Darinka
2015-01-25 16:52 - 2014-04-26 18:22 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-25 16:37 - 2013-11-07 21:16 - 01794048 ___SH () C:\Users\Jiri\Downloads\Thumbs.db
2015-01-25 15:06 - 2013-12-12 23:16 - 00000000 ____D () C:\Users\Jiri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-01-25 13:25 - 2013-11-07 16:11 - 00000000 ____D () C:\Users\Jiri\AppData\Roaming\uTorrent
2015-01-25 12:13 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-01-25 11:52 - 2014-04-26 18:22 - 00003802 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-01-25 11:34 - 2013-11-09 00:05 - 00003958 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A3978973-D763-40CD-B67C-4982CE685256}
2015-01-20 13:18 - 2013-11-15 23:00 - 00016896 ___SH () C:\Users\Jiri\Desktop\Thumbs.db
2015-01-19 22:32 - 2013-08-22 16:38 - 00714720 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-01-19 22:32 - 2013-08-22 16:38 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-18 19:04 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-01-18 17:43 - 2013-11-06 21:41 - 00000000 ____D () C:\Users\Jiri\AppData\Local\CrashDumps
2015-01-18 17:09 - 2014-09-21 17:55 - 00002029 _____ () C:\Users\Jiri\Desktop\MyBookLive (192.168.0.100).lnk
2015-01-17 19:48 - 2014-01-07 16:12 - 00002029 _____ () C:\Users\Jiri\Desktop\MyBookLive (192.168.0.101).lnk
2015-01-17 19:37 - 2013-11-06 20:05 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-01-17 19:34 - 2013-11-06 20:05 - 113365784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-01-17 18:46 - 2013-08-22 15:44 - 00645104 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-01-11 20:05 - 2013-11-30 17:27 - 00000000 ____D () C:\Users\Jiri\AppData\Roaming\AIMP3
2015-01-09 19:32 - 2014-08-23 21:22 - 00000000 ____D () C:\Program Files\CCleaner
2015-01-09 19:31 - 2014-08-23 21:22 - 00000834 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-01-09 16:26 - 2013-11-06 19:06 - 00000000 ____D () C:\Users\Jiri\Documents\Bluetooth Folder
2015-01-08 21:03 - 2014-06-05 16:25 - 00000008 __RSH () C:\ProgramData\ntuser.pol

==================== Files in the root of some directories =======

2013-12-27 12:57 - 2014-04-27 00:22 - 0099384 _____ () C:\Users\Jiri\AppData\Roaming\inst.exe
2013-12-27 12:55 - 2014-01-07 16:17 - 0001699 _____ () C:\Users\Jiri\AppData\Roaming\msemhjr.dat
2013-12-27 12:55 - 2014-01-16 19:06 - 0000027 _____ () C:\Users\Jiri\AppData\Roaming\msudbgs.dat
2013-12-27 12:57 - 2014-04-27 00:22 - 0007859 _____ () C:\Users\Jiri\AppData\Roaming\pcouffin.cat
2013-12-27 12:57 - 2014-04-27 00:22 - 0001167 _____ () C:\Users\Jiri\AppData\Roaming\pcouffin.inf
2013-12-27 12:57 - 2014-04-27 00:22 - 0000055 _____ () C:\Users\Jiri\AppData\Roaming\pcouffin.log
2013-12-27 12:57 - 2014-04-27 00:22 - 0082816 _____ (VSO Software) C:\Users\Jiri\AppData\Roaming\pcouffin.sys
2014-03-25 16:32 - 2014-08-30 18:08 - 0037574 _____ () C:\Users\Jiri\AppData\Local\MRDownloader.err
2014-03-22 18:43 - 2014-08-30 19:34 - 0001128 _____ () C:\Users\Jiri\AppData\Local\MRDownloader.nast
2013-11-12 19:46 - 2014-01-30 20:25 - 0007602 _____ () C:\Users\Jiri\AppData\Local\resmon.resmoncfg
2014-05-06 10:24 - 2014-09-09 12:04 - 0001340 _____ () C:\ProgramData\hpzinstall.log
2013-03-18 11:30 - 2013-01-12 15:51 - 0003004 _____ () C:\ProgramData\MakeMarkerFile.xml

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-18 11:17

==================== End Of Log ============================

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  CloseProcesses:
  CreateRestorePoint:
  
  HKU\S-1-5-21-983421063-3644458213-3332401588-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1942720 2015-01-23] (Valve Corporation)
  
  SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  
  2015-01-25 17:50 - 2015-01-25 17:51 - 00018720 _____ () C:\Users\Jiri\Desktop\FRST.txt
  2015-01-25 17:22 - 2015-01-25 17:05 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
  2015-01-25 17:06 - 2015-01-25 17:24 - 00008719 _____ () C:\zoek-results.log
  2015-01-25 17:05 - 2015-01-25 17:20 - 00000000 ____D () C:\zoek_backup
  2015-01-25 17:04 - 2015-01-25 17:05 - 01295360 _____ () C:\Users\Jiri\Desktop\zoek.exe
  2015-01-25 16:59 - 2015-01-25 17:01 - 00000000 ____D () C:\AdwCleaner
  2015-01-25 16:58 - 2015-01-25 16:58 - 02194432 _____ () C:\Users\Jiri\Desktop\adwcleaner_4.109.exe
  2015-01-25 16:51 - 2015-01-25 16:53 - 00000000 ____D () C:\rsit
  2015-01-25 16:49 - 2015-01-25 16:50 - 01222144 _____ () C:\Users\Jiri\Desktop\RSITx64.exe
  
  Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
  
  Hosts:
  EmptyTemp:
  Reboot:
  End
  

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

Ahoj, byl sem mimo ČR služebně, tak přikládam log až nyní
Díky za tvůj čas

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-02-2015
Ran by Jiri at 2015-02-08 11:41:26 Run:1
Running from C:\Users\Jiri\Desktop
Loaded Profiles: Jiri (Available profiles: Jiri & DefaultAppPool)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-983421063-3644458213-3332401588-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1942720 2015-01-23] (Valve Corporation)

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

2015-01-25 17:50 - 2015-01-25 17:51 - 00018720 _____ () C:\Users\Jiri\Desktop\FRST.txt
2015-01-25 17:22 - 2015-01-25 17:05 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2015-01-25 17:06 - 2015-01-25 17:24 - 00008719 _____ () C:\zoek-results.log
2015-01-25 17:05 - 2015-01-25 17:20 - 00000000 ____D () C:\zoek_backup
2015-01-25 17:04 - 2015-01-25 17:05 - 01295360 _____ () C:\Users\Jiri\Desktop\zoek.exe
2015-01-25 16:59 - 2015-01-25 17:01 - 00000000 ____D () C:\AdwCleaner
2015-01-25 16:58 - 2015-01-25 16:58 - 02194432 _____ () C:\Users\Jiri\Desktop\adwcleaner_4.109.exe
2015-01-25 16:51 - 2015-01-25 16:53 - 00000000 ____D () C:\rsit
2015-01-25 16:49 - 2015-01-25 16:50 - 01222144 _____ () C:\Users\Jiri\Desktop\RSITx64.exe

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKU\S-1-5-21-983421063-3644458213-3332401588-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Steam => value deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"C:\Users\Jiri\Desktop\FRST.txt" => File/Directory not found.
C:\WINDOWS\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
"C:\Users\Jiri\Desktop\zoek.exe" => File/Directory not found.
C:\AdwCleaner => Moved successfully.
"C:\Users\Jiri\Desktop\adwcleaner_4.109.exe" => File/Directory not found.
C:\rsit => Moved successfully.
"C:\Users\Jiri\Desktop\RSITx64.exe" => File/Directory not found.
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 563.3 MB temporary data.


The system needed a reboot.

==== End of Fixlog 11:41:45 ====

a ještě poznatek.. přestala mi fungovat videa na youtube či FB přes chrome. Přes FF jdou. Slyším jen zvuk, ale video nevidím.

Zkuste preinstalovat Flash Player a vycistit cache prohlizece

zkusil sem a nic. Odinstalovat a znovu nainstaloval Chrome a stále to stejné - obraz nejde, zvuk ano.
Před tím než sem žádal o pomoc s pomalým prohlížečem videa šla.
Čím to je tedy?

DelFix https://toolslib.net/downloads/finish/2/

• Stahnete a spustte
• Ponechte zatrzitkou pouze u volby Remote disinfection tools
• Kliknete na Run

Stahnete Ccleaner https://www.piriform.com/ccleaner/download/standard
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Napiste ci jsou stale problemy

ahoj, stále stejné. Videa se nepřehrávají i když zvuk v pozadí jde slyšet. Přímo na youtube video, audio někdy jde a někdy to dělá to stejný, že jde jen audio. Jak něco odkazuje na youtube, vimeo.. tak jde jen zvuk. Na FB to tak je, že jsou sdílené videa z youtube, vimeo, ale spousta jich je nahraných přímo na FB a ty vidět nemůžu už vůbec.