FRST zde:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:29-10-2015
Ran by Bary (administrator) on BARY_PC (30-10-2015 22:46:53)
Running from C:\Users\Bary\Desktop
Loaded Profiles: Bary (Available Profiles: Bary & Janyška)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVerMedia) C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
() C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\ehome\ehrecvr.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2461504 2014-09-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2439072 2010-05-24] (VIA)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-17] (Avast Software s.r.o.)
HKLM-x32\...\Run: [NPSStartup] => [X]
HKU\S-1-5-21-2795746050-3627135712-4210470686-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7404312 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-2795746050-3627135712-4210470686-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-2795746050-3627135712-4210470686-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-2795746050-3627135712-4210470686-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [242688 2010-11-20] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-05-17] (Avast Software s.r.o.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVer HID Receiver.lnk [2015-03-09]
ShortcutTarget: AVer HID Receiver.lnk -> C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVerQuick.lnk [2015-03-09]
ShortcutTarget: AVerQuick.lnk -> C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe (AVerMedia TECHNOLOGIES, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2013-08-09]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{CBBAB301-0DCB-4042-A109-0090B32835E6}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{EACCA239-F44C-4AB8-B89B-2F6BBF11AC2C}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2795746050-3627135712-4210470686-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://
www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://
www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2795746050-3627135712-4210470686-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://
www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2795746050-3627135712-4210470686-1000\Software\Microsoft\Internet Explorer\Main,Start Page =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2795746050-3627135712-4210470686-1000 -> {73ED3DC4-6B10-4048-B641-783ABC7DEDA1} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_2
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-09] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-16] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-09] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-16] (Oracle Corporation)
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
FireFox:
========
FF ProfilePath: C:\Users\Bary\AppData\Roaming\Mozilla\Firefox\Profiles\s5blaom8.default
FF SelectedSearchEngine: Seznam
FF Homepage: hxxps://
www.google.cz/?gws_rd=ssl
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-27] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-27] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-16] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-16] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Extension: Advertising Cookie Opt-out - C:\Users\Bary\AppData\Roaming\Mozilla\Firefox\Profiles\s5blaom8.default\Extensions\
optout@google.com.xpi [2013-11-20] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [
wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-10-27] [not signed]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-03-17]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-17]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-05-17] (Avast Software s.r.o.)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4034896 2015-05-17] (Avast Software)
R2 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [360448 2011-08-19] (AVerMedia) [File not signed]
R2 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [403456 2011-04-01] () [File not signed]
R2 AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [167936 2011-10-31] (AVerMedia TECHNOLOGIES, Inc.) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1149760 2014-09-17] (NVIDIA Corporation)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [File not signed]
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1796928 2014-09-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19440960 2014-09-17] (NVIDIA Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [File not signed]
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU Co., LTD.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-05-17] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-05-17] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-05-17] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-05-17] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-05-17] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-06-26] (Avast Software s.r.o.)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-05-17] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-05-17] ()
R3 AVerIT13x; C:\Windows\System32\Drivers\AVerIT13x_x64.sys [198272 2012-12-06] (AVerMedia TECHNOLOGIES, Inc.)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2011-10-24] (Huawei Technologies Co., Ltd.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20288 2014-09-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-05-17] (Avast Software)
S3 MSICDSetup; \??\E:\CDriver64.sys [X]
S3 pccsmcfd; system32\DRIVERS\pccsmcfdx64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-10-30 22:46 - 2015-10-30 22:47 - 00015136 _____ C:\Users\Bary\Desktop\FRST.txt
2015-10-30 22:45 - 2015-10-30 22:46 - 00000000 ____D C:\FRST
2015-10-30 22:39 - 2015-10-30 22:39 - 00112640 _____ (forum.viry.cz) C:\Users\Bary\Desktop\FRSTLauncher.exe
2015-10-30 22:10 - 2015-10-30 22:12 - 02198016 _____ (Farbar) C:\Users\Bary\Desktop\FRST64.exe
2015-10-30 15:15 - 2015-10-30 15:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-10-30 15:15 - 2015-10-30 15:15 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-10-30 15:15 - 2015-10-05 09:50 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-10-30 15:15 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-10-30 15:12 - 2015-10-30 20:28 - 00000000 ____D C:\Users\Bary\Desktop\čištění
2015-10-30 14:59 - 2015-10-30 20:13 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-10-30 14:59 - 2015-10-30 19:59 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-10-30 14:58 - 2015-10-30 19:58 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-10-29 18:12 - 2015-10-29 18:14 - 00000000 ____D C:\AdwCleaner
2015-10-27 22:27 - 2015-10-27 22:27 - 00001108 _____ C:\Windows\PFRO.log
2015-10-27 21:51 - 2015-10-27 21:51 - 00000000 ____D C:\rsit
2015-10-27 20:15 - 2015-10-27 20:15 - 00001163 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-10-27 20:15 - 2015-10-27 20:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-27 20:00 - 2015-10-27 20:01 - 42524680 _____ C:\Users\Bary\Downloads\Firefox Setup 41.0.2 (1).exe
2015-10-27 19:41 - 2015-05-17 17:45 - 00364472 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-10-27 19:39 - 2015-10-30 15:01 - 00002184 _____ C:\Windows\setupact.log
2015-10-27 19:39 - 2015-10-27 19:39 - 00000000 _____ C:\Windows\setuperr.log
2015-10-20 14:28 - 2015-10-20 14:28 - 00002454 _____ C:\Users\Bary\Documents\cc_20151020_152755.reg
2015-10-20 14:15 - 2015-06-26 16:06 - 00442264 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\asw675F.tmp
2015-10-20 14:15 - 2015-05-17 17:45 - 01047320 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\asw53BA.tmp
2015-10-20 14:15 - 2015-05-17 17:45 - 00272248 _____ C:\Windows\system32\Drivers\asw6991.tmp
2015-10-20 14:15 - 2015-05-17 17:45 - 00137288 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\asw6B76.tmp
2015-10-20 14:15 - 2015-05-17 17:45 - 00093528 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\asw58F9.tmp
2015-10-20 14:15 - 2015-05-17 17:45 - 00089944 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\asw600D.tmp
2015-10-20 14:15 - 2015-05-17 17:45 - 00065736 _____ C:\Windows\system32\Drivers\asw629D.tmp
2015-10-20 14:15 - 2015-05-17 17:45 - 00029168 _____ C:\Windows\system32\Drivers\asw5BA8.tmp
2015-10-02 20:19 - 2015-10-02 20:19 - 00000847 _____ C:\Users\Bary\Desktop\GOLF kompl – zástupce.lnk
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-10-30 22:24 - 2009-07-14 05:45 - 00023392 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-10-30 22:24 - 2009-07-14 05:45 - 00023392 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-10-30 22:11 - 2014-09-14 21:55 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-10-30 21:59 - 2014-10-24 12:57 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-30 21:36 - 2014-12-26 08:46 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-10-30 20:27 - 2015-03-09 19:18 - 00000000 ____D C:\Users\Bary\Documents\AVerTV
2015-10-30 16:35 - 2015-03-09 17:27 - 00000000 ____D C:\Users\Bary\AppData\Local\AVerMedia
2015-10-30 14:51 - 2013-08-09 16:53 - 00000000 ____D C:\Users\Bary\Desktop\Nepoužívané odkazy
2015-10-30 14:42 - 2013-08-05 10:48 - 01607628 _____ C:\Windows\WindowsUpdate.log
2015-10-30 14:30 - 2009-07-14 16:18 - 00668640 _____ C:\Windows\system32\perfh005.dat
2015-10-30 14:30 - 2009-07-14 16:18 - 00141300 _____ C:\Windows\system32\perfc005.dat
2015-10-30 14:30 - 2009-07-14 06:13 - 01583642 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-30 14:24 - 2014-10-24 12:57 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-30 14:23 - 2013-08-05 13:28 - 00000000 ____D C:\ProgramData\NVIDIA
2015-10-30 14:23 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-27 21:58 - 2014-08-05 16:59 - 00000000 ____D C:\Program Files\trend micro
2015-10-27 21:37 - 2013-08-05 10:52 - 00000000 ____D C:\Users\Bary\AppData\Local\VirtualStore
2015-10-27 20:38 - 2015-04-10 03:36 - 00000000 ___SD C:\Windows\system32\GWX
2015-10-27 20:38 - 2014-09-13 20:19 - 00000000 ____D C:\Users\Janyška
2015-10-27 20:38 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2015-10-27 20:15 - 2013-08-09 16:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-27 20:11 - 2013-08-08 08:52 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-10-27 20:11 - 2013-08-08 08:52 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-27 20:11 - 2013-08-08 08:52 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-10-27 19:42 - 2015-02-01 23:56 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-10-27 19:41 - 2013-08-05 10:52 - 00000000 ____D C:\Users\Bary
2015-10-20 15:12 - 2013-08-08 08:52 - 00000000 ____D C:\Windows\system32\Macromed
2015-10-20 15:11 - 2015-07-04 17:43 - 00000000 ____D C:\Users\Bary\AppData\Roaming\MyPhoneExplorer
2015-10-20 15:11 - 2015-02-01 23:18 - 00000000 __SHD C:\Users\Bary\AppData\LocalLow\EmieBrowserModeList
2015-10-20 15:11 - 2014-08-24 17:03 - 00000000 __SHD C:\Users\Bary\AppData\LocalLow\EmieUserList
2015-10-20 15:10 - 2015-02-01 23:18 - 00000000 __SHD C:\Users\Bary\AppData\Local\EmieBrowserModeList
2015-10-20 15:10 - 2014-08-01 18:16 - 00000000 __SHD C:\Users\Bary\AppData\Local\EmieUserList
2015-10-20 15:10 - 2014-08-01 18:16 - 00000000 __SHD C:\Users\Bary\AppData\Local\EmieSiteList
2015-10-20 15:10 - 2014-05-30 20:11 - 00000000 __SHD C:\Users\Bary\AppData\LocalLow\EmieSiteList
2015-10-20 14:17 - 2015-07-31 18:00 - 00000241 _____ C:\Users\Bary\Desktop\odkazy.txt
2015-10-16 15:57 - 2015-09-12 06:37 - 00000000 ____D C:\Users\Bary\Desktop\Ke zpracování
2015-10-16 15:10 - 2014-07-04 17:23 - 00000000 ____D C:\Users\Bary\Desktop\Jízdní řády
2015-10-14 21:04 - 2013-08-08 09:45 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
==================== Files in the root of some directories =======
2013-08-10 05:38 - 2014-03-15 11:45 - 0005632 _____ () C:\Users\Bary\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-17 06:43 - 2014-11-17 06:43 - 0000017 _____ () C:\Users\Bary\AppData\Local\resmon.resmoncfg
2013-08-09 10:34 - 2013-08-09 16:35 - 0002396 _____ () C:\ProgramData\hpzinstall.log
Some files in TEMP:
====================
C:\Users\Bary\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-10-21 21:59
==================== End of FRST.txt ============================
Addition zde:
Additional scan result of Farbar Recovery Scan Tool (x64) Version:29-10-2015
Ran by Bary (2015-10-30 22:47:24)
Running from C:\Users\Bary\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2013-08-05 09:52:33)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2795746050-3627135712-4210470686-500 - Administrator - Disabled)
Bary (S-1-5-21-2795746050-3627135712-4210470686-1000 - Administrator - Enabled) => C:\Users\Bary
Guest (S-1-5-21-2795746050-3627135712-4210470686-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2795746050-3627135712-4210470686-1005 - Limited - Enabled)
Janyška (S-1-5-21-2795746050-3627135712-4210470686-1003 - Limited - Enabled) => C:\Users\Janyška
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
2007 Microsoft Office system (HKLM-x32\...\PROHYBRIDR) (Version: 12.0.6612.1000 - Microsoft Corporation)
64 Bit HP CIO Components Installer (Version: 6.2.1 - Hewlett-Packard) Hidden
7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov)
Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
Aktualizace NVIDIA 16.13.42 (Version: 16.13.42 - NVIDIA Corporation) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_PROHYBRIDR_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_PROHYBRIDR_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_PROHYBRIDR_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
AVerMedia A835 USB DVB-T 2.3.64.28 (HKLM-x32\...\AVerMedia A835 USB DVB-T) (Version: 2.3.64.28 - AVerMedia TECHNOLOGIES, Inc.)
AVerTV 3D (HKLM-x32\...\InstallShield_{5016185F-05AF-455F-AA70-6B6E5D6D4E70}) (Version: 6.5.2.26 - AVerMedia Technologies, Inc.)
AVerTV 3D (x32 Version: 6.5.2.26 - AVerMedia Technologies, Inc.) Hidden
Avidemux 2.5 (HKLM-x32\...\Avidemux 2.5 (64-bit)) (Version: 2.5.6.7716 - )
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
Copy (x32 Version: 130.0.428.000 - Hewlett-Packard) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.465.000 - Hewlett-Packard) Hidden
DJ_AIO_03_F4200_Software_Min (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
EPC (HKLM-x32\...\{A178B2C6-4062-11D6-90AA-00001CDD353B}) (Version: - )
EPU-4 Engine (HKLM-x32\...\{8F66047B-1AF3-40D9-80D7-106E2EDC2C2A}) (Version: 1.02.01 - )
F4200 (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
FormatFactory 3.0.1 (HKLM-x32\...\FormatFactory) (Version: 3.0.1 - Free Time)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Handset WinDriver 1.02.03.00 (HKLM-x32\...\Handset WinDriver) (Version: 1.02.03.00 - Huawei technologies Co., Ltd.)
HP Deskjet F4200 All-In-One Driver Software 13.0 Rel. 3 (HKLM\...\{A00C9114-40E6-4C70-A619-7DF264B23485}) (Version: 13.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HPPhotoGadget (x32 Version: 130.0.282.000 - Hewlett-Packard) Hidden
IL-2 Sturmovik 1946 (HKLM-x32\...\InstallShield_{758AF648-0B6C-4593-BDF1-9BF4CB50A359}) (Version: 1.00.0000 - Název společnosti:)
IL-2 Sturmovik 1946 (x32 Version: 1.00.0000 - Název společnosti:) Hidden
Java 7 Update 80 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217080FF}) (Version: 7.0.800 - Oracle)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0405-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works 6-9 Converter (HKLM-x32\...\{95140000-0137-0405-0000-0000000FF1CE}) (Version: 14.0.6120.5002 - Microsoft Corporation)
Mozilla Firefox 41.0.2 (x86 cs) (HKLM-x32\...\Mozilla Firefox 41.0.2 (x86 cs)) (Version: 41.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.2 - Mozilla)
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger)
NVIDIA GeForce Experience 2.1.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.2 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.52 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.52 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Overwolf.Setup.VC100CRTx64.Dist (HKLM\...\{EC9D5554-6852-4A55-81BB-AC02C7A8CFED}) (Version: 1.0.0 - Overwolf)
Ovládací panel NVIDIA 347.52 (Version: 347.52 - NVIDIA Corporation) Hidden
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.1 - pdfforge)
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0009 - Realtek)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.51.0 - SAMSUNG Electronics Co., Ltd.)
Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
SHIELD Streaming (Version: 3.1.200 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.42 - NVIDIA Corporation) Hidden
Status (x32 Version: 130.0.469.000 - Hewlett-Packard) Hidden
TeamSpeak 2 RC2 (HKLM-x32\...\Teamspeak 2 RC2_is1) (Version: 2.0.32.60 - Dominating Bytes Design)
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
TrayApp (x32 Version: 130.0.422.000 - Hewlett-Packard) Hidden
UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Restore Points =========================
27-10-2015 19:40:34 avast! antivirus system restore point
27-10-2015 20:03:05 Revo Uninstaller's restore point - Mozilla Firefox 41.0.1 (x86 cs)
27-10-2015 20:04:18 Revo Uninstaller's restore point - Mozilla Firefox 41.0.1 (x86 cs)
28-10-2015 05:55:39 Windows Update
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2015-02-08 10:54 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {18FC0464-6D2F-49E7-A3BB-FAC4A4BC7F6F} - System32\Tasks\{2845AEEE-55F0-42E1-AE78-3F2666B4DA6A} => pcalua.exe -a C:\Users\Bary\Desktop\TeamSpeak3-cestina-0.1.-beta2.exe -d C:\Users\Bary\Desktop
Task: {1B41D6C2-9143-4ECB-B40A-260D85583C84} - System32\Tasks\{E00FD4D2-71A6-4338-BFB0-0334D4E89682} => C:\Program Files (x86)\MOBIS\EPC\EPC.EXE [2002-03-26] (Kia)
Task: {1B64DBAB-6D07-49BC-8FC9-FF43DA2A78B3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd)
Task: {2C88A6EE-8742-4389-8BA5-D02CB20A3644} - System32\Tasks\{517F46C9-1DB9-457A-BCD4-0379E6F048CE} => pcalua.exe -a C:\Users\Bary\Desktop\hijackthis.exe -d C:\Users\Bary\Desktop
Task: {35E24E52-4CE0-4FDF-99C5-10F044EBB609} - System32\Tasks\{CD06D807-AE64-4938-B469-39C0740648E0} => pcalua.exe -a E:\Imgedit_register\imgedit_register.exe -d E:\Imgedit_register
Task: {375808D1-61F8-40AC-8D01-FDE0EDDB35D9} - System32\Tasks\{BECF5D7E-6443-41A3-A71D-ED9617D5A7F5} => D:\Letecké simulátory\Záloha Sturm verze 4.10.m\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe [2006-12-22] ()
Task: {3BAAE5C6-6A3B-421C-B36B-5E26CF9559BE} - System32\Tasks\{57D5A4E6-48A2-45DB-8869-E43C2D88299B} => D:\Letecké simulátory\Záloha Sturm verze 4.10.m\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe [2006-12-22] ()
Task: {3C5F28FA-8407-4CEA-85CF-AA0BB182C4C1} - System32\Tasks\{CBAF77AF-EEA0-4FFF-87AA-728D6357D261} => pcalua.exe -a "C:\Users\Bary\Desktop\Nepoužívané odkazy\hijackthis.exe" -d "C:\Users\Bary\Desktop\Nepoužívané odkazy"
Task: {5042989E-4220-49EA-BD6F-ABEB6B455A50} - System32\Tasks\{CC15A69B-79E8-4CAF-8E73-DFA52EEA5669} => C:\Program Files (x86)\MOBIS\EPC\EPC.EXE [2002-03-26] (Kia)
Task: {57B2311F-6883-4767-B91C-F0A8905BDDD3} - System32\Tasks\{874BF787-0EE1-4E41-95D1-35D568E9AE09} => D:\Letecké simulátory\Záloha Sturm verze 4.10.m\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe [2006-12-22] ()
Task: {63061030-61E1-4611-8DBF-168AB7E2A58D} - System32\Tasks\{A45FDD5C-7C34-41FA-A573-4658064B61FA} => pcalua.exe -a "D:\Letecké simulátory\Záloha Sturm verze 4.10.m\Ubisoft\IL-2 Sturmovik 1946\il2set.exe" -d "D:\Letecké simulátory\Záloha Sturm verze 4.10.m\Ubisoft\IL-2 Sturmovik 1946"
Task: {6E1B96B0-8C4D-40BC-8F5F-E570F08A319F} - System32\Tasks\{008B9013-DD8F-4354-8904-819202313EAF} => C:\Program Files (x86)\MOBIS\EPC\EPC.EXE [2002-03-26] (Kia)
Task: {71AB8972-AE48-4CA3-A8D3-1BA539BE7651} - System32\Tasks\{6AA46206-7638-4FEB-B093-9902E48FCB9D} => D:\Letecké simulátory\Záloha Sturm verze 4.10.m\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe [2006-12-22] ()
Task: {72B2EBEF-8B54-411E-9561-35C4A795C186} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {7C35BEB9-3A15-49A8-A9DF-0A983719A143} - System32\Tasks\{53E4FFB5-3C4C-442E-B1E8-CCBB0AAA971E} => D:\Letecké simulátory\Záloha Sturm verze 4.10.m\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe [2006-12-22] ()
Task: {8E1DC3DF-7760-49CA-975A-BBD87096C39D} - System32\Tasks\{9DD90A62-9A6D-41F1-81CE-6C682D53D3D4} => pcalua.exe -a C:\Users\Bary\Desktop\domaci-nasili-game-over_1.0.exe -d C:\Users\Bary\Desktop
Task: {99F8B248-7FE3-49CD-AC46-489A5CCCB229} - System32\Tasks\{9E3CB33E-79F8-44A4-B1B0-BB60A2C7CBFD} => D:\Letecké simulátory\Záloha Sturm verze 4.10.m\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe [2006-12-22] ()
Task: {9F7125AE-3538-4FA5-94A6-8C6327AE9682} - System32\Tasks\{036500E8-1600-43A6-8FF9-03475C575097} => D:\Letecké simulátory\Záloha Sturm verze 4.10.m\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe [2006-12-22] ()
Task: {ABBFBCEE-8510-41BE-ADB3-CD75BD54594C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {B83ACE1A-F370-4542-8125-7304EF1624AA} - System32\Tasks\ASUS\ASUS SIX Engine => C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe [2010-02-03] (ASUSTeK Computer Inc.)
Task: {CA145E90-35DD-40B4-B522-D84058471092} - System32\Tasks\{A7AE4564-AF92-49D8-9A67-8E1C71031FCF} => D:\Nový sturmovik\il2fb.exe [2006-12-22] ()
Task: {D2A7502F-22B9-4836-B5D9-655E519847C8} - System32\Tasks\{B63C4FF3-8DCC-40C5-8A31-4AC577D78CD5} => D:\Letecké simulátory\Záloha Sturm verze 4.10.m\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe [2006-12-22] ()
Task: {D41F214E-2133-49C5-ACED-82386612A951} - System32\Tasks\{F43B9E8C-93CB-4900-9F8A-4EF97F3E26C6} => D:\Letecké simulátory\Záloha Sturm verze 4.10.m\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe [2006-12-22] ()
Task: {DB2DF3E6-C4A4-40EB-B305-8DB381371498} - System32\Tasks\{DE5535DF-D6B3-4103-8B6E-C0402D1C36E5} => C:\Users\Bary\Desktop\InstalDrv_A835_Win7_x64_V8.0.64.70_140114.exe
Task: {DE2B9245-FD25-41C6-84CA-F3CB69B2D851} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-10-27] (Avast Software s.r.o.)
Task: {E25D252C-F901-4ADB-85AB-E1FE39D1F35E} - System32\Tasks\{1864F62E-8873-40B2-98F0-1F49230836DA} => pcalua.exe -a C:\Users\Bary\Desktop\TeamSpeak3-cestina-0.2.-beta2_by_hernihosting.cz\TeamSpeak3-cestina-0.1.-beta2.exe -d C:\Users\Bary\Desktop\TeamSpeak3-cestina-0.2.-beta2_by_hernihosting.cz
Task: {E3BA1AA2-7F24-459A-85FA-19D176DD4CF1} - System32\Tasks\{1B9C4DC8-E7A0-4700-AB83-E0BFB34231B0} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\unins000.exe
Task: {E5BC4CCB-BF88-4D31-B6EF-B26AE2A51A10} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-27] (Adobe Systems Incorporated)
Task: {EC1DD72C-9FEB-40AC-ADA7-0FB27E7056F3} - System32\Tasks\{9CCBD2BD-B9B8-432C-9CE1-394349DFA5AC} => D:\Nový sturmovik\il2fb.exe [2006-12-22] ()
Task: {F51C5ADE-8D91-4FC8-AA6D-68BE2A57F645} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2013-08-05 14:54 - 2015-02-05 20:07 - 00117576 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-03-09 17:25 - 2011-04-01 07:52 - 00403456 ____R () C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
2015-03-09 17:25 - 2012-10-17 08:24 - 00163840 ____R () C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
2013-08-05 11:13 - 2010-05-24 10:10 - 00076192 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2013-08-05 11:13 - 2010-05-24 10:10 - 00383904 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2013-08-05 11:13 - 2010-05-24 10:10 - 00103328 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\VMicApi.dll
2013-08-05 11:13 - 2010-05-24 10:10 - 64641440 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll
2015-01-21 03:06 - 2015-01-21 03:06 - 00053248 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2015-05-17 17:45 - 2015-05-17 17:45 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-05-17 17:45 - 2015-05-17 17:45 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-10-30 04:37 - 2015-10-30 04:37 - 03014096 _____ () C:\Program Files\AVAST Software\Avast\defs\15102902\algo.dll
2015-10-30 14:24 - 2015-10-30 14:24 - 03014096 _____ () C:\Program Files\AVAST Software\Avast\defs\15103000\algo.dll
2015-03-09 20:34 - 2012-06-09 18:33 - 00053248 _____ () C:\Program Files (x86)\Common Files\AVerMedia\dll\MsgLog.DLL
2013-08-05 11:40 - 2009-03-19 21:35 - 00208896 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\AiNap.dll
2013-08-05 11:40 - 2009-03-19 21:35 - 00008704 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\vvc.dll
2013-08-05 11:40 - 2009-01-15 13:55 - 00565248 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\pngio.dll
2013-08-05 11:40 - 2009-03-25 15:53 - 00053248 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\AsSpindownTimeout.dll
2015-03-17 11:10 - 2015-03-17 11:10 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2795746050-3627135712-4210470686-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Bary\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{9FCB0EC0-3442-40EA-927B-49FC4AEAF2AC}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{26E45136-D7F7-47B6-9FF7-6B7A24FF0174}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{4608F19E-0863-4DBD-8B6C-61069A2857F3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{E698442C-6049-497E-BF9B-8E22754BAD7E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{1869D280-4EBD-4994-8E79-D71E5EFF4B11}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{079ADBD4-7E71-42B7-BBFD-5E1EF81D55C2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{4D06028D-EF76-45B6-8619-1DE55F62B47D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{8516E130-D06F-4F93-9012-FBCF655D7A70}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{2A126655-28DF-4D1E-BDCA-983690106FC2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{9E5FD1D6-782E-434A-B3EA-34A53A154C90}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{BEC78198-9F83-4EB2-8FEC-1E18C0FDB335}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{1379E2D8-9D73-4965-88FB-9AF9CD6150CF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C2A1352F-45A2-4E28-A9E3-797CBE66C81C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{183DBC3D-BE23-45EB-9DD4-E58682049648}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{52160D41-B2B5-4C9C-8EF7-9CD747F5582E}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{5291A1F9-8758-4BF2-8794-A8E967F88FFC}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{EE435E08-3D03-426C-8228-0CADAFC61E46}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{F4804431-1654-488B-A8A9-3FC92F470318}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe
FirewallRules: [UDP Query User{1B6A19CF-9309-4514-9E41-90A1A5E29A70}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe
==================== Faulty Device Manager Devices =============
Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (10/27/2015 09:56:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program RSITx64.exe verze 0.0.0.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: e30
Čas spuštění: 01d110f93ef51268
Čas ukončení: 16
Cesta k aplikaci: C:\Users\Bary\Desktop\RSITx64.exe
ID hlášení:
Error: (10/27/2015 08:30:40 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program setup.exe verze 1.0.0.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 10d8
Čas spuštění: 01d110ebd9ddf0dc
Čas ukončení: 16
Cesta k aplikaci: C:\Users\Bary\AppData\Local\Temp\7zSC16B.tmp\setup.exe
ID hlášení:
Error: (10/20/2015 03:26:52 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Index nebyl inicializován.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (10/20/2015 03:26:52 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.
Kontext: aplikace Windows
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (10/20/2015 03:26:52 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt indexování nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (10/20/2015 03:26:52 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)
Error: (10/20/2015 03:26:51 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.JetPropStore> nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (10/20/2015 03:26:51 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Služba Windows Search nenačetla informace o úložišti vlastností.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Databáze indexu obsahu je poškozená. (HRESULT : 0xc0041800) (0xc0041800)
Error: (10/20/2015 03:26:51 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Služba Windows Search byla zastavena, protože došlo k problému s indexovacím modulem The catalog is corrupt.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (10/20/2015 03:26:51 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: Vyhledávací služby zjistila, že index {id=4700} obsahuje poškozené datové soubory. Služba se pokusí tyto potíže automaticky odstranit vytvořením nového indexu.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
System errors:
=============
Error: (10/29/2015 06:14:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error: (10/29/2015 06:14:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error: (10/29/2015 06:14:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba SAMSUNG Mobile Connectivity Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/29/2015 06:14:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA Streamer Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/29/2015 06:14:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA Network Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/29/2015 06:14:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA GeForce Experience Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/29/2015 06:14:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AVerUpdateServer byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/29/2015 06:14:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AVerScheduleService byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/29/2015 06:14:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AVerRemote byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/29/2015 06:14:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
CodeIntegrity:
===================================
Date: 2015-02-08 10:53:49.812
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-02-08 10:53:49.734
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3 CPU 550 @ 3.20GHz
Percentage of memory in use: 51%
Total physical RAM: 4087.05 MB
Available physical RAM: 1987.21 MB
Total Virtual: 8172.32 MB
Available Virtual: 5945.2 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:175.68 GB) (Free:69.71 GB) NTFS
Drive d: (DATA) (Fixed) (Total:755.73 GB) (Free:410.06 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: F2CE75AB)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=175.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=755.7 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Je to dobře,doufám... S62
V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).
Díky za ochotu. Zdraví S62
