Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:31-12-2015
Ran by honza (administrator) on MARTIN (02-01-2016 21:53:21)
Running from C:\Users\honza\Desktop
Loaded Profiles: honza (Available Profiles: honza & Guest)
Platform: Windows 7 Home Premium (X64) Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Macrovision Corporation) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2015-12-06] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_19_0_0_245_pepper.exe [1158856 2015-12-02] (Adobe Systems Incorporated)
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e162d644-151a-11e5-b93d-ec55f9e929bb} - E:\setup.exe
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e162d647-151a-11e5-b93d-ec55f9e929bb} - G:\m.exe
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e17b9178-a0e5-11e4-a51d-ec55f9e929bb} - J:\HiSuiteDownLoader.exe
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - %SystemRoot%\system32\wpdshserviceobj.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-12-06] (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{25559BA7-6EF9-45A1-8A74-5DE0661ACE12}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{A3BBF46B-A159-4BF4-B070-5D52FC44EA02}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{A54718C9-FD98-4D35-9BC5-17E8F314811B}: [DhcpNameServer] 192.168.100.254
Tcpip\..\Interfaces\{D814BF20-A917-41A7-BDAA-43E59F9CD8E7}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{FCCB9CFF-7B76-46F5-A504-F6C1EE5BE0D5}: [DhcpNameServer] 192.168.43.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-866132977-3524765048-2583430549-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-18] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-18] (AVAST Software)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
FireFox:
========
FF ProfilePath: C:\Users\honza\AppData\Roaming\Mozilla\Firefox\Profiles\wh42cenw.default
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2016-01-02] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-09-19] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2016-01-02] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1222172.dll [2015-11-19] (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-09-19] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-866132977-3524765048-2583430549-1000: @tools.google.com/Google Update;version=3 -> C:\Users\honza\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll [2013-12-07] (Google Inc.)
FF Plugin HKU\S-1-5-21-866132977-3524765048-2583430549-1000: @tools.google.com/Google Update;version=9 -> C:\Users\honza\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll [2013-12-07] (Google Inc.)
FF Plugin HKU\S-1-5-21-866132977-3524765048-2583430549-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [No File]
FF user.js: detected! => C:\Users\honza\AppData\Roaming\Mozilla\Firefox\Profiles\wh42cenw.default\user.js [2015-12-07]
FF Extension: Money Viking - C:\Users\honza\AppData\Roaming\Mozilla\Firefox\Profiles\wh42cenw.default\Extensions\{8ef52718-ef02-42dc-991a-dd0e9f7bbf20}.xpi [2015-12-06] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-06]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-12-06]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-08]
CHR Extension: (Dokumenty Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-09]
CHR Extension: (Disk Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Vyhledávání Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Tabulky Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-08]
CHR Extension: (Dokumenty Google offline) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-17]
CHR Extension: (Avast Online Security) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-31]
CHR Extension: (Gmail) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-09]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-18]
StartMenuInternet: Google Chrome.B25RZPGWCXT6AHLMJWE2AJ4DJU - C:\Users\Guest\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2015-12-06] (AVAST Software)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1272560 2015-05-21] (Disc Soft Ltd)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2056376 2015-11-20] (Comodo)
R2 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S3 ssinstall; C:\Windows\SysWOW64\ssins.exe [2317848 2013-03-03] ()
R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [851824 2010-06-17] (Sony Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
S3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [X]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-12-06] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-12-19] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-12-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-12-06] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1055560 2015-12-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [451040 2015-12-19] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2015-12-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-12-06] (AVAST Software)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-06-17] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [10326784 2010-06-24] (Intel Corporation) [File not signed]
S3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [271872 2010-06-24] (Intel(R) Corporation) [File not signed]
S3 massfilter_hs; C:\Windows\System32\drivers\massfilter_hs.sys [18456 2011-03-07] (HandSet Incorporated)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S4 sfdrv01; C:\Windows\System32\drivers\sfdrv01.sys [69120 2006-03-26] (Protection Technology (StarForce)) [File not signed]
S4 sfhlp02; C:\Windows\System32\drivers\sfhlp02.sys [7168 2006-03-13] (Protection Technology (StarForce)) [File not signed]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 NLNdisMP; system32\DRIVERS\nlndis.sys [X]
S3 NLNdisPT; system32\DRIVERS\nlndis.sys [X]
U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
S3 vserial; System32\DRIVERS\vserial.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\BatteryCare\WinRing0x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-01-02 21:53 - 2016-01-02 21:53 - 00016928 ____C C:\Users\honza\Desktop\FRST.txt
2016-01-02 21:53 - 2016-01-02 21:53 - 00000000 ___DC C:\FRST
2016-01-02 21:48 - 2016-01-02 21:48 - 02370560 ____C (Farbar) C:\Users\honza\Desktop\FRST64.exe
2016-01-02 15:32 - 2016-01-02 15:35 - 00000000 ___DC C:\Users\honza\Downloads\série 5 (7.ep)
2016-01-02 15:21 - 2016-01-02 16:09 - 00000000 ___DC C:\Users\honza\Downloads\Ancient Discoveries serie 1
2016-01-02 14:35 - 2016-01-02 14:36 - 00000000 ___DC C:\Users\honza\Downloads\Na ostrově s Bearem Gryllsem 1. Séria
2016-01-02 13:27 - 2016-01-02 13:29 - 00000000 ___DC C:\Users\honza\Downloads\The Martian 2015 720p BluRay x264-88keyz
2016-01-02 13:12 - 2016-01-02 21:32 - 00000914 ____C C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-01-02 13:12 - 2016-01-02 13:13 - 00003852 ____C C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-12-28 14:46 - 2015-12-28 14:46 - 00121680 ____C C:\Users\honza\AppData\Local\GDIPFONTCACHEV1.DAT
2015-12-17 12:44 - 2015-12-17 12:45 - 00461784 ____C C:\Windows\system32\FNTCACHE.DAT
2015-12-07 14:04 - 2015-12-07 14:04 - 00000000 ___DC C:\Users\honza\AppData\Roaming\MAGIX
2015-12-07 14:04 - 2015-12-07 14:04 - 00000000 ___DC C:\ProgramData\MAGIX
2015-12-07 14:00 - 2015-12-07 14:05 - 00000000 ___DC C:\ProgramData\simplitec
2015-12-07 14:00 - 2015-05-06 16:54 - 00120200 ____C () C:\Windows\SysWOW64\DLLDEV32i.dll
2015-12-07 13:47 - 2015-12-07 13:47 - 00000000 ___DC C:\ProgramData\12bfc3a0-7ee7-1
2015-12-07 13:47 - 2015-12-07 13:47 - 00000000 ___DC C:\ProgramData\12bfc3a0-6997-0
2015-12-06 12:45 - 2015-12-06 12:45 - 00386096 ____C (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-12-06 12:45 - 2015-12-06 12:45 - 00043112 ____C (AVAST Software) C:\Windows\avastSS.scr
2015-12-04 14:37 - 2015-12-04 14:37 - 00000000 ___DC C:\Windows\System32\Tasks\AVAST Software
2015-12-04 14:37 - 2015-12-04 14:37 - 00000000 ___DC C:\Program Files\Common Files\AV
2015-12-03 14:59 - 2015-12-03 14:59 - 00000000 ___DC C:\Users\honza\AppData\Local\CEF
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-01-02 21:53 - 2009-07-14 04:20 - 00000000 ___DC C:\Windows
2016-01-02 21:44 - 2013-10-12 07:20 - 00000952 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-02 21:19 - 2015-10-15 09:51 - 00000958 ____C C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-01-02 19:09 - 2009-07-14 05:45 - 00015984 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-01-02 19:09 - 2009-07-14 05:45 - 00015984 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-01-02 19:06 - 2010-10-14 21:36 - 00667902 ____C C:\Windows\system32\perfh005.dat
2016-01-02 19:06 - 2010-10-14 21:36 - 00141048 ____C C:\Windows\system32\perfc005.dat
2016-01-02 19:06 - 2009-07-14 06:13 - 01581054 ____C C:\Windows\system32\PerfStringBackup.INI
2016-01-02 19:06 - 2009-07-14 04:20 - 00000000 ___DC C:\Windows\inf
2016-01-02 19:05 - 2013-01-22 14:16 - 00000000 __RDC C:\Users\honza\Desktop\Nová složka
2016-01-02 19:02 - 2013-10-12 07:20 - 00000948 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-02 19:02 - 2009-07-14 06:08 - 00000006 ___HC C:\Windows\Tasks\SA.DAT
2016-01-02 19:01 - 2013-03-15 03:04 - 00000000 ___DC C:\Program Files\Microsoft Silverlight
2016-01-02 19:01 - 2013-03-15 03:04 - 00000000 ___DC C:\Program Files (x86)\Microsoft Silverlight
2016-01-02 17:26 - 2013-05-30 23:42 - 00000000 ___DC C:\Users\honza\AppData\Roaming\uTorrent
2016-01-02 14:36 - 2013-01-30 15:22 - 00000000 ___DC C:\Users\honza\AppData\Roaming\vlc
2016-01-02 13:22 - 2013-03-15 03:06 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-01-02 13:21 - 2013-07-15 02:01 - 00000000 ___DC C:\Windows\system32\MRT
2016-01-02 13:13 - 2013-03-02 03:37 - 00796864 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-01-02 13:13 - 2012-01-25 11:21 - 00142528 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-02 13:10 - 2011-10-25 00:52 - 140158008 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-12-27 14:09 - 2013-11-13 00:19 - 00004182 ____C C:\Windows\System32\Tasks\avast! Emergency Update
2015-12-21 18:08 - 2015-05-12 13:00 - 00000000 ___DC C:\Users\honza\AppData\Local\CrashDumps
2015-12-19 08:55 - 2013-11-27 14:16 - 00451040 ____C (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2015-12-19 08:55 - 2013-11-27 14:16 - 00097648 ____C (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2015-12-14 20:46 - 2015-07-07 02:36 - 00000000 ___DC C:\Users\honza\AppData\Roaming\Media Player Classic
2015-12-07 14:00 - 2015-09-23 13:10 - 00000000 ___DC C:\ProgramData\Package Cache
2015-12-06 19:35 - 2015-01-27 07:40 - 00000000 ___DC C:\Users\honza\knihovna
2015-12-06 12:45 - 2014-04-26 20:47 - 00028656 ____C (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2015-12-06 12:45 - 2013-12-26 20:56 - 00155304 ____C (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-12-06 12:45 - 2013-11-27 14:16 - 01055560 ____C (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2015-12-06 12:45 - 2013-11-27 14:16 - 00273784 ____C (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2015-12-06 12:45 - 2013-11-27 14:16 - 00065224 ____C (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2015-12-06 12:45 - 2013-11-27 14:15 - 00093528 ____C (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-12-06 12:39 - 2011-09-16 23:42 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-06 12:39 - 2011-09-16 23:42 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-04 22:28 - 2012-11-13 15:44 - 00000000 ___DC C:\Hry
2015-12-03 15:06 - 2015-11-01 18:11 - 00002441 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-12-03 14:59 - 2014-07-09 09:59 - 00000000 ___DC C:\Users\honza\AppData\Local\Adobe
==================== Files in the root of some directories =======
2002-08-29 18:33 - 2002-08-29 18:33 - 0319488 ___RC () C:\Users\honza\AppData\Roaming\MafiaSetup.exe
2013-12-12 23:47 - 2013-12-12 23:48 - 0039073 ____C () C:\Users\honza\AppData\Local\Perfmon.PerfmonCfg
2013-11-27 23:06 - 2013-11-27 23:06 - 0007668 ____C () C:\Users\honza\AppData\Local\Resmon.ResmonCfg
2015-06-01 18:25 - 2015-06-01 18:25 - 0000000 ____C () C:\Users\honza\AppData\Local\{2136A391-B028-47DF-A112-8FCA991D85B2}
2013-09-06 22:07 - 2013-09-06 22:07 - 0030621 ____C () C:\ProgramData\1378501603.bdinstall.bin
2013-09-06 22:08 - 2013-09-06 22:08 - 0029600 ____C () C:\ProgramData\1378501699.1000.bin
2013-09-06 22:08 - 2013-09-06 22:08 - 0000798 ____C () C:\ProgramData\1378501699.2376.bin
2013-09-06 22:08 - 2013-09-06 22:08 - 0002052 ____C () C:\ProgramData\1378501699.4508.bin
2013-09-06 22:10 - 2013-09-06 22:10 - 0030489 ____C () C:\ProgramData\1378501837.bdinstall.bin
2013-09-06 22:19 - 2013-09-06 22:19 - 0195664 ____C () C:\ProgramData\1378502170.bdinstall.bin
2013-10-07 09:58 - 2013-10-07 09:58 - 0022988 ____C () C:\ProgramData\1381136314.bdinstall.bin
2013-10-07 10:01 - 2013-10-07 10:01 - 0079615 ____C () C:\ProgramData\1381136320.bdinstall.bin
2013-11-02 13:49 - 2013-11-02 13:49 - 0229590 ____C () C:\ProgramData\1383396454.bdinstall.bin
2013-11-02 13:53 - 2013-11-02 13:53 - 0037592 ____C () C:\ProgramData\1383396818.bdinstall.bin
2013-11-02 14:14 - 2013-11-02 14:14 - 0174510 ____C () C:\ProgramData\1383396823.bdinstall.bin
2013-11-02 14:37 - 2013-11-02 14:37 - 0037842 ____C () C:\ProgramData\1383399436.bdinstall.bin
2013-11-02 14:38 - 2013-11-02 14:38 - 0095257 ____C () C:\ProgramData\1383399441.bdinstall.bin
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-01-02 15:50
==================== End of FRST.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:31-12-2015
Ran by honza (administrator) on MARTIN (02-01-2016 21:53:21)
Running from C:\Users\honza\Desktop
Loaded Profiles: honza (Available Profiles: honza & Guest)
Platform: Windows 7 Home Premium (X64) Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Macrovision Corporation) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2015-12-06] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_19_0_0_245_pepper.exe [1158856 2015-12-02] (Adobe Systems Incorporated)
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e162d644-151a-11e5-b93d-ec55f9e929bb} - E:\setup.exe
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e162d647-151a-11e5-b93d-ec55f9e929bb} - G:\m.exe
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e17b9178-a0e5-11e4-a51d-ec55f9e929bb} - J:\HiSuiteDownLoader.exe
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - %SystemRoot%\system32\wpdshserviceobj.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-12-06] (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{25559BA7-6EF9-45A1-8A74-5DE0661ACE12}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{A3BBF46B-A159-4BF4-B070-5D52FC44EA02}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{A54718C9-FD98-4D35-9BC5-17E8F314811B}: [DhcpNameServer] 192.168.100.254
Tcpip\..\Interfaces\{D814BF20-A917-41A7-BDAA-43E59F9CD8E7}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{FCCB9CFF-7B76-46F5-A504-F6C1EE5BE0D5}: [DhcpNameServer] 192.168.43.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-866132977-3524765048-2583430549-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-18] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-18] (AVAST Software)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
FireFox:
========
FF ProfilePath: C:\Users\honza\AppData\Roaming\Mozilla\Firefox\Profiles\wh42cenw.default
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2016-01-02] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-09-19] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2016-01-02] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1222172.dll [2015-11-19] (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-09-19] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-866132977-3524765048-2583430549-1000: @tools.google.com/Google Update;version=3 -> C:\Users\honza\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll [2013-12-07] (Google Inc.)
FF Plugin HKU\S-1-5-21-866132977-3524765048-2583430549-1000: @tools.google.com/Google Update;version=9 -> C:\Users\honza\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll [2013-12-07] (Google Inc.)
FF Plugin HKU\S-1-5-21-866132977-3524765048-2583430549-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [No File]
FF user.js: detected! => C:\Users\honza\AppData\Roaming\Mozilla\Firefox\Profiles\wh42cenw.default\user.js [2015-12-07]
FF Extension: Money Viking - C:\Users\honza\AppData\Roaming\Mozilla\Firefox\Profiles\wh42cenw.default\Extensions\{8ef52718-ef02-42dc-991a-dd0e9f7bbf20}.xpi [2015-12-06] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-06]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-12-06]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-08]
CHR Extension: (Dokumenty Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-09]
CHR Extension: (Disk Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Vyhledávání Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Tabulky Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-08]
CHR Extension: (Dokumenty Google offline) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-17]
CHR Extension: (Avast Online Security) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-31]
CHR Extension: (Gmail) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-09]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-18]
StartMenuInternet: Google Chrome.B25RZPGWCXT6AHLMJWE2AJ4DJU - C:\Users\Guest\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2015-12-06] (AVAST Software)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1272560 2015-05-21] (Disc Soft Ltd)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2056376 2015-11-20] (Comodo)
R2 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S3 ssinstall; C:\Windows\SysWOW64\ssins.exe [2317848 2013-03-03] ()
R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [851824 2010-06-17] (Sony Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
S3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [X]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-12-06] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-12-19] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-12-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-12-06] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1055560 2015-12-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [451040 2015-12-19] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2015-12-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-12-06] (AVAST Software)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-06-17] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [10326784 2010-06-24] (Intel Corporation) [File not signed]
S3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [271872 2010-06-24] (Intel(R) Corporation) [File not signed]
S3 massfilter_hs; C:\Windows\System32\drivers\massfilter_hs.sys [18456 2011-03-07] (HandSet Incorporated)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S4 sfdrv01; C:\Windows\System32\drivers\sfdrv01.sys [69120 2006-03-26] (Protection Technology (StarForce)) [File not signed]
S4 sfhlp02; C:\Windows\System32\drivers\sfhlp02.sys [7168 2006-03-13] (Protection Technology (StarForce)) [File not signed]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 NLNdisMP; system32\DRIVERS\nlndis.sys [X]
S3 NLNdisPT; system32\DRIVERS\nlndis.sys [X]
U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
S3 vserial; System32\DRIVERS\vserial.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\BatteryCare\WinRing0x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-01-02 21:53 - 2016-01-02 21:53 - 00016928 ____C C:\Users\honza\Desktop\FRST.txt
2016-01-02 21:53 - 2016-01-02 21:53 - 00000000 ___DC C:\FRST
2016-01-02 21:48 - 2016-01-02 21:48 - 02370560 ____C (Farbar) C:\Users\honza\Desktop\FRST64.exe
2016-01-02 15:32 - 2016-01-02 15:35 - 00000000 ___DC C:\Users\honza\Downloads\série 5 (7.ep)
2016-01-02 15:21 - 2016-01-02 16:09 - 00000000 ___DC C:\Users\honza\Downloads\Ancient Discoveries serie 1
2016-01-02 14:35 - 2016-01-02 14:36 - 00000000 ___DC C:\Users\honza\Downloads\Na ostrově s Bearem Gryllsem 1. Séria
2016-01-02 13:27 - 2016-01-02 13:29 - 00000000 ___DC C:\Users\honza\Downloads\The Martian 2015 720p BluRay x264-88keyz
2016-01-02 13:12 - 2016-01-02 21:32 - 00000914 ____C C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-01-02 13:12 - 2016-01-02 13:13 - 00003852 ____C C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-12-28 14:46 - 2015-12-28 14:46 - 00121680 ____C C:\Users\honza\AppData\Local\GDIPFONTCACHEV1.DAT
2015-12-17 12:44 - 2015-12-17 12:45 - 00461784 ____C C:\Windows\system32\FNTCACHE.DAT
2015-12-07 14:04 - 2015-12-07 14:04 - 00000000 ___DC C:\Users\honza\AppData\Roaming\MAGIX
2015-12-07 14:04 - 2015-12-07 14:04 - 00000000 ___DC C:\ProgramData\MAGIX
2015-12-07 14:00 - 2015-12-07 14:05 - 00000000 ___DC C:\ProgramData\simplitec
2015-12-07 14:00 - 2015-05-06 16:54 - 00120200 ____C () C:\Windows\SysWOW64\DLLDEV32i.dll
2015-12-07 13:47 - 2015-12-07 13:47 - 00000000 ___DC C:\ProgramData\12bfc3a0-7ee7-1
2015-12-07 13:47 - 2015-12-07 13:47 - 00000000 ___DC C:\ProgramData\12bfc3a0-6997-0
2015-12-06 12:45 - 2015-12-06 12:45 - 00386096 ____C (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-12-06 12:45 - 2015-12-06 12:45 - 00043112 ____C (AVAST Software) C:\Windows\avastSS.scr
2015-12-04 14:37 - 2015-12-04 14:37 - 00000000 ___DC C:\Windows\System32\Tasks\AVAST Software
2015-12-04 14:37 - 2015-12-04 14:37 - 00000000 ___DC C:\Program Files\Common Files\AV
2015-12-03 14:59 - 2015-12-03 14:59 - 00000000 ___DC C:\Users\honza\AppData\Local\CEF
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-01-02 21:53 - 2009-07-14 04:20 - 00000000 ___DC C:\Windows
2016-01-02 21:44 - 2013-10-12 07:20 - 00000952 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-02 21:19 - 2015-10-15 09:51 - 00000958 ____C C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-01-02 19:09 - 2009-07-14 05:45 - 00015984 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-01-02 19:09 - 2009-07-14 05:45 - 00015984 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-01-02 19:06 - 2010-10-14 21:36 - 00667902 ____C C:\Windows\system32\perfh005.dat
2016-01-02 19:06 - 2010-10-14 21:36 - 00141048 ____C C:\Windows\system32\perfc005.dat
2016-01-02 19:06 - 2009-07-14 06:13 - 01581054 ____C C:\Windows\system32\PerfStringBackup.INI
2016-01-02 19:06 - 2009-07-14 04:20 - 00000000 ___DC C:\Windows\inf
2016-01-02 19:05 - 2013-01-22 14:16 - 00000000 __RDC C:\Users\honza\Desktop\Nová složka
2016-01-02 19:02 - 2013-10-12 07:20 - 00000948 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-02 19:02 - 2009-07-14 06:08 - 00000006 ___HC C:\Windows\Tasks\SA.DAT
2016-01-02 19:01 - 2013-03-15 03:04 - 00000000 ___DC C:\Program Files\Microsoft Silverlight
2016-01-02 19:01 - 2013-03-15 03:04 - 00000000 ___DC C:\Program Files (x86)\Microsoft Silverlight
2016-01-02 17:26 - 2013-05-30 23:42 - 00000000 ___DC C:\Users\honza\AppData\Roaming\uTorrent
2016-01-02 14:36 - 2013-01-30 15:22 - 00000000 ___DC C:\Users\honza\AppData\Roaming\vlc
2016-01-02 13:22 - 2013-03-15 03:06 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-01-02 13:21 - 2013-07-15 02:01 - 00000000 ___DC C:\Windows\system32\MRT
2016-01-02 13:13 - 2013-03-02 03:37 - 00796864 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-01-02 13:13 - 2012-01-25 11:21 - 00142528 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-02 13:10 - 2011-10-25 00:52 - 140158008 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-12-27 14:09 - 2013-11-13 00:19 - 00004182 ____C C:\Windows\System32\Tasks\avast! Emergency Update
2015-12-21 18:08 - 2015-05-12 13:00 - 00000000 ___DC C:\Users\honza\AppData\Local\CrashDumps
2015-12-19 08:55 - 2013-11-27 14:16 - 00451040 ____C (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2015-12-19 08:55 - 2013-11-27 14:16 - 00097648 ____C (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2015-12-14 20:46 - 2015-07-07 02:36 - 00000000 ___DC C:\Users\honza\AppData\Roaming\Media Player Classic
2015-12-07 14:00 - 2015-09-23 13:10 - 00000000 ___DC C:\ProgramData\Package Cache
2015-12-06 19:35 - 2015-01-27 07:40 - 00000000 ___DC C:\Users\honza\knihovna
2015-12-06 12:45 - 2014-04-26 20:47 - 00028656 ____C (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2015-12-06 12:45 - 2013-12-26 20:56 - 00155304 ____C (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-12-06 12:45 - 2013-11-27 14:16 - 01055560 ____C (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2015-12-06 12:45 - 2013-11-27 14:16 - 00273784 ____C (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2015-12-06 12:45 - 2013-11-27 14:16 - 00065224 ____C (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2015-12-06 12:45 - 2013-11-27 14:15 - 00093528 ____C (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-12-06 12:39 - 2011-09-16 23:42 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-06 12:39 - 2011-09-16 23:42 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-04 22:28 - 2012-11-13 15:44 - 00000000 ___DC C:\Hry
2015-12-03 15:06 - 2015-11-01 18:11 - 00002441 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-12-03 14:59 - 2014-07-09 09:59 - 00000000 ___DC C:\Users\honza\AppData\Local\Adobe
==================== Files in the root of some directories =======
2002-08-29 18:33 - 2002-08-29 18:33 - 0319488 ___RC () C:\Users\honza\AppData\Roaming\MafiaSetup.exe
2013-12-12 23:47 - 2013-12-12 23:48 - 0039073 ____C () C:\Users\honza\AppData\Local\Perfmon.PerfmonCfg
2013-11-27 23:06 - 2013-11-27 23:06 - 0007668 ____C () C:\Users\honza\AppData\Local\Resmon.ResmonCfg
2015-06-01 18:25 - 2015-06-01 18:25 - 0000000 ____C () C:\Users\honza\AppData\Local\{2136A391-B028-47DF-A112-8FCA991D85B2}
2013-09-06 22:07 - 2013-09-06 22:07 - 0030621 ____C () C:\ProgramData\1378501603.bdinstall.bin
2013-09-06 22:08 - 2013-09-06 22:08 - 0029600 ____C () C:\ProgramData\1378501699.1000.bin
2013-09-06 22:08 - 2013-09-06 22:08 - 0000798 ____C () C:\ProgramData\1378501699.2376.bin
2013-09-06 22:08 - 2013-09-06 22:08 - 0002052 ____C () C:\ProgramData\1378501699.4508.bin
2013-09-06 22:10 - 2013-09-06 22:10 - 0030489 ____C () C:\ProgramData\1378501837.bdinstall.bin
2013-09-06 22:19 - 2013-09-06 22:19 - 0195664 ____C () C:\ProgramData\1378502170.bdinstall.bin
2013-10-07 09:58 - 2013-10-07 09:58 - 0022988 ____C () C:\ProgramData\1381136314.bdinstall.bin
2013-10-07 10:01 - 2013-10-07 10:01 - 0079615 ____C () C:\ProgramData\1381136320.bdinstall.bin
2013-11-02 13:49 - 2013-11-02 13:49 - 0229590 ____C () C:\ProgramData\1383396454.bdinstall.bin
2013-11-02 13:53 - 2013-11-02 13:53 - 0037592 ____C () C:\ProgramData\1383396818.bdinstall.bin
2013-11-02 14:14 - 2013-11-02 14:14 - 0174510 ____C () C:\ProgramData\1383396823.bdinstall.bin
2013-11-02 14:37 - 2013-11-02 14:37 - 0037842 ____C () C:\ProgramData\1383399436.bdinstall.bin
2013-11-02 14:38 - 2013-11-02 14:38 - 0095257 ____C () C:\ProgramData\1383399441.bdinstall.bin
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-01-02 15:50
==================== End of FRST.txt ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prosím kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: prosím kontrolu
Krasny den Vam preju 
Doinstalujte Service Pack 1, Internet Explorer 11 a vsechny souvisejici dulezite aktualizace operacniho systemu.
V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).
Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
Doinstalujte Service Pack 1, Internet Explorer 11 a vsechny souvisejici dulezite aktualizace operacniho systemu. V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose). Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
- ukoncete vsechny programy
- kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
- kliknete na Scan, pote na Cleaning
- po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner[Cx].txt), jehoz obsah mi zkopirujte do pristi odpovedi
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: prosím kontrolu
Dobrý den, děkuji za zájem a omlouvám se za prodlevu. SP 1 nejde nainstalovat ač ho automatické aktualizace nabízejí kód chyby 8024200D.
# AdwCleaner v5.028 - Logfile created 09/01/2016 at 15:44:48
# Updated 04/01/2016 by Xplode
# Database : 2016-01-04.2 [Server]
# Operating system : Windows 7 Home Premium (x64)
# Username : honza - MARTIN
# Running from : C:\Users\honza\Desktop\adwcleaner_5.028.exe
# Option : Scan
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
***** [ DLL ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
***** [ Web browsers ] *****
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [572 bytes] ##########
# AdwCleaner v5.028 - Logfile created 09/01/2016 at 15:44:48
# Updated 04/01/2016 by Xplode
# Database : 2016-01-04.2 [Server]
# Operating system : Windows 7 Home Premium (x64)
# Username : honza - MARTIN
# Running from : C:\Users\honza\Desktop\adwcleaner_5.028.exe
# Option : Scan
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
***** [ DLL ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
***** [ Web browsers ] *****
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [572 bytes] ##########
Re: prosím kontrolu
Je vas operacni system legalni? Dejte logy FRST.txt a Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101Pozn. pri druhem a dalsim spusteni FRST je pro vytvoreni logu Addition.txt nutne tuto volbu explicitne zatrhnout pred zacatkem skenu.
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: prosím kontrolu
Snad ano, mám noťas z druhé ruky tak nevím.
LastRegBack: 2016-01-09 16:10
==================== End of FRST.txt ============================
Addition.txt
Additional scan result of Farbar Recovery Scan Tool (x64) Version:09-01-2015
Ran by honza (2016-01-10 20:07:36)
Running from C:\Users\honza\Desktop
Windows 7 Home Premium (X64) (2011-09-16 22:11:40)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-866132977-3524765048-2583430549-500 - Administrator - Disabled)
Guest (S-1-5-21-866132977-3524765048-2583430549-501 - Limited - Enabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-866132977-3524765048-2583430549-1005 - Limited - Enabled)
honza (S-1-5-21-866132977-3524765048-2583430549-1000 - Administrator - Enabled) => C:\Users\honza
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Out of date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Out of date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - )
AcGasSynchro 9.1.0.0 (HKLM-x32\...\Ac Gas Synchro 9.1.0.0_is1) (Version: - )
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 20.0.0.233 - Adobe Systems Incorporated)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Flash Player 20 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.2.172 - Adobe Systems, Inc.)
Alien Isolation (HKLM-x32\...\Alien Isolation_is1) (Version: 1.0.0.0 - SEGA)
Alps Pointing-device for VAIO (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: - ALPS ELECTRIC CO., LTD.)
AMD Catalyst Install Manager (HKLM\...\{770EA7C3-0B5A-C557-E641-A09244603B84}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
ArcSoft Magic-i Visual Effects 2 (HKLM-x32\...\{7BB90344-0647-468E-925A-7F69F7983421}) (Version: 2.0.1.115 - ArcSoft)
ArcSoft WebCam Companion 3 (HKLM-x32\...\{DE8AAC73-6D8D-483E-96EA-CAEDDADB9079}) (Version: 3.0.21.368 - ArcSoft)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2245 - AVAST Software)
Call of Duty - World at War verze 1.7 (HKLM-x32\...\{2126C3DC-16F3-4BFE-96D0-44441D85EB7E}_is1) (Version: 1.7 - tomi2k9)
Call of Duty 4 - Modern Warfare verze 1.7 (HKLM-x32\...\{826D7727-6105-4C5D-A049-E4BADBC8BAAB}_is1) (Version: 1.7 - tomi2k9)
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 46.9.15.424 - Comodo)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.0.0.0054 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
EAX Unified (HKLM-x32\...\EAX Unified) (Version: - )
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Fishing Northern Europe (HKLM-x32\...\Fishing Northern Europe_is1) (Version: - Contendo Media GmbH)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
HDD Health v3.3 Beta (HKLM-x32\...\HDD Health_is1) (Version: - )
HTC BMP USB Driver (HKLM-x32\...\{31A559C1-9E4D-423B-9DD3-34A6C5398752}) (Version: 1.0.5375 - HTC)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.0.1.001 - HTC Corporation)
HTC Sync (HKLM-x32\...\{B78CFC07-B623-4995-ADCC-B2B4D59D083A}) (Version: 3.3.21 - HTC Corporation)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.0.1014 - Intel Corporation)
Intel(R) Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.02.00.1002 - Intel Corporation)
K-Lite Codec Pack 10.0.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.0.0 - )
Medal of Honor Warfighter v1.0.0.3 (HKLM-x32\...\{1040143F-FEFB-4B90-8E51-E47D40E14C4E}_is1) (Version: 1.0.0.3 - EA Games)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Windows Debugging Symbols (HKLM-x32\...\{5CBDF0C2-6FD1-4A32-9A0A-143D9AB91CCE}) (Version: 7601 - Microsoft)
Mozilla Firefox 41.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 41.0.1 (x86 cs)) (Version: 41.0.1 - Mozilla)
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
NVIDIA PhysX (HKLM-x32\...\{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}) (Version: 9.10.0514 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.0.1 (HKLM-x32\...\{220C463A-2890-4C7F-B97C-C49FE175B849}) (Version: 4.01.9714 - Apache Software Foundation)
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
PMB VAIO Edition Guide (x32 Version: 1.3.00.06040 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (Click to Disc) (Version: 3.3.00 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (Click to Disc) (x32 Version: 3.3.00.06180 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Movie Story) (Version: 2.3.00 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Movie Story) (x32 Version: 2.3.00 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Movie Story) (x32 Version: 2.3.00.06180 - Sony Corporation) Hidden
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6034 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6098 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Serious Sam 3 (HKLM-x32\...\Serious Sam 3_is1) (Version: 206585 - Croteam)
Sniper Ghost Warrior 2 CZ verze 1.04 (HKLM-x32\...\Sniper Ghost Warrior 2 CZ_is1) (Version: 1.04 - City Interactive)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
VAIO Hardware Diagnostics (x32 Version: 4.0.0.06230 - Sony Corporation) Hidden
VAIO Manual (HKLM-x32\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 1.1.0.05280 - Sony Corporation)
VAIO screensaver (HKLM-x32\...\VAIO screensaver) (Version: 1.0.0.0 - Sony Europe)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VU5x64 (Version: 1.1.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.1.0 - Sony Corporation ) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.5600 - Broadcom Corporation)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)
ZTE Handset USB Driver 5.2066.1.8B02 (HKLM\...\{D2D77DC2-8299-11D1-8949-444553540000}_is1) (Version: 5.2066.1.8B02 - ZTE Corporation)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0009C47B-840D-4F8A-893C-843C76E9E7A3} - System32\Tasks\{60ABC263-AEBA-4206-A27A-A07BAF740D96} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {038E8B02-CF98-4F23-96C0-47506DA3FF32} - System32\Tasks\{62F2731F-C0C5-4655-B704-97F16A2D30C8} => E:\speed.exe
Task: {03F77506-F2E6-4F1B-BC89-D998BD5025BD} - System32\Tasks\{7AB126E7-9D14-4850-9CD2-3CC0A287B902} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {04D75C21-EE49-4F0D-A4C6-5FDC6AB38939} - System32\Tasks\{E887D7EF-D004-4103-B342-264FFA366CA5} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {05003453-AACF-44D2-8F52-6CC4DBB8CEDD} - System32\Tasks\{38CDF3CA-F10D-4914-A866-3BEE61BC3DFC} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {072AEE3D-BD87-43BE-868B-1D0B3CEF86DA} - System32\Tasks\{FB1BF4D5-52EE-47F3-A242-889F4C7B7597} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {0820AD86-6A96-42A0-97FF-AF04FC9C499A} - System32\Tasks\{2476AC8E-4403-4380-8C98-5ACFE8A5B898} => E:\speed.exe
Task: {0A276386-671D-40C4-802A-BE59DF71DD3B} - System32\Tasks\{C96CBB7B-DA38-4609-B31F-6A638059D1B9} => pcalua.exe -a C:\Users\honza\AppData\Local\Temp\Temp1_ATI_Graphics_Driver_8.672.1.3.zip\ATI_Graphics_Driver_8.672.1.3\Setup.exe
Task: {0C22D931-786E-40C3-B0C4-7CF5EAD433F7} - System32\Tasks\{960FE797-C70E-458A-AD26-0567AC0F757B} => pcalua.exe -a C:\Users\honza\Desktop\avatar-the-game.exe -d C:\Users\honza\Desktop
Task: {0D4380A5-4CB6-4467-B987-C932BEFF3D53} - System32\Tasks\{59DAB165-69A2-4A0B-8D01-216645E9EC24} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {0F8BAADC-FB66-4FCC-85C6-D49CCBB815E1} - System32\Tasks\{4FBAD880-7099-44A9-B210-FF2C5C55E677} => pcalua.exe -a "C:\Users\honza\Desktop\DDay-Full_setup (1).exe" -d C:\Users\honza\Desktop
Task: {12284879-82BA-4A7E-A811-4AF814404EE8} - System32\Tasks\{4D44E4DB-33C3-426B-9457-20C5EEBB5172} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {14862399-77ED-47FC-BE79-722882F86175} - System32\Tasks\{219711C9-A59C-49E1-B68A-2BA155747DF1} => pcalua.exe -a E:\aocsetup.exe -d E:\ -c /autorun
Task: {16742DCA-5878-489C-B28A-36DA6D7E20A3} - System32\Tasks\{9548FE1F-B767-4FE1-8852-313FA1722816} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {179ECE30-5938-4E8C-9D63-834EC87052F8} - System32\Tasks\{61371370-31E2-4284-B8AA-23F0A5440077} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {1CAE05D5-9362-4513-A5C4-544E4F6C29BE} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_267_pepper.exe [2016-01-09] (Adobe Systems Incorporated)
Task: {1CC59457-AEE0-43F3-BA26-A6B4B39232EB} - System32\Tasks\{23769300-918C-41C1-A76A-E084436E86E5} => pcalua.exe -a "D:\data\Dragon Age 2_code.exe" -d D:\data
Task: {1F86AD45-1688-4942-970C-0D08D662D4EF} - System32\Tasks\{65FD18D9-31D6-482F-993E-7C8D00C53E80} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {220DD915-1EE7-44C0-94E9-E32BC700004F} - System32\Tasks\{84AF7952-C2D8-4556-98B8-52993D44B06D} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\EAUninstall.exe"
Task: {248AC315-DC4D-4048-989B-EDEB7EEE2685} - System32\Tasks\{797C2BE1-9F9C-4E7F-986A-9544DCF1791B} => C:\Users\honza\Downloads\Sniper Elite V2 CZ (2012)\ČEŠTINA\čeština.exe
Task: {28824714-71E2-470A-B9A6-71032502785B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000Core => C:\Users\honza\AppData\Local\Google\Update\GoogleUpdate.exe [2013-11-12] (Google Inc.)
Task: {2C0D8F7F-056D-4842-BE3C-0A5645BA444B} - System32\Tasks\{A45427FA-2484-4C83-9540-76191124D790} => C:\Program Files (x86)\Electronic Arts\The Battle for Middle-earth (tm) II\lotrbfme2.exe
Task: {2E5B0393-307A-4C72-BF06-770EC8773BAF} - System32\Tasks\SONY\VAIO Wallpaper Setting Tool\VAIO Wallpaper Setting Tool => C:\Program Files (x86)\Sony\VAIO Wallpaper Setting Tool\VWSet.exe
Task: {32BA0DCA-1E52-47C4-866B-1338ECECABC2} - System32\Tasks\SONY\VAIO Power Management\VPM Session Change => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {32DC6D26-997D-4B17-A0B4-9B93585A80B7} - System32\Tasks\{5FD04935-B4FB-4DB9-88CE-9F271C4C4D42} => pcalua.exe -a "C:\Program Files (x86)\Plane Arcade\Plane Arcade.exe" -d "C:\Program Files (x86)\Plane Arcade"
Task: {38EDF530-D750-4C00-A951-D8C35189E2C5} - System32\Tasks\{DDEFBC9E-B23B-4FF8-80E7-6FA3A81E78D8} => C:\Program Files\Mafia\Game.exe [2002-08-27] (Illusion Softworks)
Task: {3B2FA623-8928-48D7-A365-0DA93A0B24AA} - System32\Tasks\{9DFCDEB2-8016-4A2F-A4E4-62322C860BFD} => C:\Program Files (x86)\Activision\Call of Duty Black Ops II\t6sp.exe
Task: {3D6C45F2-7E75-4FC1-822D-1C5519FD0D1F} - System32\Tasks\{4A5F4191-FF18-4839-9346-15570E797C92} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {400F93B3-F51D-4251-AD58-F397C2ACF519} - System32\Tasks\{036D6C60-E883-48A3-8DAC-0E213726F732} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {414B7EE2-2529-440A-8E4E-EF0F4F5180AF} - System32\Tasks\{101CB5E2-DF90-4F64-9711-B2B3A1E4B8A6} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {417CCA87-2D83-4F67-B4BE-9A62C7B5F51A} - System32\Tasks\{1F9C24E7-20D6-4763-A903-941D4BE76A84} => pcalua.exe -a "C:\NFS MW\EAUninstall.exe"
Task: {41E3AA16-1F80-4F7E-AA17-8C583CB7765D} - System32\Tasks\{19B2AC1F-683D-4EFA-857A-C1496D6B90E7} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {469CE57B-535A-42CE-A587-09283CA1BF68} - System32\Tasks\{FF11BEE0-BCBD-4857-B10F-3477019C2865} => pcalua.exe -a C:\Users\honza\Desktop\WoT_0.7.1_eu_setup.exe -d C:\Users\honza\Desktop
Task: {47B8F79C-AF24-424C-80BC-4B818FC33397} - System32\Tasks\{8AD7F999-A4C1-4529-99FB-FE6DB0855B6A} => pcalua.exe -a "C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\\tssmpm.cpl"
Task: {488C7206-E1DB-4F43-9953-B5541DA4EA13} - System32\Tasks\{F63DD3B5-20DF-4971-8505-511C224D3B16} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {4EDCE25D-E031-4D0D-B1FA-B0CEE25DF415} - System32\Tasks\{35994576-894B-4688-82DB-A6A3B21F6DEC} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {52420AB4-F673-4E34-A1F9-8E87B26F99CF} - System32\Tasks\{259D55C9-E2C7-4AB8-BDF6-673A1FF5FA48} => E:\speed.exe
Task: {5340DC35-5AA6-438A-9D55-1667E3C935AA} - System32\Tasks\{CD721D80-AC30-4FAB-B6AA-594903653149} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {5B388F09-F7E6-475F-9D04-C451D96B733D} - System32\Tasks\SONY\VAIO Power Management\VPM Logon Start => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {5BB2A840-3646-4352-91DD-46E9AC75FD48} - System32\Tasks\{953CF3B4-A62E-4F55-B2CE-BF9BAAA61DDA} => pcalua.exe -a G:\Mafia2.part01.exe -d G:\
Task: {5C46D68A-3DB2-4445-A76A-25BFF9748BE7} - System32\Tasks\{79076942-9C08-415D-9582-F3224649A213} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {5DA94B8E-EC49-46A9-AAFD-D6778C63BC1A} - System32\Tasks\{B38E692C-C0C8-48B2-B33D-1CBC532D25F2} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {5DD88A82-8979-4D36-9E02-4C40FE3B8599} - System32\Tasks\{D293992A-12EC-4038-9998-A33D56C9A33D} => C:\Users\honza\Desktop\Alcohol120_trial_1.9.6.4719.exe
Task: {61453B92-467B-43B8-B121-C78ABBCDC87F} - System32\Tasks\{427B3FFF-6270-46FF-9282-09BE6ED573B4} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {64A4B45E-4C49-4139-8E1C-C2A29A58BB51} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-06] (AVAST Software)
Task: {66558D41-AF84-40EC-A916-4650F319FC47} - System32\Tasks\{73A461FA-6FE7-4FE3-963F-85C6C7A10E44} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {69954962-0643-4B34-A6D0-6310827AF2E0} - System32\Tasks\{ECFE1310-6B5A-4A47-8605-A276F6D5425C} => pcalua.exe -a E:\aoesetup.exe -d E:\ -c /autorun
Task: {69E65285-B36C-4E8D-9C19-7F738CA830BF} - System32\Tasks\{56754CF2-0B53-4D60-A832-5630C8DDB7D1} => pcalua.exe -a "C:\Users\honza\Downloads\Doom 3 GOLD HD\Czech Language\Doom 3 Gold - Cz Dabing.exe" -d "C:\Users\honza\Downloads\Doom 3 GOLD HD\Czech Language"
Task: {6B8E01BB-FB3C-4D69-98D8-CB467D9D59E5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {6DC03357-1DF8-42AF-A541-9E6AE7692695} - System32\Tasks\{14769934-20E4-4989-ADA2-6FA7EF7DF614} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {6F313206-A765-4EAC-B20F-4D7860B82E4E} - System32\Tasks\{8598447A-3FDB-45B9-97CF-D199023AC9C9} => pcalua.exe -a "C:\Users\honza\Desktop\OpenOffice 4.0.1 (cs) Installation Files\setup.exe" -d "C:\Users\honza\Desktop\OpenOffice 4.0.1 (cs) Installation Files"
Task: {7024FBA6-75C2-4EB7-BE92-9DC72F291FB3} - System32\Tasks\SONY\SUS-BCF\Level4Daily => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2010-05-31] (Sony Corporation)
Task: {72869D70-580D-47B4-8404-B4FB7AE6DEE7} - System32\Tasks\{CD6CC3F1-3A44-4267-910B-20AA3B86EE81} => pcalua.exe -a "C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\tssmpm.cpl"
Task: {7706C839-2192-420F-A462-917D7597EC34} - System32\Tasks\SONY\VAIO Power Management\VPM Unlock => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {7AF9D09C-65AA-4E86-BF06-8EC217F761EC} - System32\Tasks\{963127DB-806C-4E8F-8EF8-E4411545288B} => pcalua.exe -a "C:\Program Files (x86)\Id Software\Doom 3 Gold Edition HD\Doom 3 Gold - Cz Texty.exe" -d "C:\Program Files (x86)\Id Software\Doom 3 Gold Edition HD"
Task: {7B22A96B-D2C9-44F6-A662-4440A7639BFC} - System32\Tasks\{F494400E-D7A4-4BEB-92AB-6BB5CA8A2A28} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {7C317091-4FB3-48C9-B94B-55A0397CFE9E} - System32\Tasks\{4D0C96B7-5567-4C3F-872C-69AB553C3FE8} => pcalua.exe -a "C:\Users\honza\Downloads\Doom 3 GOLD HD\Czech Language\Doom 3 Gold - Cz Texty.exe" -d "C:\Users\honza\Downloads\Doom 3 GOLD HD\Czech Language"
Task: {819EB065-77D1-4968-935F-B973EEB5A6E9} - System32\Tasks\{B2585733-48F5-4CC9-8D7D-5ABF8F8D03D3} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {842F71E9-F456-4007-B37B-641AA021D6E4} - System32\Tasks\{A888A24B-7E48-4CF4-AB3A-6DB7580B8252} => E:\speed.exe
Task: {85DB8812-D299-450B-85F4-27525A07EF5A} - System32\Tasks\{405A328B-6E2E-42AB-9A7E-03D0172C783B} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {86B56CB7-B28D-4175-B33D-1629B34A9121} - System32\Tasks\{B43A77A2-0E43-4409-A433-52044693AB3A} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {89257264-99BF-498D-B6B5-9E9F6EC6DAD8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {895A62B5-C1F0-415E-BBB8-D09EA370188F} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2012-12-12] ()
Task: {89E1CF7B-5E4A-4194-B4B5-0172173A587E} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-12-17] (AVAST Software)
Task: {8B38C4B2-137D-4C31-AE72-3BF6730B19E5} - System32\Tasks\{4E029CF7-6298-40B1-9433-56C9BB71C64E} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {8B7B279C-457E-4B27-B5E5-86B26E218773} - System32\Tasks\{59CA4A37-1020-4AD5-A462-2E8402E47AF9} => C:\Program Files\Mafia\Game.exe [2002-08-27] (Illusion Softworks)
Task: {8D76DFE4-2AB9-4E02-9196-A283FCCD9B66} - System32\Tasks\{923CAB47-DCE9-4F24-B825-6438627950A4} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {8E86B726-D9EA-4F5C-913A-D38F6737592D} - System32\Tasks\{2A9CC46D-211A-4786-BE2C-8EAA24FAF5E3} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {8F018EE5-1C07-4312-92F2-695D7EE963C1} - System32\Tasks\{592B948C-5BC8-4E12-B36C-3D73EAE3DA11} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {91743E10-B27B-48A6-9E9B-B2EA5301C1AB} - System32\Tasks\{E2537F84-D3C8-40AE-BF88-28B80C305473} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {918D8A95-C760-4558-A8ED-A11C6E335CEE} - System32\Tasks\{5AAF3C72-9C6A-49B1-98AB-0BC163BC652F} => C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe
Task: {931AA0EC-F08B-4143-9C21-F6006A36665D} - System32\Tasks\{E38FD212-0A93-478A-84EA-3BD81EE8283C} => C:\Users\honza\Desktop\Alcohol120_trial_1.9.6.4719.exe
Task: {9356F8B6-6B76-41B4-BD14-0D92CE0F9666} - System32\Tasks\{4B908A2D-60C1-4C08-AA22-452E26951014} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {93E3CB0C-52F6-4627-B63A-6A27630EF849} - System32\Tasks\{3CCCB6E7-4583-4058-B316-51D7F6392DB3} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {946D2A3E-9A4C-4EA8-8ADE-1644261EBEAB} - System32\Tasks\{EE65828C-BB56-4E0C-AF12-063C55F693FA} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {9BFB5D10-63DB-4FC6-A32A-AF89DFAEFB46} - System32\Tasks\{E8F6CFE3-85BA-44E0-BF81-7E6650EE575F} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {9C797F1D-7610-4A98-B5B1-DB16B6BE6FA5} - System32\Tasks\{B48B1E23-9FE9-4731-B458-9117B8EFBB95} => pcalua.exe -a C:\Users\honza\Downloads\nl3setup.exe -d C:\Users\honza\Downloads
Task: {9F73AD1C-722B-4F78-8BAA-852FEDB4BF71} - System32\Tasks\{385DD74A-A6E5-4AAB-BA02-1A10521303EF} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {9FC6BE7E-2458-4F09-9FD9-ED168B8CB920} - System32\Tasks\{3495D71F-F842-4317-BD08-3BF97CCA1443} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {ABC2B570-25C3-4B12-A1C7-98191B01594F} - System32\Tasks\{1CD6F8C8-BD4E-43E5-BADA-880579E8C404} => C:\Hry\Call of Duty Black Ops II\t6sp.exe
Task: {AF54B569-3E2B-4E4F-AC29-D072FFC690B1} - System32\Tasks\{2A8162E9-A3B5-45B9-9322-DA42C9F4996A} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {AF84C1F9-AD59-43C8-A963-104A15EAC30A} - System32\Tasks\{579D364D-2343-4363-AB00-6043CEA79082} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {B2D4EB1B-6F8D-4A89-BC49-4929037C7743} - System32\Tasks\{B732D449-85AA-4878-8F2F-F6457B225AC4} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {B4C46EB0-1C44-4A90-B09F-327C229C19E2} - System32\Tasks\VAIO Care Support => C:\Program Files\Sony\VAIO Care\VCSpt.exe
Task: {B68032F2-0721-4058-A11B-64B1E2FF9395} - System32\Tasks\SONY\SUS-BCF\Level4Month => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2010-05-31] (Sony Corporation)
Task: {B90F6AE3-897A-4628-BFC2-D7697223D598} - System32\Tasks\{7366C4BD-6FF5-4F17-AC1D-61E9C0FC7179} => C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe
Task: {BAC77CE3-12C6-4C3C-AD3D-8B54D3E84732} - System32\Tasks\{B6A8530F-F1C7-4D5E-9D53-29E7F9231FE7} => pcalua.exe -a "C:\Users\honza\Desktop\planearcade (1).exe" -d C:\Users\honza\Desktop
Task: {BAEB3068-26C5-49F7-89A0-B1378F7C3B15} - System32\Tasks\{6C0119A7-697C-49E9-8A66-113C88D7367E} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {BEDE0826-C4AB-4B03-84F4-E4C652A9B744} - System32\Tasks\{7D061E7F-FF81-407F-918B-0FD2E81631D8} => C:\Program Files (x86)\Dark Souls™ II\AutoRun.exe
Task: {BFA05CDE-6B9B-4B4B-BA28-680AD3C744F0} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS.exe
Task: {C479E492-C479-422E-ACD1-1DFF662353FB} - System32\Tasks\{57800B2C-BF99-42B2-8F9D-E454E830D2F9} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {C7CBE915-4E58-445A-B90D-6D635CE54E65} - System32\Tasks\{302E677F-20EA-4978-AFCC-F4715704AC97} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {C8B18D08-344D-49F6-B25D-64313FF24AB9} - System32\Tasks\{C612A799-467A-41D0-A8D9-2E958C7C6FEE} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {CD93893C-7DA9-497C-9CBA-0AB9BE268949} - System32\Tasks\BatteryCareAuto => C:\Program Files (x86)\BatteryCare\BatteryCare.exe
Task: {D5162D6F-1855-4CE2-8554-4128B3E64F67} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {D6A3BAEF-2BBE-422E-BF7C-C05452DFABE1} - System32\Tasks\{4CEF9106-B8A4-417F-B483-2F1C08826279} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {DB97E66D-143F-41CB-A943-858E93E47321} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc
Task: {E02E79DF-AA7F-4642-8134-EB7D45B4CDAF} - System32\Tasks\VAIO Care => C:\Program Files\Sony\VAIO Care\VCsystray.exe
Task: {E05AB947-F2E6-4D08-A994-47DC6974B59D} - System32\Tasks\{7290B79D-3CA4-43CB-B4E0-3DF16A23371B} => C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe
Task: {E0B564F8-F55D-4ECF-8BAC-E4B6DA9C6B39} - System32\Tasks\{61511042-BB8A-42A7-889D-E068CEA09D9C} => pcalua.exe -a "C:\Program Files (x86)\Id Software\Doom 3 Gold Edition HD\Doom 3 Gold - Cz Dabing.exe" -d "C:\Program Files (x86)\Id Software\Doom 3 Gold Edition HD"
Task: {E1D55CA8-049C-4E74-9306-86A50529A4CB} - System32\Tasks\{9AF88F8D-6BA8-4ED6-A4B4-66842A4FB973} => C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe
Task: {E5234E31-D51B-4429-8184-96F1D0FE1F51} - System32\Tasks\{2D823289-0C80-4B0E-A7FC-B5B1756910E5} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {E783034E-BFF0-43D6-B430-ACB9FAB63690} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000UA => C:\Users\honza\AppData\Local\Google\Update\GoogleUpdate.exe [2013-11-12] (Google Inc.)
Task: {E866A5B7-D507-4F5C-AF72-B2B7C804C955} - System32\Tasks\{9A5814F6-521E-4288-8DB9-815B3C2EC8E3} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {EAE4F867-778E-4FDC-8EC7-8FC8E0847E1E} - System32\Tasks\{C2C035B8-7831-43DF-947E-BFD8121BC55F} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {ECE261F6-1629-4AD0-9027-1040C737A207} - System32\Tasks\{5C6BE13B-680F-46E7-934E-7C9A719B5B56} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {F07479ED-7650-4EC7-8C79-4D58272D6D67} - System32\Tasks\CrystalDiskInfo => C:\Program Files (x86)\CrystalDiskInfo\DiskInfo.exe
Task: {F6EB7686-C340-464F-A1BD-D24DB7CF0AF1} - System32\Tasks\{873BF115-6890-4D16-92C1-BE84838CF121} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {FC9A26E6-FDEC-45E0-A61E-8A213D068A2F} - System32\Tasks\{7DDF29F2-22B6-4A21-B6D1-A4F542974985} => C:\Hry\Call of Duty Black Ops II\t6sp.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_267_pepper.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000Core.job => C:\Users\honza\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000UA.job => C:\Users\honza\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2015-12-06 12:45 - 2015-12-06 12:45 - 00103888 ____C () C:\Program Files\AVAST Software\Avast\log.dll
2015-12-06 12:45 - 2015-12-06 12:45 - 00125512 ____C () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-01-09 21:36 - 2016-01-09 21:36 - 02821120 ____C () C:\Program Files\AVAST Software\Avast\defs\16010901\algo.dll
2015-12-06 12:45 - 2015-12-06 12:45 - 00469008 ____C () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-01-10 19:51 - 2016-01-10 19:51 - 02821120 ____C () C:\Program Files\AVAST Software\Avast\defs\16011001\algo.dll
2015-12-06 12:45 - 2015-12-06 12:45 - 40539648 ____C () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-10-21 16:11 - 2013-10-21 16:11 - 00170496 ____C () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\d89f0252d910d617de1de783a812f840\IsdiInterop.ni.dll
2010-10-14 23:14 - 2010-03-04 04:08 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2015-12-17 13:50 - 2015-12-11 04:54 - 01583432 ____C () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
2015-12-17 13:50 - 2015-12-11 04:54 - 00081224 ____C () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2015-04-08 16:15 - 00000841 ___AC C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\honza\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.43.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: PassThru Service => 2
MSCONFIG\Services: PMBDeviceInfoProvider => 2
MSCONFIG\Services: SampleCollector => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\Windows\pss\Bluetooth.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Start GeekBuddy.lnk => C:\Windows\pss\Start GeekBuddy.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^honza^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk => C:\Windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk.Startup
MSCONFIG\startupreg: (default) =>
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Apoint => C:\Program Files\Apoint\Apoint.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
MSCONFIG\startupreg: Google Update => "C:\Users\honza\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: IAStorIcon => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
MSCONFIG\startupreg: ISBMgr.exe => "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE3
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
MSCONFIG\startupreg: WinSATRestorePower => powercfg -setactive 381b4222-f694-41f0-9685-ff5bb260df2e
MSCONFIG\startupreg: Xvid => C:\Program Files (x86)\Xvid\CheckUpdate.exe
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{52762B75-F0B5-4973-9B02-EF9D4A9368B6}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [UDP Query User{4986B33B-E8FB-4A87-B67F-24114BBDDEB4}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [TCP Query User{6C995E4B-E40A-4C36-A5A1-AFD65660137B}\\martin-pc\public\videos\age of empires ii\empires2.exe] => (Block) \\martin-pc\public\videos\age of empires ii\empires2.exe
FirewallRules: [UDP Query User{91E2051E-147A-498B-90B6-3B03E5A3CC92}\\martin-pc\public\videos\age of empires ii\empires2.exe] => (Block) \\martin-pc\public\videos\age of empires ii\empires2.exe
FirewallRules: [TCP Query User{0A1D3A4F-612B-4FE4-8D97-D7026809A6AE}C:\program files (x86)\call of duty - world at war\codwaw.exe] => (Allow) C:\program files (x86)\call of duty - world at war\codwaw.exe
FirewallRules: [UDP Query User{7F99D196-1C73-4BAA-9FAB-66396D2A13D8}C:\program files (x86)\call of duty - world at war\codwaw.exe] => (Allow) C:\program files (x86)\call of duty - world at war\codwaw.exe
FirewallRules: [TCP Query User{BDD7C3D9-9102-47B8-B004-42039E00C6AC}C:\dead\dead island\deadislandgame.exe] => (Block) C:\dead\dead island\deadislandgame.exe
FirewallRules: [UDP Query User{9421811D-7908-4B04-A899-4AE9AE9885F7}C:\dead\dead island\deadislandgame.exe] => (Block) C:\dead\dead island\deadislandgame.exe
FirewallRules: [TCP Query User{F3135A7D-A728-45B0-8A32-FB3BAF5E764E}C:\program files (x86)\call of duty - world at war\codwaw.exe] => (Block) C:\program files (x86)\call of duty - world at war\codwaw.exe
FirewallRules: [UDP Query User{C002F970-2B9D-41CA-BF68-9819C8EB85CC}C:\program files (x86)\call of duty - world at war\codwaw.exe] => (Block) C:\program files (x86)\call of duty - world at war\codwaw.exe
FirewallRules: [TCP Query User{F0B4BF1A-D18E-4E2E-B287-1B3E2B38DD25}C:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe] => (Block) C:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [UDP Query User{AF3320BE-CBE8-4557-A8C9-6FB5BB5BB63E}C:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe] => (Block) C:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [TCP Query User{CF7414E1-40A4-488E-941A-EE2930C110E8}C:\users\honza\hry\crysis 2 cz\bin32\crysis2.exe] => (Block) C:\users\honza\hry\crysis 2 cz\bin32\crysis2.exe
FirewallRules: [UDP Query User{5AFB8840-FAA8-4848-8761-43016D23329E}C:\users\honza\hry\crysis 2 cz\bin32\crysis2.exe] => (Block) C:\users\honza\hry\crysis 2 cz\bin32\crysis2.exe
FirewallRules: [TCP Query User{DA302ACE-F593-417E-9ACA-250C88BA4B48}C:\users\honza\hry\crysis 2 cz\bin32\crysis2.exe] => (Block) C:\users\honza\hry\crysis 2 cz\bin32\crysis2.exe
FirewallRules: [UDP Query User{D69847A2-153C-4F9E-9ABC-390E578F84F7}C:\users\honza\hry\crysis 2 cz\bin32\crysis2.exe] => (Block) C:\users\honza\hry\crysis 2 cz\bin32\crysis2.exe
FirewallRules: [{52E00B2B-01D3-4D10-93D3-0ED1717C06A2}] => (Allow) LPort=2869
FirewallRules: [{2C608AD6-F662-45C2-8566-693264975B12}] => (Allow) LPort=1900
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [TCP Query User{4C97F05F-CBD3-4D53-A6A9-DC81291FDA28}C:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Block) C:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
FirewallRules: [UDP Query User{B2EBDC24-AE5C-4E34-942D-2345845EBA07}C:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Block) C:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
FirewallRules: [{DADC40B9-9416-46A1-B3F0-C4F65B7885F5}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{5085B273-F7EE-4468-AB23-DF8456728582}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{C5E68B52-3996-4B38-AA53-A74034F727FA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7081D756-3AD4-4AEB-8187-A90597340046}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{46AE6FB3-F78F-40CD-84BF-34C3951F65D7}C:\hry\serious sam 3\steamapps\common\serious sam 3\bin\sam3.exe] => (Allow) C:\hry\serious sam 3\steamapps\common\serious sam 3\bin\sam3.exe
FirewallRules: [UDP Query User{463B906B-2433-4B67-8A11-43CBAD1FCAF7}C:\hry\serious sam 3\steamapps\common\serious sam 3\bin\sam3.exe] => (Allow) C:\hry\serious sam 3\steamapps\common\serious sam 3\bin\sam3.exe
FirewallRules: [{B705BC31-F587-4AC3-A696-F0D3DA833378}] => (Block) C:\hry\serious sam 3\steamapps\common\serious sam 3\bin\sam3.exe
FirewallRules: [{4717B550-BAAB-4EE0-9DE4-4D883155BF74}] => (Block) C:\hry\serious sam 3\steamapps\common\serious sam 3\bin\sam3.exe
FirewallRules: [TCP Query User{1E5F4244-62B5-4894-96AA-A86361703090}C:\hry\alien isolation\ai.exe] => (Allow) C:\hry\alien isolation\ai.exe
FirewallRules: [UDP Query User{82C1C7A9-3482-4CEB-B5EE-512C74266E38}C:\hry\alien isolation\ai.exe] => (Allow) C:\hry\alien isolation\ai.exe
FirewallRules: [{5556721D-D9C6-4DF3-B046-38A86416A9EB}] => (Block) C:\hry\alien isolation\ai.exe
FirewallRules: [{E4C3D847-DAAA-47E8-92F4-C8611A308D10}] => (Block) C:\hry\alien isolation\ai.exe
FirewallRules: [{FBA01A03-A53D-4339-A9F2-41D6694880C6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{A73584EF-FD56-413D-AC65-6D58EBBBF043}C:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Allow) C:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
FirewallRules: [UDP Query User{445CAA52-0779-4A2C-BB5A-E8E3D9A9C0F8}C:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Allow) C:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
==================== Restore Points =========================
07-01-2016 13:41:21 Revo Uninstaller's restore point - Doom 3 Gold Edition HD
07-01-2016 13:43:53 Revo Uninstaller's restore point - Metro 2033 - Redux
07-01-2016 14:00:58 Revo Uninstaller's restore point - ARMA 3 version 1.50.131.969
09-01-2016 15:37:03 Windows Update
09-01-2016 16:53:51 Windows Update
09-01-2016 17:58:09 Windows Update
09-01-2016 22:04:39 Revo Uninstaller's restore point - BS.Player FREE
10-01-2016 00:11:07 Revo Uninstaller's restore point - CrystalDiskInfo 6.5.2
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (01/09/2016 05:37:24 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Generování kontextu aktivace pro C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2 na řádku C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Součást 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Error: (01/09/2016 05:26:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program wusa.exe verze 6.1.7600.16385 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 888
Čas spuštění: 01d14af33a201552
Čas ukončení: 0
Cesta k aplikaci: C:\Windows\system32\wusa.exe
ID hlášení:
Error: (01/07/2016 02:03:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program CCleaner64.exe verze 5.12.0.5431 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 1754
Čas spuštění: 01d1494ba4c7f6ac
Čas ukončení: 0
Cesta k aplikaci: C:\Program Files\CCleaner\CCleaner64.exe
ID hlášení: 0d24cf17-b53f-11e5-b7b8-ec55f9e929bb
Error: (12/23/2015 07:40:41 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro Avast.VC110.DebugCRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1"1 se nezdařilo.
Závislé sestavení Avast.VC110.DebugCRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (12/21/2015 06:08:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: vlc.exe, verze: 2.2.1.0, časové razítko: 0x00000004
Název chybujícího modulu: libqt4_plugin.dll, verze: 2.2.1.0, časové razítko: 0x00020002
Kód výjimky: 0x40000015
Posun chyby: 0x007ca10a
ID chybujícího procesu: 0x127c
Čas spuštění chybující aplikace: 0xvlc.exe0
Cesta k chybující aplikaci: vlc.exe1
Cesta k chybujícímu modulu: vlc.exe2
ID zprávy: vlc.exe3
Error: (12/17/2015 12:45:45 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Index nebyl inicializován.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (12/17/2015 12:45:45 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.
Kontext: aplikace Windows
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (12/17/2015 12:45:45 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt indexování nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (12/17/2015 12:45:45 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)
Error: (12/17/2015 12:45:17 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.JetPropStore> nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
System errors:
=============
Error: (01/09/2016 06:01:46 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200d): Aktualizace Windows 7 Service Pack 1 pro systémy pro platformu x64 (KB976932).
Error: (01/09/2016 05:33:25 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x800706be): Oprava Hotfix pro systém Windows (KB947821).
Error: (01/09/2016 03:39:49 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200d): Aktualizace Windows 7 Service Pack 1 pro systémy pro platformu x64 (KB976932).
Error: (01/09/2016 03:06:59 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Windows Update se po přijetí pokynu pro vypnutí neukončila správně.
Error: (01/03/2016 12:13:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Live ID Sign-in Assistant neuspěla při spuštění v důsledku následující chyby:
%%109
Error: (01/03/2016 12:13:17 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Management & Security Application User Notification Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (01/03/2016 12:13:16 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Rapid Storage Technology byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (01/03/2016 12:13:16 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error: (01/03/2016 12:13:15 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Live ID Sign-in Assistant byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (01/03/2016 12:13:15 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba CamMonitor byla neočekávaně ukončena. Tento stav nastal již 1krát.
CodeIntegrity:
===================================
Date: 2013-05-15 00:52:32.388
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\sfhlp02.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-05-15 00:52:32.283
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\sfhlp02.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-02-09 03:57:37.058
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-02-09 03:57:36.964
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-02-09 03:47:07.552
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-02-09 03:47:07.443
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5 CPU M 480 @ 2.67GHz
Percentage of memory in use: 44%
Total physical RAM: 3950.1 MB
Available physical RAM: 2201.7 MB
Total Virtual: 7898.34 MB
Available Virtual: 5998.31 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:450.56 GB) (Free:172.94 GB) NTFS
Drive e: () (Removable) (Total:14.62 GB) (Free:2.87 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: F96BCECB)
Partition 1: (Not Active) - (Size=15.1 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450.6 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 14.6 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt ============================
LastRegBack: 2016-01-09 16:10
==================== End of FRST.txt ============================
Addition.txt
Additional scan result of Farbar Recovery Scan Tool (x64) Version:09-01-2015
Ran by honza (2016-01-10 20:07:36)
Running from C:\Users\honza\Desktop
Windows 7 Home Premium (X64) (2011-09-16 22:11:40)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-866132977-3524765048-2583430549-500 - Administrator - Disabled)
Guest (S-1-5-21-866132977-3524765048-2583430549-501 - Limited - Enabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-866132977-3524765048-2583430549-1005 - Limited - Enabled)
honza (S-1-5-21-866132977-3524765048-2583430549-1000 - Administrator - Enabled) => C:\Users\honza
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Out of date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Out of date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - )
AcGasSynchro 9.1.0.0 (HKLM-x32\...\Ac Gas Synchro 9.1.0.0_is1) (Version: - )
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 20.0.0.233 - Adobe Systems Incorporated)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Flash Player 20 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.2.172 - Adobe Systems, Inc.)
Alien Isolation (HKLM-x32\...\Alien Isolation_is1) (Version: 1.0.0.0 - SEGA)
Alps Pointing-device for VAIO (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: - ALPS ELECTRIC CO., LTD.)
AMD Catalyst Install Manager (HKLM\...\{770EA7C3-0B5A-C557-E641-A09244603B84}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
ArcSoft Magic-i Visual Effects 2 (HKLM-x32\...\{7BB90344-0647-468E-925A-7F69F7983421}) (Version: 2.0.1.115 - ArcSoft)
ArcSoft WebCam Companion 3 (HKLM-x32\...\{DE8AAC73-6D8D-483E-96EA-CAEDDADB9079}) (Version: 3.0.21.368 - ArcSoft)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2245 - AVAST Software)
Call of Duty - World at War verze 1.7 (HKLM-x32\...\{2126C3DC-16F3-4BFE-96D0-44441D85EB7E}_is1) (Version: 1.7 - tomi2k9)
Call of Duty 4 - Modern Warfare verze 1.7 (HKLM-x32\...\{826D7727-6105-4C5D-A049-E4BADBC8BAAB}_is1) (Version: 1.7 - tomi2k9)
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 46.9.15.424 - Comodo)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.0.0.0054 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
EAX Unified (HKLM-x32\...\EAX Unified) (Version: - )
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Fishing Northern Europe (HKLM-x32\...\Fishing Northern Europe_is1) (Version: - Contendo Media GmbH)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
HDD Health v3.3 Beta (HKLM-x32\...\HDD Health_is1) (Version: - )
HTC BMP USB Driver (HKLM-x32\...\{31A559C1-9E4D-423B-9DD3-34A6C5398752}) (Version: 1.0.5375 - HTC)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.0.1.001 - HTC Corporation)
HTC Sync (HKLM-x32\...\{B78CFC07-B623-4995-ADCC-B2B4D59D083A}) (Version: 3.3.21 - HTC Corporation)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.0.1014 - Intel Corporation)
Intel(R) Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.02.00.1002 - Intel Corporation)
K-Lite Codec Pack 10.0.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.0.0 - )
Medal of Honor Warfighter v1.0.0.3 (HKLM-x32\...\{1040143F-FEFB-4B90-8E51-E47D40E14C4E}_is1) (Version: 1.0.0.3 - EA Games)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Windows Debugging Symbols (HKLM-x32\...\{5CBDF0C2-6FD1-4A32-9A0A-143D9AB91CCE}) (Version: 7601 - Microsoft)
Mozilla Firefox 41.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 41.0.1 (x86 cs)) (Version: 41.0.1 - Mozilla)
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
NVIDIA PhysX (HKLM-x32\...\{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}) (Version: 9.10.0514 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.0.1 (HKLM-x32\...\{220C463A-2890-4C7F-B97C-C49FE175B849}) (Version: 4.01.9714 - Apache Software Foundation)
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
PMB VAIO Edition Guide (x32 Version: 1.3.00.06040 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (Click to Disc) (Version: 3.3.00 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (Click to Disc) (x32 Version: 3.3.00.06180 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Movie Story) (Version: 2.3.00 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Movie Story) (x32 Version: 2.3.00 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Movie Story) (x32 Version: 2.3.00.06180 - Sony Corporation) Hidden
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6034 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6098 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Serious Sam 3 (HKLM-x32\...\Serious Sam 3_is1) (Version: 206585 - Croteam)
Sniper Ghost Warrior 2 CZ verze 1.04 (HKLM-x32\...\Sniper Ghost Warrior 2 CZ_is1) (Version: 1.04 - City Interactive)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
VAIO Hardware Diagnostics (x32 Version: 4.0.0.06230 - Sony Corporation) Hidden
VAIO Manual (HKLM-x32\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 1.1.0.05280 - Sony Corporation)
VAIO screensaver (HKLM-x32\...\VAIO screensaver) (Version: 1.0.0.0 - Sony Europe)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VU5x64 (Version: 1.1.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.1.0 - Sony Corporation ) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.5600 - Broadcom Corporation)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)
ZTE Handset USB Driver 5.2066.1.8B02 (HKLM\...\{D2D77DC2-8299-11D1-8949-444553540000}_is1) (Version: 5.2066.1.8B02 - ZTE Corporation)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0009C47B-840D-4F8A-893C-843C76E9E7A3} - System32\Tasks\{60ABC263-AEBA-4206-A27A-A07BAF740D96} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {038E8B02-CF98-4F23-96C0-47506DA3FF32} - System32\Tasks\{62F2731F-C0C5-4655-B704-97F16A2D30C8} => E:\speed.exe
Task: {03F77506-F2E6-4F1B-BC89-D998BD5025BD} - System32\Tasks\{7AB126E7-9D14-4850-9CD2-3CC0A287B902} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {04D75C21-EE49-4F0D-A4C6-5FDC6AB38939} - System32\Tasks\{E887D7EF-D004-4103-B342-264FFA366CA5} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {05003453-AACF-44D2-8F52-6CC4DBB8CEDD} - System32\Tasks\{38CDF3CA-F10D-4914-A866-3BEE61BC3DFC} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {072AEE3D-BD87-43BE-868B-1D0B3CEF86DA} - System32\Tasks\{FB1BF4D5-52EE-47F3-A242-889F4C7B7597} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {0820AD86-6A96-42A0-97FF-AF04FC9C499A} - System32\Tasks\{2476AC8E-4403-4380-8C98-5ACFE8A5B898} => E:\speed.exe
Task: {0A276386-671D-40C4-802A-BE59DF71DD3B} - System32\Tasks\{C96CBB7B-DA38-4609-B31F-6A638059D1B9} => pcalua.exe -a C:\Users\honza\AppData\Local\Temp\Temp1_ATI_Graphics_Driver_8.672.1.3.zip\ATI_Graphics_Driver_8.672.1.3\Setup.exe
Task: {0C22D931-786E-40C3-B0C4-7CF5EAD433F7} - System32\Tasks\{960FE797-C70E-458A-AD26-0567AC0F757B} => pcalua.exe -a C:\Users\honza\Desktop\avatar-the-game.exe -d C:\Users\honza\Desktop
Task: {0D4380A5-4CB6-4467-B987-C932BEFF3D53} - System32\Tasks\{59DAB165-69A2-4A0B-8D01-216645E9EC24} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {0F8BAADC-FB66-4FCC-85C6-D49CCBB815E1} - System32\Tasks\{4FBAD880-7099-44A9-B210-FF2C5C55E677} => pcalua.exe -a "C:\Users\honza\Desktop\DDay-Full_setup (1).exe" -d C:\Users\honza\Desktop
Task: {12284879-82BA-4A7E-A811-4AF814404EE8} - System32\Tasks\{4D44E4DB-33C3-426B-9457-20C5EEBB5172} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {14862399-77ED-47FC-BE79-722882F86175} - System32\Tasks\{219711C9-A59C-49E1-B68A-2BA155747DF1} => pcalua.exe -a E:\aocsetup.exe -d E:\ -c /autorun
Task: {16742DCA-5878-489C-B28A-36DA6D7E20A3} - System32\Tasks\{9548FE1F-B767-4FE1-8852-313FA1722816} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {179ECE30-5938-4E8C-9D63-834EC87052F8} - System32\Tasks\{61371370-31E2-4284-B8AA-23F0A5440077} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {1CAE05D5-9362-4513-A5C4-544E4F6C29BE} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_267_pepper.exe [2016-01-09] (Adobe Systems Incorporated)
Task: {1CC59457-AEE0-43F3-BA26-A6B4B39232EB} - System32\Tasks\{23769300-918C-41C1-A76A-E084436E86E5} => pcalua.exe -a "D:\data\Dragon Age 2_code.exe" -d D:\data
Task: {1F86AD45-1688-4942-970C-0D08D662D4EF} - System32\Tasks\{65FD18D9-31D6-482F-993E-7C8D00C53E80} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {220DD915-1EE7-44C0-94E9-E32BC700004F} - System32\Tasks\{84AF7952-C2D8-4556-98B8-52993D44B06D} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\EAUninstall.exe"
Task: {248AC315-DC4D-4048-989B-EDEB7EEE2685} - System32\Tasks\{797C2BE1-9F9C-4E7F-986A-9544DCF1791B} => C:\Users\honza\Downloads\Sniper Elite V2 CZ (2012)\ČEŠTINA\čeština.exe
Task: {28824714-71E2-470A-B9A6-71032502785B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000Core => C:\Users\honza\AppData\Local\Google\Update\GoogleUpdate.exe [2013-11-12] (Google Inc.)
Task: {2C0D8F7F-056D-4842-BE3C-0A5645BA444B} - System32\Tasks\{A45427FA-2484-4C83-9540-76191124D790} => C:\Program Files (x86)\Electronic Arts\The Battle for Middle-earth (tm) II\lotrbfme2.exe
Task: {2E5B0393-307A-4C72-BF06-770EC8773BAF} - System32\Tasks\SONY\VAIO Wallpaper Setting Tool\VAIO Wallpaper Setting Tool => C:\Program Files (x86)\Sony\VAIO Wallpaper Setting Tool\VWSet.exe
Task: {32BA0DCA-1E52-47C4-866B-1338ECECABC2} - System32\Tasks\SONY\VAIO Power Management\VPM Session Change => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {32DC6D26-997D-4B17-A0B4-9B93585A80B7} - System32\Tasks\{5FD04935-B4FB-4DB9-88CE-9F271C4C4D42} => pcalua.exe -a "C:\Program Files (x86)\Plane Arcade\Plane Arcade.exe" -d "C:\Program Files (x86)\Plane Arcade"
Task: {38EDF530-D750-4C00-A951-D8C35189E2C5} - System32\Tasks\{DDEFBC9E-B23B-4FF8-80E7-6FA3A81E78D8} => C:\Program Files\Mafia\Game.exe [2002-08-27] (Illusion Softworks)
Task: {3B2FA623-8928-48D7-A365-0DA93A0B24AA} - System32\Tasks\{9DFCDEB2-8016-4A2F-A4E4-62322C860BFD} => C:\Program Files (x86)\Activision\Call of Duty Black Ops II\t6sp.exe
Task: {3D6C45F2-7E75-4FC1-822D-1C5519FD0D1F} - System32\Tasks\{4A5F4191-FF18-4839-9346-15570E797C92} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {400F93B3-F51D-4251-AD58-F397C2ACF519} - System32\Tasks\{036D6C60-E883-48A3-8DAC-0E213726F732} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {414B7EE2-2529-440A-8E4E-EF0F4F5180AF} - System32\Tasks\{101CB5E2-DF90-4F64-9711-B2B3A1E4B8A6} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {417CCA87-2D83-4F67-B4BE-9A62C7B5F51A} - System32\Tasks\{1F9C24E7-20D6-4763-A903-941D4BE76A84} => pcalua.exe -a "C:\NFS MW\EAUninstall.exe"
Task: {41E3AA16-1F80-4F7E-AA17-8C583CB7765D} - System32\Tasks\{19B2AC1F-683D-4EFA-857A-C1496D6B90E7} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {469CE57B-535A-42CE-A587-09283CA1BF68} - System32\Tasks\{FF11BEE0-BCBD-4857-B10F-3477019C2865} => pcalua.exe -a C:\Users\honza\Desktop\WoT_0.7.1_eu_setup.exe -d C:\Users\honza\Desktop
Task: {47B8F79C-AF24-424C-80BC-4B818FC33397} - System32\Tasks\{8AD7F999-A4C1-4529-99FB-FE6DB0855B6A} => pcalua.exe -a "C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\\tssmpm.cpl"
Task: {488C7206-E1DB-4F43-9953-B5541DA4EA13} - System32\Tasks\{F63DD3B5-20DF-4971-8505-511C224D3B16} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {4EDCE25D-E031-4D0D-B1FA-B0CEE25DF415} - System32\Tasks\{35994576-894B-4688-82DB-A6A3B21F6DEC} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {52420AB4-F673-4E34-A1F9-8E87B26F99CF} - System32\Tasks\{259D55C9-E2C7-4AB8-BDF6-673A1FF5FA48} => E:\speed.exe
Task: {5340DC35-5AA6-438A-9D55-1667E3C935AA} - System32\Tasks\{CD721D80-AC30-4FAB-B6AA-594903653149} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {5B388F09-F7E6-475F-9D04-C451D96B733D} - System32\Tasks\SONY\VAIO Power Management\VPM Logon Start => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {5BB2A840-3646-4352-91DD-46E9AC75FD48} - System32\Tasks\{953CF3B4-A62E-4F55-B2CE-BF9BAAA61DDA} => pcalua.exe -a G:\Mafia2.part01.exe -d G:\
Task: {5C46D68A-3DB2-4445-A76A-25BFF9748BE7} - System32\Tasks\{79076942-9C08-415D-9582-F3224649A213} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {5DA94B8E-EC49-46A9-AAFD-D6778C63BC1A} - System32\Tasks\{B38E692C-C0C8-48B2-B33D-1CBC532D25F2} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {5DD88A82-8979-4D36-9E02-4C40FE3B8599} - System32\Tasks\{D293992A-12EC-4038-9998-A33D56C9A33D} => C:\Users\honza\Desktop\Alcohol120_trial_1.9.6.4719.exe
Task: {61453B92-467B-43B8-B121-C78ABBCDC87F} - System32\Tasks\{427B3FFF-6270-46FF-9282-09BE6ED573B4} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {64A4B45E-4C49-4139-8E1C-C2A29A58BB51} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-06] (AVAST Software)
Task: {66558D41-AF84-40EC-A916-4650F319FC47} - System32\Tasks\{73A461FA-6FE7-4FE3-963F-85C6C7A10E44} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {69954962-0643-4B34-A6D0-6310827AF2E0} - System32\Tasks\{ECFE1310-6B5A-4A47-8605-A276F6D5425C} => pcalua.exe -a E:\aoesetup.exe -d E:\ -c /autorun
Task: {69E65285-B36C-4E8D-9C19-7F738CA830BF} - System32\Tasks\{56754CF2-0B53-4D60-A832-5630C8DDB7D1} => pcalua.exe -a "C:\Users\honza\Downloads\Doom 3 GOLD HD\Czech Language\Doom 3 Gold - Cz Dabing.exe" -d "C:\Users\honza\Downloads\Doom 3 GOLD HD\Czech Language"
Task: {6B8E01BB-FB3C-4D69-98D8-CB467D9D59E5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {6DC03357-1DF8-42AF-A541-9E6AE7692695} - System32\Tasks\{14769934-20E4-4989-ADA2-6FA7EF7DF614} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {6F313206-A765-4EAC-B20F-4D7860B82E4E} - System32\Tasks\{8598447A-3FDB-45B9-97CF-D199023AC9C9} => pcalua.exe -a "C:\Users\honza\Desktop\OpenOffice 4.0.1 (cs) Installation Files\setup.exe" -d "C:\Users\honza\Desktop\OpenOffice 4.0.1 (cs) Installation Files"
Task: {7024FBA6-75C2-4EB7-BE92-9DC72F291FB3} - System32\Tasks\SONY\SUS-BCF\Level4Daily => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2010-05-31] (Sony Corporation)
Task: {72869D70-580D-47B4-8404-B4FB7AE6DEE7} - System32\Tasks\{CD6CC3F1-3A44-4267-910B-20AA3B86EE81} => pcalua.exe -a "C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\tssmpm.cpl"
Task: {7706C839-2192-420F-A462-917D7597EC34} - System32\Tasks\SONY\VAIO Power Management\VPM Unlock => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {7AF9D09C-65AA-4E86-BF06-8EC217F761EC} - System32\Tasks\{963127DB-806C-4E8F-8EF8-E4411545288B} => pcalua.exe -a "C:\Program Files (x86)\Id Software\Doom 3 Gold Edition HD\Doom 3 Gold - Cz Texty.exe" -d "C:\Program Files (x86)\Id Software\Doom 3 Gold Edition HD"
Task: {7B22A96B-D2C9-44F6-A662-4440A7639BFC} - System32\Tasks\{F494400E-D7A4-4BEB-92AB-6BB5CA8A2A28} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {7C317091-4FB3-48C9-B94B-55A0397CFE9E} - System32\Tasks\{4D0C96B7-5567-4C3F-872C-69AB553C3FE8} => pcalua.exe -a "C:\Users\honza\Downloads\Doom 3 GOLD HD\Czech Language\Doom 3 Gold - Cz Texty.exe" -d "C:\Users\honza\Downloads\Doom 3 GOLD HD\Czech Language"
Task: {819EB065-77D1-4968-935F-B973EEB5A6E9} - System32\Tasks\{B2585733-48F5-4CC9-8D7D-5ABF8F8D03D3} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {842F71E9-F456-4007-B37B-641AA021D6E4} - System32\Tasks\{A888A24B-7E48-4CF4-AB3A-6DB7580B8252} => E:\speed.exe
Task: {85DB8812-D299-450B-85F4-27525A07EF5A} - System32\Tasks\{405A328B-6E2E-42AB-9A7E-03D0172C783B} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {86B56CB7-B28D-4175-B33D-1629B34A9121} - System32\Tasks\{B43A77A2-0E43-4409-A433-52044693AB3A} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {89257264-99BF-498D-B6B5-9E9F6EC6DAD8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {895A62B5-C1F0-415E-BBB8-D09EA370188F} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2012-12-12] ()
Task: {89E1CF7B-5E4A-4194-B4B5-0172173A587E} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-12-17] (AVAST Software)
Task: {8B38C4B2-137D-4C31-AE72-3BF6730B19E5} - System32\Tasks\{4E029CF7-6298-40B1-9433-56C9BB71C64E} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {8B7B279C-457E-4B27-B5E5-86B26E218773} - System32\Tasks\{59CA4A37-1020-4AD5-A462-2E8402E47AF9} => C:\Program Files\Mafia\Game.exe [2002-08-27] (Illusion Softworks)
Task: {8D76DFE4-2AB9-4E02-9196-A283FCCD9B66} - System32\Tasks\{923CAB47-DCE9-4F24-B825-6438627950A4} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {8E86B726-D9EA-4F5C-913A-D38F6737592D} - System32\Tasks\{2A9CC46D-211A-4786-BE2C-8EAA24FAF5E3} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {8F018EE5-1C07-4312-92F2-695D7EE963C1} - System32\Tasks\{592B948C-5BC8-4E12-B36C-3D73EAE3DA11} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {91743E10-B27B-48A6-9E9B-B2EA5301C1AB} - System32\Tasks\{E2537F84-D3C8-40AE-BF88-28B80C305473} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {918D8A95-C760-4558-A8ED-A11C6E335CEE} - System32\Tasks\{5AAF3C72-9C6A-49B1-98AB-0BC163BC652F} => C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe
Task: {931AA0EC-F08B-4143-9C21-F6006A36665D} - System32\Tasks\{E38FD212-0A93-478A-84EA-3BD81EE8283C} => C:\Users\honza\Desktop\Alcohol120_trial_1.9.6.4719.exe
Task: {9356F8B6-6B76-41B4-BD14-0D92CE0F9666} - System32\Tasks\{4B908A2D-60C1-4C08-AA22-452E26951014} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {93E3CB0C-52F6-4627-B63A-6A27630EF849} - System32\Tasks\{3CCCB6E7-4583-4058-B316-51D7F6392DB3} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {946D2A3E-9A4C-4EA8-8ADE-1644261EBEAB} - System32\Tasks\{EE65828C-BB56-4E0C-AF12-063C55F693FA} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {9BFB5D10-63DB-4FC6-A32A-AF89DFAEFB46} - System32\Tasks\{E8F6CFE3-85BA-44E0-BF81-7E6650EE575F} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {9C797F1D-7610-4A98-B5B1-DB16B6BE6FA5} - System32\Tasks\{B48B1E23-9FE9-4731-B458-9117B8EFBB95} => pcalua.exe -a C:\Users\honza\Downloads\nl3setup.exe -d C:\Users\honza\Downloads
Task: {9F73AD1C-722B-4F78-8BAA-852FEDB4BF71} - System32\Tasks\{385DD74A-A6E5-4AAB-BA02-1A10521303EF} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {9FC6BE7E-2458-4F09-9FD9-ED168B8CB920} - System32\Tasks\{3495D71F-F842-4317-BD08-3BF97CCA1443} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {ABC2B570-25C3-4B12-A1C7-98191B01594F} - System32\Tasks\{1CD6F8C8-BD4E-43E5-BADA-880579E8C404} => C:\Hry\Call of Duty Black Ops II\t6sp.exe
Task: {AF54B569-3E2B-4E4F-AC29-D072FFC690B1} - System32\Tasks\{2A8162E9-A3B5-45B9-9322-DA42C9F4996A} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {AF84C1F9-AD59-43C8-A963-104A15EAC30A} - System32\Tasks\{579D364D-2343-4363-AB00-6043CEA79082} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {B2D4EB1B-6F8D-4A89-BC49-4929037C7743} - System32\Tasks\{B732D449-85AA-4878-8F2F-F6457B225AC4} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {B4C46EB0-1C44-4A90-B09F-327C229C19E2} - System32\Tasks\VAIO Care Support => C:\Program Files\Sony\VAIO Care\VCSpt.exe
Task: {B68032F2-0721-4058-A11B-64B1E2FF9395} - System32\Tasks\SONY\SUS-BCF\Level4Month => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2010-05-31] (Sony Corporation)
Task: {B90F6AE3-897A-4628-BFC2-D7697223D598} - System32\Tasks\{7366C4BD-6FF5-4F17-AC1D-61E9C0FC7179} => C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe
Task: {BAC77CE3-12C6-4C3C-AD3D-8B54D3E84732} - System32\Tasks\{B6A8530F-F1C7-4D5E-9D53-29E7F9231FE7} => pcalua.exe -a "C:\Users\honza\Desktop\planearcade (1).exe" -d C:\Users\honza\Desktop
Task: {BAEB3068-26C5-49F7-89A0-B1378F7C3B15} - System32\Tasks\{6C0119A7-697C-49E9-8A66-113C88D7367E} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {BEDE0826-C4AB-4B03-84F4-E4C652A9B744} - System32\Tasks\{7D061E7F-FF81-407F-918B-0FD2E81631D8} => C:\Program Files (x86)\Dark Souls™ II\AutoRun.exe
Task: {BFA05CDE-6B9B-4B4B-BA28-680AD3C744F0} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS.exe
Task: {C479E492-C479-422E-ACD1-1DFF662353FB} - System32\Tasks\{57800B2C-BF99-42B2-8F9D-E454E830D2F9} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {C7CBE915-4E58-445A-B90D-6D635CE54E65} - System32\Tasks\{302E677F-20EA-4978-AFCC-F4715704AC97} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {C8B18D08-344D-49F6-B25D-64313FF24AB9} - System32\Tasks\{C612A799-467A-41D0-A8D9-2E958C7C6FEE} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {CD93893C-7DA9-497C-9CBA-0AB9BE268949} - System32\Tasks\BatteryCareAuto => C:\Program Files (x86)\BatteryCare\BatteryCare.exe
Task: {D5162D6F-1855-4CE2-8554-4128B3E64F67} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {D6A3BAEF-2BBE-422E-BF7C-C05452DFABE1} - System32\Tasks\{4CEF9106-B8A4-417F-B483-2F1C08826279} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {DB97E66D-143F-41CB-A943-858E93E47321} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc
Task: {E02E79DF-AA7F-4642-8134-EB7D45B4CDAF} - System32\Tasks\VAIO Care => C:\Program Files\Sony\VAIO Care\VCsystray.exe
Task: {E05AB947-F2E6-4D08-A994-47DC6974B59D} - System32\Tasks\{7290B79D-3CA4-43CB-B4E0-3DF16A23371B} => C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe
Task: {E0B564F8-F55D-4ECF-8BAC-E4B6DA9C6B39} - System32\Tasks\{61511042-BB8A-42A7-889D-E068CEA09D9C} => pcalua.exe -a "C:\Program Files (x86)\Id Software\Doom 3 Gold Edition HD\Doom 3 Gold - Cz Dabing.exe" -d "C:\Program Files (x86)\Id Software\Doom 3 Gold Edition HD"
Task: {E1D55CA8-049C-4E74-9306-86A50529A4CB} - System32\Tasks\{9AF88F8D-6BA8-4ED6-A4B4-66842A4FB973} => C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe
Task: {E5234E31-D51B-4429-8184-96F1D0FE1F51} - System32\Tasks\{2D823289-0C80-4B0E-A7FC-B5B1756910E5} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {E783034E-BFF0-43D6-B430-ACB9FAB63690} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000UA => C:\Users\honza\AppData\Local\Google\Update\GoogleUpdate.exe [2013-11-12] (Google Inc.)
Task: {E866A5B7-D507-4F5C-AF72-B2B7C804C955} - System32\Tasks\{9A5814F6-521E-4288-8DB9-815B3C2EC8E3} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/go/help.faq.installer?LastError=1603
Task: {EAE4F867-778E-4FDC-8EC7-8FC8E0847E1E} - System32\Tasks\{C2C035B8-7831-43DF-947E-BFD8121BC55F} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {ECE261F6-1629-4AD0-9027-1040C737A207} - System32\Tasks\{5C6BE13B-680F-46E7-934E-7C9A719B5B56} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {F07479ED-7650-4EC7-8C79-4D58272D6D67} - System32\Tasks\CrystalDiskInfo => C:\Program Files (x86)\CrystalDiskInfo\DiskInfo.exe
Task: {F6EB7686-C340-464F-A1BD-D24DB7CF0AF1} - System32\Tasks\{873BF115-6890-4D16-92C1-BE84838CF121} => C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted\speed.exe
Task: {FC9A26E6-FDEC-45E0-A61E-8A213D068A2F} - System32\Tasks\{7DDF29F2-22B6-4A21-B6D1-A4F542974985} => C:\Hry\Call of Duty Black Ops II\t6sp.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_267_pepper.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000Core.job => C:\Users\honza\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000UA.job => C:\Users\honza\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2015-12-06 12:45 - 2015-12-06 12:45 - 00103888 ____C () C:\Program Files\AVAST Software\Avast\log.dll
2015-12-06 12:45 - 2015-12-06 12:45 - 00125512 ____C () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-01-09 21:36 - 2016-01-09 21:36 - 02821120 ____C () C:\Program Files\AVAST Software\Avast\defs\16010901\algo.dll
2015-12-06 12:45 - 2015-12-06 12:45 - 00469008 ____C () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-01-10 19:51 - 2016-01-10 19:51 - 02821120 ____C () C:\Program Files\AVAST Software\Avast\defs\16011001\algo.dll
2015-12-06 12:45 - 2015-12-06 12:45 - 40539648 ____C () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-10-21 16:11 - 2013-10-21 16:11 - 00170496 ____C () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\d89f0252d910d617de1de783a812f840\IsdiInterop.ni.dll
2010-10-14 23:14 - 2010-03-04 04:08 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2015-12-17 13:50 - 2015-12-11 04:54 - 01583432 ____C () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
2015-12-17 13:50 - 2015-12-11 04:54 - 00081224 ____C () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2015-04-08 16:15 - 00000841 ___AC C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\honza\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.43.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: PassThru Service => 2
MSCONFIG\Services: PMBDeviceInfoProvider => 2
MSCONFIG\Services: SampleCollector => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\Windows\pss\Bluetooth.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Start GeekBuddy.lnk => C:\Windows\pss\Start GeekBuddy.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^honza^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk => C:\Windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk.Startup
MSCONFIG\startupreg: (default) =>
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Apoint => C:\Program Files\Apoint\Apoint.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
MSCONFIG\startupreg: Google Update => "C:\Users\honza\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: IAStorIcon => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
MSCONFIG\startupreg: ISBMgr.exe => "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE3
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
MSCONFIG\startupreg: WinSATRestorePower => powercfg -setactive 381b4222-f694-41f0-9685-ff5bb260df2e
MSCONFIG\startupreg: Xvid => C:\Program Files (x86)\Xvid\CheckUpdate.exe
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{52762B75-F0B5-4973-9B02-EF9D4A9368B6}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [UDP Query User{4986B33B-E8FB-4A87-B67F-24114BBDDEB4}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [TCP Query User{6C995E4B-E40A-4C36-A5A1-AFD65660137B}\\martin-pc\public\videos\age of empires ii\empires2.exe] => (Block) \\martin-pc\public\videos\age of empires ii\empires2.exe
FirewallRules: [UDP Query User{91E2051E-147A-498B-90B6-3B03E5A3CC92}\\martin-pc\public\videos\age of empires ii\empires2.exe] => (Block) \\martin-pc\public\videos\age of empires ii\empires2.exe
FirewallRules: [TCP Query User{0A1D3A4F-612B-4FE4-8D97-D7026809A6AE}C:\program files (x86)\call of duty - world at war\codwaw.exe] => (Allow) C:\program files (x86)\call of duty - world at war\codwaw.exe
FirewallRules: [UDP Query User{7F99D196-1C73-4BAA-9FAB-66396D2A13D8}C:\program files (x86)\call of duty - world at war\codwaw.exe] => (Allow) C:\program files (x86)\call of duty - world at war\codwaw.exe
FirewallRules: [TCP Query User{BDD7C3D9-9102-47B8-B004-42039E00C6AC}C:\dead\dead island\deadislandgame.exe] => (Block) C:\dead\dead island\deadislandgame.exe
FirewallRules: [UDP Query User{9421811D-7908-4B04-A899-4AE9AE9885F7}C:\dead\dead island\deadislandgame.exe] => (Block) C:\dead\dead island\deadislandgame.exe
FirewallRules: [TCP Query User{F3135A7D-A728-45B0-8A32-FB3BAF5E764E}C:\program files (x86)\call of duty - world at war\codwaw.exe] => (Block) C:\program files (x86)\call of duty - world at war\codwaw.exe
FirewallRules: [UDP Query User{C002F970-2B9D-41CA-BF68-9819C8EB85CC}C:\program files (x86)\call of duty - world at war\codwaw.exe] => (Block) C:\program files (x86)\call of duty - world at war\codwaw.exe
FirewallRules: [TCP Query User{F0B4BF1A-D18E-4E2E-B287-1B3E2B38DD25}C:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe] => (Block) C:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [UDP Query User{AF3320BE-CBE8-4557-A8C9-6FB5BB5BB63E}C:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe] => (Block) C:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [TCP Query User{CF7414E1-40A4-488E-941A-EE2930C110E8}C:\users\honza\hry\crysis 2 cz\bin32\crysis2.exe] => (Block) C:\users\honza\hry\crysis 2 cz\bin32\crysis2.exe
FirewallRules: [UDP Query User{5AFB8840-FAA8-4848-8761-43016D23329E}C:\users\honza\hry\crysis 2 cz\bin32\crysis2.exe] => (Block) C:\users\honza\hry\crysis 2 cz\bin32\crysis2.exe
FirewallRules: [TCP Query User{DA302ACE-F593-417E-9ACA-250C88BA4B48}C:\users\honza\hry\crysis 2 cz\bin32\crysis2.exe] => (Block) C:\users\honza\hry\crysis 2 cz\bin32\crysis2.exe
FirewallRules: [UDP Query User{D69847A2-153C-4F9E-9ABC-390E578F84F7}C:\users\honza\hry\crysis 2 cz\bin32\crysis2.exe] => (Block) C:\users\honza\hry\crysis 2 cz\bin32\crysis2.exe
FirewallRules: [{52E00B2B-01D3-4D10-93D3-0ED1717C06A2}] => (Allow) LPort=2869
FirewallRules: [{2C608AD6-F662-45C2-8566-693264975B12}] => (Allow) LPort=1900
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [TCP Query User{4C97F05F-CBD3-4D53-A6A9-DC81291FDA28}C:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Block) C:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
FirewallRules: [UDP Query User{B2EBDC24-AE5C-4E34-942D-2345845EBA07}C:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Block) C:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
FirewallRules: [{DADC40B9-9416-46A1-B3F0-C4F65B7885F5}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{5085B273-F7EE-4468-AB23-DF8456728582}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{C5E68B52-3996-4B38-AA53-A74034F727FA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7081D756-3AD4-4AEB-8187-A90597340046}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{46AE6FB3-F78F-40CD-84BF-34C3951F65D7}C:\hry\serious sam 3\steamapps\common\serious sam 3\bin\sam3.exe] => (Allow) C:\hry\serious sam 3\steamapps\common\serious sam 3\bin\sam3.exe
FirewallRules: [UDP Query User{463B906B-2433-4B67-8A11-43CBAD1FCAF7}C:\hry\serious sam 3\steamapps\common\serious sam 3\bin\sam3.exe] => (Allow) C:\hry\serious sam 3\steamapps\common\serious sam 3\bin\sam3.exe
FirewallRules: [{B705BC31-F587-4AC3-A696-F0D3DA833378}] => (Block) C:\hry\serious sam 3\steamapps\common\serious sam 3\bin\sam3.exe
FirewallRules: [{4717B550-BAAB-4EE0-9DE4-4D883155BF74}] => (Block) C:\hry\serious sam 3\steamapps\common\serious sam 3\bin\sam3.exe
FirewallRules: [TCP Query User{1E5F4244-62B5-4894-96AA-A86361703090}C:\hry\alien isolation\ai.exe] => (Allow) C:\hry\alien isolation\ai.exe
FirewallRules: [UDP Query User{82C1C7A9-3482-4CEB-B5EE-512C74266E38}C:\hry\alien isolation\ai.exe] => (Allow) C:\hry\alien isolation\ai.exe
FirewallRules: [{5556721D-D9C6-4DF3-B046-38A86416A9EB}] => (Block) C:\hry\alien isolation\ai.exe
FirewallRules: [{E4C3D847-DAAA-47E8-92F4-C8611A308D10}] => (Block) C:\hry\alien isolation\ai.exe
FirewallRules: [{FBA01A03-A53D-4339-A9F2-41D6694880C6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{A73584EF-FD56-413D-AC65-6D58EBBBF043}C:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Allow) C:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
FirewallRules: [UDP Query User{445CAA52-0779-4A2C-BB5A-E8E3D9A9C0F8}C:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Allow) C:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
==================== Restore Points =========================
07-01-2016 13:41:21 Revo Uninstaller's restore point - Doom 3 Gold Edition HD
07-01-2016 13:43:53 Revo Uninstaller's restore point - Metro 2033 - Redux
07-01-2016 14:00:58 Revo Uninstaller's restore point - ARMA 3 version 1.50.131.969
09-01-2016 15:37:03 Windows Update
09-01-2016 16:53:51 Windows Update
09-01-2016 17:58:09 Windows Update
09-01-2016 22:04:39 Revo Uninstaller's restore point - BS.Player FREE
10-01-2016 00:11:07 Revo Uninstaller's restore point - CrystalDiskInfo 6.5.2
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (01/09/2016 05:37:24 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Generování kontextu aktivace pro C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2 na řádku C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Součást 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Error: (01/09/2016 05:26:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program wusa.exe verze 6.1.7600.16385 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 888
Čas spuštění: 01d14af33a201552
Čas ukončení: 0
Cesta k aplikaci: C:\Windows\system32\wusa.exe
ID hlášení:
Error: (01/07/2016 02:03:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program CCleaner64.exe verze 5.12.0.5431 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 1754
Čas spuštění: 01d1494ba4c7f6ac
Čas ukončení: 0
Cesta k aplikaci: C:\Program Files\CCleaner\CCleaner64.exe
ID hlášení: 0d24cf17-b53f-11e5-b7b8-ec55f9e929bb
Error: (12/23/2015 07:40:41 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro Avast.VC110.DebugCRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1"1 se nezdařilo.
Závislé sestavení Avast.VC110.DebugCRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (12/21/2015 06:08:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: vlc.exe, verze: 2.2.1.0, časové razítko: 0x00000004
Název chybujícího modulu: libqt4_plugin.dll, verze: 2.2.1.0, časové razítko: 0x00020002
Kód výjimky: 0x40000015
Posun chyby: 0x007ca10a
ID chybujícího procesu: 0x127c
Čas spuštění chybující aplikace: 0xvlc.exe0
Cesta k chybující aplikaci: vlc.exe1
Cesta k chybujícímu modulu: vlc.exe2
ID zprávy: vlc.exe3
Error: (12/17/2015 12:45:45 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Index nebyl inicializován.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (12/17/2015 12:45:45 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.
Kontext: aplikace Windows
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (12/17/2015 12:45:45 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt indexování nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (12/17/2015 12:45:45 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)
Error: (12/17/2015 12:45:17 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.JetPropStore> nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
System errors:
=============
Error: (01/09/2016 06:01:46 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200d): Aktualizace Windows 7 Service Pack 1 pro systémy pro platformu x64 (KB976932).
Error: (01/09/2016 05:33:25 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x800706be): Oprava Hotfix pro systém Windows (KB947821).
Error: (01/09/2016 03:39:49 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200d): Aktualizace Windows 7 Service Pack 1 pro systémy pro platformu x64 (KB976932).
Error: (01/09/2016 03:06:59 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Windows Update se po přijetí pokynu pro vypnutí neukončila správně.
Error: (01/03/2016 12:13:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Live ID Sign-in Assistant neuspěla při spuštění v důsledku následující chyby:
%%109
Error: (01/03/2016 12:13:17 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Management & Security Application User Notification Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (01/03/2016 12:13:16 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Rapid Storage Technology byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (01/03/2016 12:13:16 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error: (01/03/2016 12:13:15 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Live ID Sign-in Assistant byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (01/03/2016 12:13:15 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba CamMonitor byla neočekávaně ukončena. Tento stav nastal již 1krát.
CodeIntegrity:
===================================
Date: 2013-05-15 00:52:32.388
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\sfhlp02.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-05-15 00:52:32.283
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\sfhlp02.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-02-09 03:57:37.058
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-02-09 03:57:36.964
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-02-09 03:47:07.552
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2013-02-09 03:47:07.443
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5 CPU M 480 @ 2.67GHz
Percentage of memory in use: 44%
Total physical RAM: 3950.1 MB
Available physical RAM: 2201.7 MB
Total Virtual: 7898.34 MB
Available Virtual: 5998.31 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:450.56 GB) (Free:172.94 GB) NTFS
Drive e: () (Removable) (Total:14.62 GB) (Free:2.87 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: F96BCECB)
Partition 1: (Not Active) - (Size=15.1 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450.6 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 14.6 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt ============================
Re: prosím kontrolu
Poprosim jeste o obsah druheho logu FRST.txt 
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: prosím kontrolu
Tu je
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:09-01-2015
Ran by honza (administrator) on MARTIN (11-01-2016 01:11:33)
Running from C:\Users\honza\Desktop
Loaded Profiles: honza (Available Profiles: honza & Guest)
Platform: Windows 7 Home Premium (X64) Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Macrovision Corporation) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2015-12-06] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e162d644-151a-11e5-b93d-ec55f9e929bb} - E:\setup.exe
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e162d647-151a-11e5-b93d-ec55f9e929bb} - G:\m.exe
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e17b9178-a0e5-11e4-a51d-ec55f9e929bb} - J:\HiSuiteDownLoader.exe
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - %SystemRoot%\system32\wpdshserviceobj.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-12-06] (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{25559BA7-6EF9-45A1-8A74-5DE0661ACE12}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{A3BBF46B-A159-4BF4-B070-5D52FC44EA02}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{A54718C9-FD98-4D35-9BC5-17E8F314811B}: [DhcpNameServer] 192.168.100.254
Tcpip\..\Interfaces\{D814BF20-A917-41A7-BDAA-43E59F9CD8E7}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{FCCB9CFF-7B76-46F5-A504-F6C1EE5BE0D5}: [DhcpNameServer] 192.168.43.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-866132977-3524765048-2583430549-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-18] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-18] (AVAST Software)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
FireFox:
========
FF ProfilePath: C:\Users\honza\AppData\Roaming\Mozilla\Firefox\Profiles\wh42cenw.default
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2016-01-02] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-09-19] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2016-01-02] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1222172.dll [2015-11-19] (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-09-19] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-866132977-3524765048-2583430549-1000: @tools.google.com/Google Update;version=3 -> C:\Users\honza\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll [2013-12-07] (Google Inc.)
FF Plugin HKU\S-1-5-21-866132977-3524765048-2583430549-1000: @tools.google.com/Google Update;version=9 -> C:\Users\honza\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll [2013-12-07] (Google Inc.)
FF Plugin HKU\S-1-5-21-866132977-3524765048-2583430549-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [No File]
FF Extension: Money Viking - C:\Users\honza\AppData\Roaming\Mozilla\Firefox\Profiles\wh42cenw.default\Extensions\{8ef52718-ef02-42dc-991a-dd0e9f7bbf20}.xpi [2015-12-06] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-06]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-12-06]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-08]
CHR Extension: (Dokumenty Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-09]
CHR Extension: (Disk Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Vyhledávání Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Tabulky Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-08]
CHR Extension: (Dokumenty Google offline) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-17]
CHR Extension: (Avast Online Security) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-31]
CHR Extension: (Gmail) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-09]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-18]
StartMenuInternet: Google Chrome.B25RZPGWCXT6AHLMJWE2AJ4DJU - C:\Users\Guest\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2015-12-06] (AVAST Software)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1272560 2015-05-21] (Disc Soft Ltd)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2056376 2015-11-20] (Comodo)
R2 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
S3 ssinstall; C:\Windows\SysWOW64\ssins.exe [2317848 2013-03-03] ()
R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [851824 2010-06-17] (Sony Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
S3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [X]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-12-06] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-12-19] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-12-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-12-06] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1055560 2015-12-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [451040 2015-12-19] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2015-12-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-12-06] (AVAST Software)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-06-17] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [10326784 2010-06-24] (Intel Corporation) [File not signed]
S3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [271872 2010-06-24] (Intel(R) Corporation) [File not signed]
S3 massfilter_hs; C:\Windows\System32\drivers\massfilter_hs.sys [18456 2011-03-07] (HandSet Incorporated)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S4 sfdrv01; C:\Windows\System32\drivers\sfdrv01.sys [69120 2006-03-26] (Protection Technology (StarForce)) [File not signed]
S4 sfhlp02; C:\Windows\System32\drivers\sfhlp02.sys [7168 2006-03-13] (Protection Technology (StarForce)) [File not signed]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 NLNdisMP; system32\DRIVERS\nlndis.sys [X]
S3 NLNdisPT; system32\DRIVERS\nlndis.sys [X]
U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
S3 vserial; System32\DRIVERS\vserial.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\BatteryCare\WinRing0x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-01-11 01:11 - 2016-01-11 01:11 - 00016111 ____C C:\Users\honza\Desktop\FRST.txt
2016-01-10 19:59 - 2016-01-10 19:59 - 02370560 ____C (Farbar) C:\Users\honza\Desktop\FRST64.exe
2016-01-09 22:43 - 2016-01-09 22:43 - 00000000 ___DC C:\ProgramData\Windows Genuine Advantage
2016-01-09 22:01 - 2016-01-09 22:05 - 00000000 ___DC C:\Program Files (x86)\Webteh
2016-01-09 18:00 - 2016-01-09 18:00 - 00000000 ___DC C:\Windows\system32\SPReview
2016-01-09 17:25 - 2016-01-09 17:43 - 1507802282 ____C C:\Users\honza\Downloads\Spooks.The.Greater.Good.2015.480p.BDRip.XviD.AC3.CZ.avi
2016-01-09 17:03 - 2016-01-09 17:03 - 00985600 ____C C:\Users\honza\Desktop\MicrosoftFixit50123.msi
2016-01-09 16:17 - 2016-01-09 16:26 - 564744309 ____C C:\Users\honza\Desktop\Windows6.1-KB947821-v34-x64.msu
2016-01-09 15:30 - 2016-01-09 15:36 - 55915216 ____C (Microsoft Corporation) C:\Users\honza\Desktop\IE11-Windows6.1-x64-en-us.exe
2016-01-03 00:08 - 2016-01-09 15:44 - 00000000 ___DC C:\AdwCleaner
2016-01-02 21:53 - 2016-01-11 01:11 - 00000000 ___DC C:\FRST
2016-01-02 15:32 - 2016-01-02 15:35 - 00000000 ___DC C:\Users\honza\Downloads\série 5 (7.ep)
2016-01-02 15:21 - 2016-01-02 16:09 - 00000000 ___DC C:\Users\honza\Downloads\Ancient Discoveries serie 1
2016-01-02 14:35 - 2016-01-02 14:36 - 00000000 ___DC C:\Users\honza\Downloads\Na ostrově s Bearem Gryllsem 1. Séria
2016-01-02 13:27 - 2016-01-02 13:29 - 00000000 ___DC C:\Users\honza\Downloads\The Martian 2015 720p BluRay x264-88keyz
2015-12-28 14:46 - 2015-12-28 14:46 - 00121680 ____C C:\Users\honza\AppData\Local\GDIPFONTCACHEV1.DAT
2015-12-17 12:44 - 2015-12-17 12:45 - 00461784 ____C C:\Windows\system32\FNTCACHE.DAT
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-01-11 00:44 - 2013-10-12 07:20 - 00000952 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-11 00:24 - 2013-01-30 15:22 - 00000000 ___DC C:\Users\honza\AppData\Roaming\vlc
2016-01-10 20:07 - 2009-07-14 04:20 - 00000000 ___DC C:\Windows
2016-01-10 19:46 - 2013-10-12 07:20 - 00000948 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-10 01:19 - 2015-10-15 09:51 - 00000958 ____C C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-01-10 00:45 - 2009-07-14 05:45 - 00015984 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-01-10 00:45 - 2009-07-14 05:45 - 00015984 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-01-10 00:15 - 2010-10-14 21:36 - 00667902 ____C C:\Windows\system32\perfh005.dat
2016-01-10 00:15 - 2010-10-14 21:36 - 00141048 ____C C:\Windows\system32\perfc005.dat
2016-01-10 00:15 - 2009-07-14 06:13 - 01581054 ____C C:\Windows\system32\PerfStringBackup.INI
2016-01-10 00:15 - 2009-07-14 04:20 - 00000000 ___DC C:\Windows\inf
2016-01-10 00:09 - 2009-07-14 06:08 - 00000006 ___HC C:\Windows\Tasks\SA.DAT
2016-01-09 22:05 - 2013-02-08 22:17 - 00000000 ___DC C:\Users\honza\AppData\Roaming\BSplayer
2016-01-09 21:24 - 2013-01-22 14:16 - 00000000 __RDC C:\Users\honza\Desktop\Nová složka
2016-01-09 17:47 - 2013-05-30 23:42 - 00000000 ___DC C:\Users\honza\AppData\Roaming\uTorrent
2016-01-09 15:16 - 2015-10-15 09:51 - 00003948 ____C C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-01-09 15:16 - 2013-03-02 03:37 - 00796864 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-01-09 15:16 - 2012-01-25 11:21 - 00142528 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-07 14:01 - 2015-10-30 19:06 - 00000000 ___DC C:\Program Files (x86)\Bohemia
2016-01-07 13:45 - 2015-10-30 20:09 - 00000000 ___DC C:\Users\honza\AppData\Local\Arma 3
2016-01-07 13:45 - 2013-01-22 15:17 - 00000000 ___DC C:\Users\honza\Desktop\hry
2016-01-07 13:44 - 2012-11-18 11:30 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hry
2016-01-07 13:44 - 2012-11-13 15:44 - 00000000 ___DC C:\Hry
2016-01-06 09:48 - 2013-11-13 00:19 - 00004182 ____C C:\Windows\System32\Tasks\avast! Emergency Update
2016-01-02 19:01 - 2013-03-15 03:04 - 00000000 ___DC C:\Program Files\Microsoft Silverlight
2016-01-02 19:01 - 2013-03-15 03:04 - 00000000 ___DC C:\Program Files (x86)\Microsoft Silverlight
2016-01-02 13:22 - 2013-03-15 03:06 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-01-02 13:21 - 2013-07-15 02:01 - 00000000 ___DC C:\Windows\system32\MRT
2016-01-02 13:10 - 2011-10-25 00:52 - 140158008 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-12-21 18:08 - 2015-05-12 13:00 - 00000000 ___DC C:\Users\honza\AppData\Local\CrashDumps
2015-12-19 08:55 - 2013-11-27 14:16 - 00451040 ____C (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2015-12-19 08:55 - 2013-11-27 14:16 - 00097648 ____C (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2015-12-14 20:46 - 2015-07-07 02:36 - 00000000 ___DC C:\Users\honza\AppData\Roaming\Media Player Classic
==================== Files in the root of some directories =======
2002-08-29 18:33 - 2002-08-29 18:33 - 0319488 ___RC () C:\Users\honza\AppData\Roaming\MafiaSetup.exe
2013-12-12 23:47 - 2013-12-12 23:48 - 0039073 ____C () C:\Users\honza\AppData\Local\Perfmon.PerfmonCfg
2013-11-27 23:06 - 2013-11-27 23:06 - 0007668 ____C () C:\Users\honza\AppData\Local\Resmon.ResmonCfg
2015-06-01 18:25 - 2015-06-01 18:25 - 0000000 ____C () C:\Users\honza\AppData\Local\{2136A391-B028-47DF-A112-8FCA991D85B2}
2013-09-06 22:07 - 2013-09-06 22:07 - 0030621 ____C () C:\ProgramData\1378501603.bdinstall.bin
2013-09-06 22:08 - 2013-09-06 22:08 - 0029600 ____C () C:\ProgramData\1378501699.1000.bin
2013-09-06 22:08 - 2013-09-06 22:08 - 0000798 ____C () C:\ProgramData\1378501699.2376.bin
2013-09-06 22:08 - 2013-09-06 22:08 - 0002052 ____C () C:\ProgramData\1378501699.4508.bin
2013-09-06 22:10 - 2013-09-06 22:10 - 0030489 ____C () C:\ProgramData\1378501837.bdinstall.bin
2013-09-06 22:19 - 2013-09-06 22:19 - 0195664 ____C () C:\ProgramData\1378502170.bdinstall.bin
2013-10-07 09:58 - 2013-10-07 09:58 - 0022988 ____C () C:\ProgramData\1381136314.bdinstall.bin
2013-10-07 10:01 - 2013-10-07 10:01 - 0079615 ____C () C:\ProgramData\1381136320.bdinstall.bin
2013-11-02 13:49 - 2013-11-02 13:49 - 0229590 ____C () C:\ProgramData\1383396454.bdinstall.bin
2013-11-02 13:53 - 2013-11-02 13:53 - 0037592 ____C () C:\ProgramData\1383396818.bdinstall.bin
2013-11-02 14:14 - 2013-11-02 14:14 - 0174510 ____C () C:\ProgramData\1383396823.bdinstall.bin
2013-11-02 14:37 - 2013-11-02 14:37 - 0037842 ____C () C:\ProgramData\1383399436.bdinstall.bin
2013-11-02 14:38 - 2013-11-02 14:38 - 0095257 ____C () C:\ProgramData\1383399441.bdinstall.bin
Some files in TEMP:
====================
C:\Users\honza\AppData\Local\Temp\Uninstall.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-01-09 16:10
==================== End of FRST.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:09-01-2015
Ran by honza (administrator) on MARTIN (11-01-2016 01:11:33)
Running from C:\Users\honza\Desktop
Loaded Profiles: honza (Available Profiles: honza & Guest)
Platform: Windows 7 Home Premium (X64) Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Macrovision Corporation) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2015-12-06] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e162d644-151a-11e5-b93d-ec55f9e929bb} - E:\setup.exe
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e162d647-151a-11e5-b93d-ec55f9e929bb} - G:\m.exe
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e17b9178-a0e5-11e4-a51d-ec55f9e929bb} - J:\HiSuiteDownLoader.exe
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - %SystemRoot%\system32\wpdshserviceobj.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-12-06] (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{25559BA7-6EF9-45A1-8A74-5DE0661ACE12}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{A3BBF46B-A159-4BF4-B070-5D52FC44EA02}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{A54718C9-FD98-4D35-9BC5-17E8F314811B}: [DhcpNameServer] 192.168.100.254
Tcpip\..\Interfaces\{D814BF20-A917-41A7-BDAA-43E59F9CD8E7}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{FCCB9CFF-7B76-46F5-A504-F6C1EE5BE0D5}: [DhcpNameServer] 192.168.43.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-866132977-3524765048-2583430549-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-18] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-18] (AVAST Software)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
FireFox:
========
FF ProfilePath: C:\Users\honza\AppData\Roaming\Mozilla\Firefox\Profiles\wh42cenw.default
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2016-01-02] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-09-19] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2016-01-02] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1222172.dll [2015-11-19] (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-09-19] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-866132977-3524765048-2583430549-1000: @tools.google.com/Google Update;version=3 -> C:\Users\honza\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll [2013-12-07] (Google Inc.)
FF Plugin HKU\S-1-5-21-866132977-3524765048-2583430549-1000: @tools.google.com/Google Update;version=9 -> C:\Users\honza\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll [2013-12-07] (Google Inc.)
FF Plugin HKU\S-1-5-21-866132977-3524765048-2583430549-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [No File]
FF Extension: Money Viking - C:\Users\honza\AppData\Roaming\Mozilla\Firefox\Profiles\wh42cenw.default\Extensions\{8ef52718-ef02-42dc-991a-dd0e9f7bbf20}.xpi [2015-12-06] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-06]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-12-06]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-08]
CHR Extension: (Dokumenty Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-09]
CHR Extension: (Disk Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Vyhledávání Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Tabulky Google) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-08]
CHR Extension: (Dokumenty Google offline) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-17]
CHR Extension: (Avast Online Security) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-31]
CHR Extension: (Gmail) - C:\Users\honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-09]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-18]
StartMenuInternet: Google Chrome.B25RZPGWCXT6AHLMJWE2AJ4DJU - C:\Users\Guest\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2015-12-06] (AVAST Software)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1272560 2015-05-21] (Disc Soft Ltd)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2056376 2015-11-20] (Comodo)
R2 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
S3 ssinstall; C:\Windows\SysWOW64\ssins.exe [2317848 2013-03-03] ()
R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [851824 2010-06-17] (Sony Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
S3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [X]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-12-06] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-12-19] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-12-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-12-06] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1055560 2015-12-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [451040 2015-12-19] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2015-12-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-12-06] (AVAST Software)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-06-17] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [10326784 2010-06-24] (Intel Corporation) [File not signed]
S3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [271872 2010-06-24] (Intel(R) Corporation) [File not signed]
S3 massfilter_hs; C:\Windows\System32\drivers\massfilter_hs.sys [18456 2011-03-07] (HandSet Incorporated)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S4 sfdrv01; C:\Windows\System32\drivers\sfdrv01.sys [69120 2006-03-26] (Protection Technology (StarForce)) [File not signed]
S4 sfhlp02; C:\Windows\System32\drivers\sfhlp02.sys [7168 2006-03-13] (Protection Technology (StarForce)) [File not signed]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 NLNdisMP; system32\DRIVERS\nlndis.sys [X]
S3 NLNdisPT; system32\DRIVERS\nlndis.sys [X]
U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
S3 vserial; System32\DRIVERS\vserial.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\BatteryCare\WinRing0x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-01-11 01:11 - 2016-01-11 01:11 - 00016111 ____C C:\Users\honza\Desktop\FRST.txt
2016-01-10 19:59 - 2016-01-10 19:59 - 02370560 ____C (Farbar) C:\Users\honza\Desktop\FRST64.exe
2016-01-09 22:43 - 2016-01-09 22:43 - 00000000 ___DC C:\ProgramData\Windows Genuine Advantage
2016-01-09 22:01 - 2016-01-09 22:05 - 00000000 ___DC C:\Program Files (x86)\Webteh
2016-01-09 18:00 - 2016-01-09 18:00 - 00000000 ___DC C:\Windows\system32\SPReview
2016-01-09 17:25 - 2016-01-09 17:43 - 1507802282 ____C C:\Users\honza\Downloads\Spooks.The.Greater.Good.2015.480p.BDRip.XviD.AC3.CZ.avi
2016-01-09 17:03 - 2016-01-09 17:03 - 00985600 ____C C:\Users\honza\Desktop\MicrosoftFixit50123.msi
2016-01-09 16:17 - 2016-01-09 16:26 - 564744309 ____C C:\Users\honza\Desktop\Windows6.1-KB947821-v34-x64.msu
2016-01-09 15:30 - 2016-01-09 15:36 - 55915216 ____C (Microsoft Corporation) C:\Users\honza\Desktop\IE11-Windows6.1-x64-en-us.exe
2016-01-03 00:08 - 2016-01-09 15:44 - 00000000 ___DC C:\AdwCleaner
2016-01-02 21:53 - 2016-01-11 01:11 - 00000000 ___DC C:\FRST
2016-01-02 15:32 - 2016-01-02 15:35 - 00000000 ___DC C:\Users\honza\Downloads\série 5 (7.ep)
2016-01-02 15:21 - 2016-01-02 16:09 - 00000000 ___DC C:\Users\honza\Downloads\Ancient Discoveries serie 1
2016-01-02 14:35 - 2016-01-02 14:36 - 00000000 ___DC C:\Users\honza\Downloads\Na ostrově s Bearem Gryllsem 1. Séria
2016-01-02 13:27 - 2016-01-02 13:29 - 00000000 ___DC C:\Users\honza\Downloads\The Martian 2015 720p BluRay x264-88keyz
2015-12-28 14:46 - 2015-12-28 14:46 - 00121680 ____C C:\Users\honza\AppData\Local\GDIPFONTCACHEV1.DAT
2015-12-17 12:44 - 2015-12-17 12:45 - 00461784 ____C C:\Windows\system32\FNTCACHE.DAT
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-01-11 00:44 - 2013-10-12 07:20 - 00000952 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-11 00:24 - 2013-01-30 15:22 - 00000000 ___DC C:\Users\honza\AppData\Roaming\vlc
2016-01-10 20:07 - 2009-07-14 04:20 - 00000000 ___DC C:\Windows
2016-01-10 19:46 - 2013-10-12 07:20 - 00000948 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-10 01:19 - 2015-10-15 09:51 - 00000958 ____C C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-01-10 00:45 - 2009-07-14 05:45 - 00015984 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-01-10 00:45 - 2009-07-14 05:45 - 00015984 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-01-10 00:15 - 2010-10-14 21:36 - 00667902 ____C C:\Windows\system32\perfh005.dat
2016-01-10 00:15 - 2010-10-14 21:36 - 00141048 ____C C:\Windows\system32\perfc005.dat
2016-01-10 00:15 - 2009-07-14 06:13 - 01581054 ____C C:\Windows\system32\PerfStringBackup.INI
2016-01-10 00:15 - 2009-07-14 04:20 - 00000000 ___DC C:\Windows\inf
2016-01-10 00:09 - 2009-07-14 06:08 - 00000006 ___HC C:\Windows\Tasks\SA.DAT
2016-01-09 22:05 - 2013-02-08 22:17 - 00000000 ___DC C:\Users\honza\AppData\Roaming\BSplayer
2016-01-09 21:24 - 2013-01-22 14:16 - 00000000 __RDC C:\Users\honza\Desktop\Nová složka
2016-01-09 17:47 - 2013-05-30 23:42 - 00000000 ___DC C:\Users\honza\AppData\Roaming\uTorrent
2016-01-09 15:16 - 2015-10-15 09:51 - 00003948 ____C C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-01-09 15:16 - 2013-03-02 03:37 - 00796864 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-01-09 15:16 - 2012-01-25 11:21 - 00142528 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-07 14:01 - 2015-10-30 19:06 - 00000000 ___DC C:\Program Files (x86)\Bohemia
2016-01-07 13:45 - 2015-10-30 20:09 - 00000000 ___DC C:\Users\honza\AppData\Local\Arma 3
2016-01-07 13:45 - 2013-01-22 15:17 - 00000000 ___DC C:\Users\honza\Desktop\hry
2016-01-07 13:44 - 2012-11-18 11:30 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hry
2016-01-07 13:44 - 2012-11-13 15:44 - 00000000 ___DC C:\Hry
2016-01-06 09:48 - 2013-11-13 00:19 - 00004182 ____C C:\Windows\System32\Tasks\avast! Emergency Update
2016-01-02 19:01 - 2013-03-15 03:04 - 00000000 ___DC C:\Program Files\Microsoft Silverlight
2016-01-02 19:01 - 2013-03-15 03:04 - 00000000 ___DC C:\Program Files (x86)\Microsoft Silverlight
2016-01-02 13:22 - 2013-03-15 03:06 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-01-02 13:21 - 2013-07-15 02:01 - 00000000 ___DC C:\Windows\system32\MRT
2016-01-02 13:10 - 2011-10-25 00:52 - 140158008 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-12-21 18:08 - 2015-05-12 13:00 - 00000000 ___DC C:\Users\honza\AppData\Local\CrashDumps
2015-12-19 08:55 - 2013-11-27 14:16 - 00451040 ____C (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2015-12-19 08:55 - 2013-11-27 14:16 - 00097648 ____C (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2015-12-14 20:46 - 2015-07-07 02:36 - 00000000 ___DC C:\Users\honza\AppData\Roaming\Media Player Classic
==================== Files in the root of some directories =======
2002-08-29 18:33 - 2002-08-29 18:33 - 0319488 ___RC () C:\Users\honza\AppData\Roaming\MafiaSetup.exe
2013-12-12 23:47 - 2013-12-12 23:48 - 0039073 ____C () C:\Users\honza\AppData\Local\Perfmon.PerfmonCfg
2013-11-27 23:06 - 2013-11-27 23:06 - 0007668 ____C () C:\Users\honza\AppData\Local\Resmon.ResmonCfg
2015-06-01 18:25 - 2015-06-01 18:25 - 0000000 ____C () C:\Users\honza\AppData\Local\{2136A391-B028-47DF-A112-8FCA991D85B2}
2013-09-06 22:07 - 2013-09-06 22:07 - 0030621 ____C () C:\ProgramData\1378501603.bdinstall.bin
2013-09-06 22:08 - 2013-09-06 22:08 - 0029600 ____C () C:\ProgramData\1378501699.1000.bin
2013-09-06 22:08 - 2013-09-06 22:08 - 0000798 ____C () C:\ProgramData\1378501699.2376.bin
2013-09-06 22:08 - 2013-09-06 22:08 - 0002052 ____C () C:\ProgramData\1378501699.4508.bin
2013-09-06 22:10 - 2013-09-06 22:10 - 0030489 ____C () C:\ProgramData\1378501837.bdinstall.bin
2013-09-06 22:19 - 2013-09-06 22:19 - 0195664 ____C () C:\ProgramData\1378502170.bdinstall.bin
2013-10-07 09:58 - 2013-10-07 09:58 - 0022988 ____C () C:\ProgramData\1381136314.bdinstall.bin
2013-10-07 10:01 - 2013-10-07 10:01 - 0079615 ____C () C:\ProgramData\1381136320.bdinstall.bin
2013-11-02 13:49 - 2013-11-02 13:49 - 0229590 ____C () C:\ProgramData\1383396454.bdinstall.bin
2013-11-02 13:53 - 2013-11-02 13:53 - 0037592 ____C () C:\ProgramData\1383396818.bdinstall.bin
2013-11-02 14:14 - 2013-11-02 14:14 - 0174510 ____C () C:\ProgramData\1383396823.bdinstall.bin
2013-11-02 14:37 - 2013-11-02 14:37 - 0037842 ____C () C:\ProgramData\1383399436.bdinstall.bin
2013-11-02 14:38 - 2013-11-02 14:38 - 0095257 ____C () C:\ProgramData\1383399441.bdinstall.bin
Some files in TEMP:
====================
C:\Users\honza\AppData\Local\Temp\Uninstall.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-01-09 16:10
==================== End of FRST.txt ============================
Re: prosím kontrolu
- Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
- ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
- znovu spustte FRST a kliknete na Fix
- po restartu bude na plose ulozen fixlog, jehoz obsah vlozte do pristi odpovedi
Kód: Vybrat vše
Start CreateRestorePoint: CloseProcesses: HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e162d644-151a-11e5-b93d-ec55f9e929bb} - E:\setup.exe HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e162d647-151a-11e5-b93d-ec55f9e929bb} - G:\m.exe HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e17b9178-a0e5-11e4-a51d-ec55f9e929bb} - J:\HiSuiteDownLoader.exe HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X] S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X] S3 Huawei; system32\DRIVERS\ewdcsc.sys [X] S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X] S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X] S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X] S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X] S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X] S3 NLNdisMP; system32\DRIVERS\nlndis.sys [X] S3 NLNdisPT; system32\DRIVERS\nlndis.sys [X] U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X] S3 vserial; System32\DRIVERS\vserial.sys [X] S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\BatteryCare\WinRing0x64.sys [X] 2016-01-11 01:11 - 2016-01-11 01:11 - 00016111 ____C C:\Users\honza\Desktop\FRST.txt 2016-01-03 00:08 - 2016-01-09 15:44 - 00000000 ___DC C:\AdwCleaner Task: {038E8B02-CF98-4F23-96C0-47506DA3FF32} - System32\Tasks\{62F2731F-C0C5-4655-B704-97F16A2D30C8} => E:\speed.exe Task: {0820AD86-6A96-42A0-97FF-AF04FC9C499A} - System32\Tasks\{2476AC8E-4403-4380-8C98-5ACFE8A5B898} => E:\speed.exe Task: {0A276386-671D-40C4-802A-BE59DF71DD3B} - System32\Tasks\{C96CBB7B-DA38-4609-B31F-6A638059D1B9} => pcalua.exe -a C:\Users\honza\AppData\Local\Temp\Temp1_ATI_Graphics_Driver_8.672.1.3.zip\ATI_Graphics_Driver_8.672.1.3\Setup.exe Task: {14862399-77ED-47FC-BE79-722882F86175} - System32\Tasks\{219711C9-A59C-49E1-B68A-2BA155747DF1} => pcalua.exe -a E:\aocsetup.exe -d E:\ -c /autorun Task: {1CC59457-AEE0-43F3-BA26-A6B4B39232EB} - System32\Tasks\{23769300-918C-41C1-A76A-E084436E86E5} => pcalua.exe -a "D:\data\Dragon Age 2_code.exe" -d D:\data Task: {52420AB4-F673-4E34-A1F9-8E87B26F99CF} - System32\Tasks\{259D55C9-E2C7-4AB8-BDF6-673A1FF5FA48} => E:\speed.exe Task: {5BB2A840-3646-4352-91DD-46E9AC75FD48} - System32\Tasks\{953CF3B4-A62E-4F55-B2CE-BF9BAAA61DDA} => pcalua.exe -a G:\Mafia2.part01.exe -d G:\ Task: {69954962-0643-4B34-A6D0-6310827AF2E0} - System32\Tasks\{ECFE1310-6B5A-4A47-8605-A276F6D5425C} => pcalua.exe -a E:\aoesetup.exe -d E:\ -c /autorun Task: {842F71E9-F456-4007-B37B-641AA021D6E4} - System32\Tasks\{A888A24B-7E48-4CF4-AB3A-6DB7580B8252} => E:\speed.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000Core.job => C:\Users\honza\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000UA.job => C:\Users\honza\AppData\Local\Google\Update\GoogleUpdate.exe Hosts: EmptyTemp: End
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: prosím kontrolu
Zde je
Fix result of Farbar Recovery Scan Tool (x64) Version:09-01-2015
Ran by honza (2016-01-11 01:38:21) Run:1
Running from C:\Users\honza\Desktop
Loaded Profiles: honza (Available Profiles: honza & Guest)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e162d644-151a-11e5-b93d-ec55f9e929bb} - E:\setup.exe
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e162d647-151a-11e5-b93d-ec55f9e929bb} - G:\m.exe
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e17b9178-a0e5-11e4-a51d-ec55f9e929bb} - J:\HiSuiteDownLoader.exe
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 NLNdisMP; system32\DRIVERS\nlndis.sys [X]
S3 NLNdisPT; system32\DRIVERS\nlndis.sys [X]
U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
S3 vserial; System32\DRIVERS\vserial.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\BatteryCare\WinRing0x64.sys [X]
2016-01-11 01:11 - 2016-01-11 01:11 - 00016111 ____C C:\Users\honza\Desktop\FRST.txt
2016-01-03 00:08 - 2016-01-09 15:44 - 00000000 ___DC C:\AdwCleaner
Task: {038E8B02-CF98-4F23-96C0-47506DA3FF32} - System32\Tasks\{62F2731F-C0C5-4655-B704-97F16A2D30C8} => E:\speed.exe
Task: {0820AD86-6A96-42A0-97FF-AF04FC9C499A} - System32\Tasks\{2476AC8E-4403-4380-8C98-5ACFE8A5B898} => E:\speed.exe
Task: {0A276386-671D-40C4-802A-BE59DF71DD3B} - System32\Tasks\{C96CBB7B-DA38-4609-B31F-6A638059D1B9} => pcalua.exe -a C:\Users\honza\AppData\Local\Temp\Temp1_ATI_Graphics_Driver_8.672.1.3.zip\ATI_Graphics_Driver_8.672.1.3\Setup.exe
Task: {14862399-77ED-47FC-BE79-722882F86175} - System32\Tasks\{219711C9-A59C-49E1-B68A-2BA155747DF1} => pcalua.exe -a E:\aocsetup.exe -d E:\ -c /autorun
Task: {1CC59457-AEE0-43F3-BA26-A6B4B39232EB} - System32\Tasks\{23769300-918C-41C1-A76A-E084436E86E5} => pcalua.exe -a "D:\data\Dragon Age 2_code.exe" -d D:\data
Task: {52420AB4-F673-4E34-A1F9-8E87B26F99CF} - System32\Tasks\{259D55C9-E2C7-4AB8-BDF6-673A1FF5FA48} => E:\speed.exe
Task: {5BB2A840-3646-4352-91DD-46E9AC75FD48} - System32\Tasks\{953CF3B4-A62E-4F55-B2CE-BF9BAAA61DDA} => pcalua.exe -a G:\Mafia2.part01.exe -d G:\
Task: {69954962-0643-4B34-A6D0-6310827AF2E0} - System32\Tasks\{ECFE1310-6B5A-4A47-8605-A276F6D5425C} => pcalua.exe -a E:\aoesetup.exe -d E:\ -c /autorun
Task: {842F71E9-F456-4007-B37B-641AA021D6E4} - System32\Tasks\{A888A24B-7E48-4CF4-AB3A-6DB7580B8252} => E:\speed.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000Core.job => C:\Users\honza\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000UA.job => C:\Users\honza\AppData\Local\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
End
*****************
Restore point was successfully created.
Processes closed successfully.
"HKU\S-1-5-21-866132977-3524765048-2583430549-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e162d644-151a-11e5-b93d-ec55f9e929bb}" => key removed successfully
HKCR\CLSID\{e162d644-151a-11e5-b93d-ec55f9e929bb} => key not found.
"HKU\S-1-5-21-866132977-3524765048-2583430549-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e162d647-151a-11e5-b93d-ec55f9e929bb}" => key removed successfully
HKCR\CLSID\{e162d647-151a-11e5-b93d-ec55f9e929bb} => key not found.
"HKU\S-1-5-21-866132977-3524765048-2583430549-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e17b9178-a0e5-11e4-a51d-ec55f9e929bb}" => key removed successfully
HKCR\CLSID\{e17b9178-a0e5-11e4-a51d-ec55f9e929bb} => key not found.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => key removed successfully
HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value removed successfully
HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => value removed successfully
HKCR\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => key not found.
ew_hwusbdev => service removed successfully
ew_usbenumfilter => service removed successfully
Huawei => service removed successfully
huawei_cdcacm => service removed successfully
huawei_enumerator => service removed successfully
huawei_ext_ctrl => service removed successfully
huawei_wwanecm => service removed successfully
hwdatacard => service removed successfully
NLNdisMP => service removed successfully
NLNdisPT => service removed successfully
VBoxAswDrv => service could not remove
vserial => service removed successfully
WinRing0_1_2_0 => service removed successfully
C:\Users\honza\Desktop\FRST.txt => moved successfully
C:\AdwCleaner => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{038E8B02-CF98-4F23-96C0-47506DA3FF32}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{038E8B02-CF98-4F23-96C0-47506DA3FF32}" => key removed successfully
C:\Windows\System32\Tasks\{62F2731F-C0C5-4655-B704-97F16A2D30C8} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{62F2731F-C0C5-4655-B704-97F16A2D30C8}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0820AD86-6A96-42A0-97FF-AF04FC9C499A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0820AD86-6A96-42A0-97FF-AF04FC9C499A}" => key removed successfully
C:\Windows\System32\Tasks\{2476AC8E-4403-4380-8C98-5ACFE8A5B898} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2476AC8E-4403-4380-8C98-5ACFE8A5B898}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0A276386-671D-40C4-802A-BE59DF71DD3B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0A276386-671D-40C4-802A-BE59DF71DD3B}" => key removed successfully
C:\Windows\System32\Tasks\{C96CBB7B-DA38-4609-B31F-6A638059D1B9} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C96CBB7B-DA38-4609-B31F-6A638059D1B9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{14862399-77ED-47FC-BE79-722882F86175}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{14862399-77ED-47FC-BE79-722882F86175}" => key removed successfully
C:\Windows\System32\Tasks\{219711C9-A59C-49E1-B68A-2BA155747DF1} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{219711C9-A59C-49E1-B68A-2BA155747DF1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1CC59457-AEE0-43F3-BA26-A6B4B39232EB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1CC59457-AEE0-43F3-BA26-A6B4B39232EB}" => key removed successfully
C:\Windows\System32\Tasks\{23769300-918C-41C1-A76A-E084436E86E5} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{23769300-918C-41C1-A76A-E084436E86E5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{52420AB4-F673-4E34-A1F9-8E87B26F99CF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{52420AB4-F673-4E34-A1F9-8E87B26F99CF}" => key removed successfully
C:\Windows\System32\Tasks\{259D55C9-E2C7-4AB8-BDF6-673A1FF5FA48} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{259D55C9-E2C7-4AB8-BDF6-673A1FF5FA48}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5BB2A840-3646-4352-91DD-46E9AC75FD48}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5BB2A840-3646-4352-91DD-46E9AC75FD48}" => key removed successfully
C:\Windows\System32\Tasks\{953CF3B4-A62E-4F55-B2CE-BF9BAAA61DDA} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{953CF3B4-A62E-4F55-B2CE-BF9BAAA61DDA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{69954962-0643-4B34-A6D0-6310827AF2E0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{69954962-0643-4B34-A6D0-6310827AF2E0}" => key removed successfully
C:\Windows\System32\Tasks\{ECFE1310-6B5A-4A47-8605-A276F6D5425C} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{ECFE1310-6B5A-4A47-8605-A276F6D5425C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{842F71E9-F456-4007-B37B-641AA021D6E4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{842F71E9-F456-4007-B37B-641AA021D6E4}" => key removed successfully
C:\Windows\System32\Tasks\{A888A24B-7E48-4CF4-AB3A-6DB7580B8252} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A888A24B-7E48-4CF4-AB3A-6DB7580B8252}" => key removed successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000Core.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000UA.job => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 10.2 GB temporary data Removed.
The system needed a reboot.
==== End of Fixlog 01:39:40 ====
Fix result of Farbar Recovery Scan Tool (x64) Version:09-01-2015
Ran by honza (2016-01-11 01:38:21) Run:1
Running from C:\Users\honza\Desktop
Loaded Profiles: honza (Available Profiles: honza & Guest)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e162d644-151a-11e5-b93d-ec55f9e929bb} - E:\setup.exe
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e162d647-151a-11e5-b93d-ec55f9e929bb} - G:\m.exe
HKU\S-1-5-21-866132977-3524765048-2583430549-1000\...\MountPoints2: {e17b9178-a0e5-11e4-a51d-ec55f9e929bb} - J:\HiSuiteDownLoader.exe
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 NLNdisMP; system32\DRIVERS\nlndis.sys [X]
S3 NLNdisPT; system32\DRIVERS\nlndis.sys [X]
U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
S3 vserial; System32\DRIVERS\vserial.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\BatteryCare\WinRing0x64.sys [X]
2016-01-11 01:11 - 2016-01-11 01:11 - 00016111 ____C C:\Users\honza\Desktop\FRST.txt
2016-01-03 00:08 - 2016-01-09 15:44 - 00000000 ___DC C:\AdwCleaner
Task: {038E8B02-CF98-4F23-96C0-47506DA3FF32} - System32\Tasks\{62F2731F-C0C5-4655-B704-97F16A2D30C8} => E:\speed.exe
Task: {0820AD86-6A96-42A0-97FF-AF04FC9C499A} - System32\Tasks\{2476AC8E-4403-4380-8C98-5ACFE8A5B898} => E:\speed.exe
Task: {0A276386-671D-40C4-802A-BE59DF71DD3B} - System32\Tasks\{C96CBB7B-DA38-4609-B31F-6A638059D1B9} => pcalua.exe -a C:\Users\honza\AppData\Local\Temp\Temp1_ATI_Graphics_Driver_8.672.1.3.zip\ATI_Graphics_Driver_8.672.1.3\Setup.exe
Task: {14862399-77ED-47FC-BE79-722882F86175} - System32\Tasks\{219711C9-A59C-49E1-B68A-2BA155747DF1} => pcalua.exe -a E:\aocsetup.exe -d E:\ -c /autorun
Task: {1CC59457-AEE0-43F3-BA26-A6B4B39232EB} - System32\Tasks\{23769300-918C-41C1-A76A-E084436E86E5} => pcalua.exe -a "D:\data\Dragon Age 2_code.exe" -d D:\data
Task: {52420AB4-F673-4E34-A1F9-8E87B26F99CF} - System32\Tasks\{259D55C9-E2C7-4AB8-BDF6-673A1FF5FA48} => E:\speed.exe
Task: {5BB2A840-3646-4352-91DD-46E9AC75FD48} - System32\Tasks\{953CF3B4-A62E-4F55-B2CE-BF9BAAA61DDA} => pcalua.exe -a G:\Mafia2.part01.exe -d G:\
Task: {69954962-0643-4B34-A6D0-6310827AF2E0} - System32\Tasks\{ECFE1310-6B5A-4A47-8605-A276F6D5425C} => pcalua.exe -a E:\aoesetup.exe -d E:\ -c /autorun
Task: {842F71E9-F456-4007-B37B-641AA021D6E4} - System32\Tasks\{A888A24B-7E48-4CF4-AB3A-6DB7580B8252} => E:\speed.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000Core.job => C:\Users\honza\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000UA.job => C:\Users\honza\AppData\Local\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
End
*****************
Restore point was successfully created.
Processes closed successfully.
"HKU\S-1-5-21-866132977-3524765048-2583430549-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e162d644-151a-11e5-b93d-ec55f9e929bb}" => key removed successfully
HKCR\CLSID\{e162d644-151a-11e5-b93d-ec55f9e929bb} => key not found.
"HKU\S-1-5-21-866132977-3524765048-2583430549-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e162d647-151a-11e5-b93d-ec55f9e929bb}" => key removed successfully
HKCR\CLSID\{e162d647-151a-11e5-b93d-ec55f9e929bb} => key not found.
"HKU\S-1-5-21-866132977-3524765048-2583430549-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e17b9178-a0e5-11e4-a51d-ec55f9e929bb}" => key removed successfully
HKCR\CLSID\{e17b9178-a0e5-11e4-a51d-ec55f9e929bb} => key not found.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => key removed successfully
HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value removed successfully
HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => value removed successfully
HKCR\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => key not found.
ew_hwusbdev => service removed successfully
ew_usbenumfilter => service removed successfully
Huawei => service removed successfully
huawei_cdcacm => service removed successfully
huawei_enumerator => service removed successfully
huawei_ext_ctrl => service removed successfully
huawei_wwanecm => service removed successfully
hwdatacard => service removed successfully
NLNdisMP => service removed successfully
NLNdisPT => service removed successfully
VBoxAswDrv => service could not remove
vserial => service removed successfully
WinRing0_1_2_0 => service removed successfully
C:\Users\honza\Desktop\FRST.txt => moved successfully
C:\AdwCleaner => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{038E8B02-CF98-4F23-96C0-47506DA3FF32}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{038E8B02-CF98-4F23-96C0-47506DA3FF32}" => key removed successfully
C:\Windows\System32\Tasks\{62F2731F-C0C5-4655-B704-97F16A2D30C8} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{62F2731F-C0C5-4655-B704-97F16A2D30C8}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0820AD86-6A96-42A0-97FF-AF04FC9C499A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0820AD86-6A96-42A0-97FF-AF04FC9C499A}" => key removed successfully
C:\Windows\System32\Tasks\{2476AC8E-4403-4380-8C98-5ACFE8A5B898} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2476AC8E-4403-4380-8C98-5ACFE8A5B898}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0A276386-671D-40C4-802A-BE59DF71DD3B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0A276386-671D-40C4-802A-BE59DF71DD3B}" => key removed successfully
C:\Windows\System32\Tasks\{C96CBB7B-DA38-4609-B31F-6A638059D1B9} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C96CBB7B-DA38-4609-B31F-6A638059D1B9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{14862399-77ED-47FC-BE79-722882F86175}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{14862399-77ED-47FC-BE79-722882F86175}" => key removed successfully
C:\Windows\System32\Tasks\{219711C9-A59C-49E1-B68A-2BA155747DF1} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{219711C9-A59C-49E1-B68A-2BA155747DF1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1CC59457-AEE0-43F3-BA26-A6B4B39232EB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1CC59457-AEE0-43F3-BA26-A6B4B39232EB}" => key removed successfully
C:\Windows\System32\Tasks\{23769300-918C-41C1-A76A-E084436E86E5} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{23769300-918C-41C1-A76A-E084436E86E5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{52420AB4-F673-4E34-A1F9-8E87B26F99CF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{52420AB4-F673-4E34-A1F9-8E87B26F99CF}" => key removed successfully
C:\Windows\System32\Tasks\{259D55C9-E2C7-4AB8-BDF6-673A1FF5FA48} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{259D55C9-E2C7-4AB8-BDF6-673A1FF5FA48}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5BB2A840-3646-4352-91DD-46E9AC75FD48}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5BB2A840-3646-4352-91DD-46E9AC75FD48}" => key removed successfully
C:\Windows\System32\Tasks\{953CF3B4-A62E-4F55-B2CE-BF9BAAA61DDA} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{953CF3B4-A62E-4F55-B2CE-BF9BAAA61DDA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{69954962-0643-4B34-A6D0-6310827AF2E0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{69954962-0643-4B34-A6D0-6310827AF2E0}" => key removed successfully
C:\Windows\System32\Tasks\{ECFE1310-6B5A-4A47-8605-A276F6D5425C} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{ECFE1310-6B5A-4A47-8605-A276F6D5425C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{842F71E9-F456-4007-B37B-641AA021D6E4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{842F71E9-F456-4007-B37B-641AA021D6E4}" => key removed successfully
C:\Windows\System32\Tasks\{A888A24B-7E48-4CF4-AB3A-6DB7580B8252} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A888A24B-7E48-4CF4-AB3A-6DB7580B8252}" => key removed successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000Core.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-866132977-3524765048-2583430549-1000UA.job => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 10.2 GB temporary data Removed.
The system needed a reboot.
==== End of Fixlog 01:39:40 ====
Re: prosím kontrolu
Na zkousku odinstalutje avast, resatrtujte PC a pak se pokuste aktualizace (zejmena SP1) doinstalovat. Vyzkousejte to i v nouzovem rezimu.Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Přispějete na provoz fóra?