prosím o preventívnu kontrolu, notebook je trošku pomalší, najmä po prebudení zo spánku mu celkom trvá kým sa spamätá. Okrem toho ma pri návšteve stránky literarne.tricio.sk presmerovalo na nejakú podivnú stránku s clean PC Advance System Care
Aviru som musel vypnúť pred stiahnutím FRST a keď som ju po scane zas zapol, hneď odpratala FRST do karantény.
Vopred vďaka
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-09-2016
Ran by Minmi (administrator) on MINMI-HP (02-10-2016 14:16:26)
Running from C:\Users\Minmi\Desktop
Loaded Profiles: Minmi (Available Profiles: Minmi)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
() C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(ArcSoft, Inc.) C:\Windows\SysWOW64\ArcVCapRender\uArcCapture.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Development Company, L.P) C:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Portrait Displays, Inc) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdiSDKHelperx64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(forum.viry.cz) C:\Users\Minmi\Desktop\FRST-OlderVersion\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [764544 2012-09-14] (Qualcomm Atheros)
HKLM\...\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [127616 2012-09-14] (Atheros Communications)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2774256 2014-02-08] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2013-09-08] (IDT, Inc.)
HKLM\...\Run: [HPPowerAssistant] => C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [2945080 2011-09-12] (Hewlett-Packard Company)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [830064 2016-09-13] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [60136 2016-08-19] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc.)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\DeviceNP: C:\Windows\SysWOW64\DeviceNP.dll [2011-02-04] (Hewlett-Packard Company)
HKU\S-1-5-21-2934419145-1383663255-327153009-1002\...\Run: [Google Update] => C:\Users\Minmi\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-09-06] (Google Inc.)
HKU\S-1-5-21-2934419145-1383663255-327153009-1002\...\MountPoints2: {79637908-f198-11e0-acbe-d0df9a83b246} - D:\SETUP.EXE
Lsa: [Notification Packages] EpePcNp64 DPPassFilter scecli
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{22B3E4C8-FE8D-423D-9CF1-7AE1AA67CFD5}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D21A25A4-1FB0-448D-84D5-6EC191DB4D91}: [DhcpNameServer] 195.34.133.21 212.186.211.21
Internet Explorer:
==================
HKU\S-1-5-21-2934419145-1383663255-327153009-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=CMNTDF
HKU\S-1-5-21-2934419145-1383663255-327153009-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=CMNTDF
SearchScopes: HKLM -> DefaultScope {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM -> {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM-x32 -> {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-2934419145-1383663255-327153009-1002 -> DefaultScope {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-2934419145-1383663255-327153009-1002 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKU\S-1-5-21-2934419145-1383663255-327153009-1002 -> {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-09-14] (Qualcomm Atheros Commnucations)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.)
BHO-x32: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-02-07] (Hewlett-Packard)
BHO-x32: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-07-27] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-03-17] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: Bing Bar BHO -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll [2010-08-14] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-03-17] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
Toolbar: HKLM-x32 - @C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll [2010-08-14] (Microsoft Corporation)
Toolbar: HKU\S-1-5-21-2934419145-1383663255-327153009-1002 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2011-01-04] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Minmi\AppData\Roaming\Mozilla\Firefox\Profiles\s1t6q2ot.default
FF Homepage: www.google.sk
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-09-13] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-13] ()
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-03-17] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-03-17] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll [2010-04-01] ( Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpWinExt,version=5.0 -> C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll [2010-08-14] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-09-23] (Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2934419145-1383663255-327153009-1002: @talk.google.com/GoogleTalkPlugin -> C:\Users\Minmi\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-2934419145-1383663255-327153009-1002: @talk.google.com/O1DPlugin -> C:\Users\Minmi\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-2934419145-1383663255-327153009-1002: @tools.google.com/Google Update;version=3 -> C:\Users\Minmi\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-2934419145-1383663255-327153009-1002: @tools.google.com/Google Update;version=9 -> C:\Users\Minmi\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF user.js: detected! => C:\Users\Minmi\AppData\Roaming\Mozilla\Firefox\Profiles\s1t6q2ot.default\user.js [2012-03-29]
FF Plugin ProgramFiles/Appdata: C:\Users\Minmi\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Minmi\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Extension: (Avira Browser Safety) - C:\Users\Minmi\AppData\Roaming\Mozilla\Firefox\Profiles\s1t6q2ot.default\Extensions\abs@avira.com [2016-10-01]
FF Extension: (Java Console) - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2016-09-26] [not signed]
FF Extension: (Java Console) - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2016-09-26] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: (DigitalPersona Extension) - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2011-05-10] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [msntoolbar@msn.com] - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\Firefox
FF Extension: (Bing Bar) - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\Firefox [2011-05-10] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{27182e60-b5f3-411c-b545-b44205977502}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension
FF Extension: (Search Helper Extension) - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension [2011-05-10] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension
FF Extension: (Default Manager) - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension [2011-05-10] [not signed]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [989696 2016-09-13] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [470600 2016-09-13] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [470600 2016-09-13] (Avira Operations GmbH & Co. KG)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [216192 2012-09-14] (Qualcomm Atheros Commnucations) [File not signed]
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [324304 2016-08-19] (Avira Operations GmbH & Co. KG)
R2 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [481104 2011-02-12] (DigitalPersona, Inc.)
S3 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [464480 2011-02-04] (Hewlett-Packard Company)
R3 HP ProtectTools Service; c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [36864 2011-01-12] (Hewlett-Packard Development Company, L.P) [File not signed]
R2 HPDayStarterService; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [133688 2011-01-28] (Hewlett-Packard Company)
R2 HPFSService; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [320000 2011-02-07] (Hewlett-Packard) [File not signed]
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [523680 2012-06-20] (Hewlett-Packard Company)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc.)
R2 McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [1318912 2011-02-09] () [File not signed]
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1127448 2011-02-01] (PDF Complete Inc)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [323072 2013-09-08] (IDT, Inc.) [File not signed]
R2 uArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [502464 2010-11-11] (ArcSoft, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 XobniService; C:\Program Files (x86)\Xobni\XobniService.exe [62184 2011-03-07] (Xobni Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-09-14] (Atheros) [File not signed]
S4 AntiVirWebService; "C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE" [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ARCVCAM; C:\Windows\System32\DRIVERS\ArcSoftVCapture.sys [32192 2010-11-11] (ArcSoft, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [171752 2016-07-28] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [145984 2016-07-28] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-25] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [79696 2016-05-16] (Avira Operations GmbH & Co. KG)
R3 BTATH_LWFLT; C:\Windows\System32\DRIVERS\btath_lwflt.sys [77464 2012-09-14] (Qualcomm Atheros)
S3 DAMDrv; C:\Windows\System32\DRIVERS\DAMDrv64.sys [63336 2011-02-07] (Hewlett-Packard Company)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [270912 2011-09-17] (DT Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [165504 2016-08-05] (ITE )
R0 MfeEpePc; C:\Windows\System32\Drivers\MfeEpePc.sys [168008 2011-02-09] (McAfee, Inc.)
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [2611704 2011-01-12] (Sunplus Technology)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-10-02 14:16 - 2016-10-02 14:18 - 00020751 _____ C:\Users\Minmi\Desktop\FRST.txt
2016-10-02 14:16 - 2016-10-02 14:16 - 00000000 ____D C:\Users\Minmi\Desktop\FRST-OlderVersion
2016-10-02 14:15 - 2016-10-02 14:16 - 00000000 ____D C:\FRST
2016-10-02 13:03 - 2016-10-02 13:05 - 00000000 ____D C:\veci_z_plochy
2016-09-30 00:01 - 2016-10-02 14:16 - 02404352 _____ (Farbar) C:\Users\Minmi\Desktop\FRST64.exe
2016-09-26 20:27 - 2016-09-30 08:47 - 00000085 _____ C:\Users\Minmi\Desktop\vyucotavaniefnaien.txt
2016-09-26 00:06 - 2016-09-29 23:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-09-14 00:29 - 2016-09-14 00:29 - 00361955 _____ C:\Users\Minmi\Downloads\1.)-Harry-Potter-and-the-Philosopher's-Stone.pdf
2016-09-14 00:23 - 2016-09-14 00:23 - 01073819 _____ C:\Users\Minmi\Downloads\Book-1---Harry-Potter-and-the-Philosopher's-Stone.pdf
2016-09-04 00:15 - 2016-09-04 00:15 - 00689233 _____ C:\Users\Minmi\Downloads\CV-Jurcek.pdf
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-10-02 14:05 - 2012-05-31 09:49 - 00000830 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2016-10-02 13:46 - 2014-06-02 19:28 - 00000946 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2934419145-1383663255-327153009-1002UA.job
2016-10-02 13:41 - 2015-10-06 23:53 - 00000000 ____D C:\zaloha_firefox
2016-10-02 13:36 - 2016-08-17 22:49 - 00002147 _____ C:\Users\Minmi\Desktop\aaaargh.txt
2016-10-02 13:07 - 2013-07-09 12:47 - 00000000 ____D C:\Users\Minmi\Desktop\bencont
2016-10-02 11:54 - 2012-10-23 18:46 - 00000000 ____D C:\Program Files (x86)\Steam
2016-10-02 11:06 - 2014-06-02 19:28 - 00000894 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2934419145-1383663255-327153009-1002Core.job
2016-10-02 00:35 - 2015-09-08 22:00 - 00046080 _____ C:\Users\Minmi\Desktop\vydavky.xls
2016-10-01 21:18 - 2009-07-14 06:45 - 00022704 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-10-01 21:18 - 2009-07-14 06:45 - 00022704 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-10-01 21:13 - 2015-01-14 23:19 - 00004476 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
2016-09-30 08:46 - 2011-09-16 14:22 - 00000000 ____D C:\Users\Minmi\Documents\Bluetooth Folder
2016-09-30 08:45 - 2009-07-14 05:20 - 00000000 ____D C:\windows\system32\NDF
2016-09-29 23:24 - 2009-07-14 07:13 - 00782470 _____ C:\windows\system32\PerfStringBackup.INI
2016-09-29 23:24 - 2009-07-14 05:20 - 00000000 ____D C:\windows\inf
2016-09-29 23:18 - 2011-05-10 22:10 - 00000000 ____D C:\ProgramData\PDFC
2016-09-29 23:18 - 2011-05-10 22:06 - 00000000 ____D C:\ProgramData\HPQLOG
2016-09-29 23:16 - 2012-04-25 01:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-29 23:16 - 2009-07-14 07:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-09-29 23:00 - 2016-08-07 23:08 - 00003186 _____ C:\windows\System32\Tasks\HPCeeScheduleForMinmi
2016-09-29 23:00 - 2016-08-07 23:08 - 00000332 _____ C:\windows\Tasks\HPCeeScheduleForMinmi.job
2016-09-25 12:43 - 2016-08-15 14:32 - 00000000 ____D C:\Users\Minmi\AppData\Local\ElevatedDiagnostics
2016-09-20 22:13 - 2011-09-17 21:55 - 00000000 ____D C:\Users\Minmi\AppData\Local\CrashDumps
2016-09-18 13:23 - 2014-08-21 13:42 - 00000000 ____D C:\ProgramData\Package Cache
2016-09-16 22:44 - 2013-08-18 11:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-09-13 20:05 - 2012-05-31 09:49 - 00003768 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2016-09-13 20:05 - 2012-05-31 09:48 - 00796352 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2016-09-13 20:05 - 2011-11-28 00:19 - 00000000 ____D C:\windows\system32\Macromed
2016-09-13 20:05 - 2011-09-17 13:03 - 00142528 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-09-13 20:05 - 2011-05-10 22:11 - 00000000 ____D C:\windows\SysWOW64\Macromed
2016-09-07 21:24 - 2016-02-22 00:36 - 00000000 ____D C:\byt
2016-09-05 00:41 - 2012-10-30 23:17 - 00000000 ____D C:\Users\Minmi\AppData\Roaming\TS3Client
==================== Files in the root of some directories =======
2011-09-25 13:20 - 2012-02-12 13:44 - 0103482 _____ () C:\Users\Minmi\AppData\Roaming\QWInstall.log
2011-10-12 14:35 - 2014-03-04 22:09 - 0004608 _____ () C:\Users\Minmi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-03-05 23:24 - 2015-03-05 23:24 - 0000717 _____ () C:\Users\Minmi\AppData\Local\recently-used.xbel
2013-09-07 13:26 - 2014-03-26 13:32 - 0007602 _____ () C:\Users\Minmi\AppData\Local\Resmon.ResmonCfg
Some files in TEMP:
====================
C:\Users\Minmi\AppData\Local\Temp\amd-catalyst-15.7.1-without-dotnet45-win7-64bit.exe
C:\Users\Minmi\AppData\Local\Temp\avgnt.exe
C:\Users\Minmi\AppData\Local\Temp\DevSetup32.dll
C:\Users\Minmi\AppData\Local\Temp\DevSetup64.dll
C:\Users\Minmi\AppData\Local\Temp\DriverInstall32.exe
C:\Users\Minmi\AppData\Local\Temp\DriverInstall64.exe
C:\Users\Minmi\AppData\Local\Temp\Extract.exe
C:\Users\Minmi\AppData\Local\Temp\HPHelpUpdater.exe
C:\Users\Minmi\AppData\Local\Temp\HPSFUpdater.exe
C:\Users\Minmi\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe
C:\Users\Minmi\AppData\Local\Temp\jre-6u35-windows-i586-iftw.exe
C:\Users\Minmi\AppData\Local\Temp\jre-6u37-windows-i586-iftw.exe
C:\Users\Minmi\AppData\Local\Temp\jre-6u39-windows-i586-iftw.exe
C:\Users\Minmi\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
C:\Users\Minmi\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Minmi\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Minmi\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\Minmi\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
C:\Users\Minmi\AppData\Local\Temp\KillProcess.exe
C:\Users\Minmi\AppData\Local\Temp\ose00000.exe
C:\Users\Minmi\AppData\Local\Temp\Resource.exe
C:\Users\Minmi\AppData\Local\Temp\SIntf16.dll
C:\Users\Minmi\AppData\Local\Temp\SIntf32.dll
C:\Users\Minmi\AppData\Local\Temp\SIntfNT.dll
C:\Users\Minmi\AppData\Local\Temp\SP52407.exe
C:\Users\Minmi\AppData\Local\Temp\SP53265.exe
C:\Users\Minmi\AppData\Local\Temp\SP53394.exe
C:\Users\Minmi\AppData\Local\Temp\SP53546.exe
C:\Users\Minmi\AppData\Local\Temp\SP53628.exe
C:\Users\Minmi\AppData\Local\Temp\SP53796.exe
C:\Users\Minmi\AppData\Local\Temp\SP53858.exe
C:\Users\Minmi\AppData\Local\Temp\SP54149.exe
C:\Users\Minmi\AppData\Local\Temp\SP54203.exe
C:\Users\Minmi\AppData\Local\Temp\sp54373.exe
C:\Users\Minmi\AppData\Local\Temp\sp54620.exe
C:\Users\Minmi\AppData\Local\Temp\SP54635.exe
C:\Users\Minmi\AppData\Local\Temp\SP54714.exe
C:\Users\Minmi\AppData\Local\Temp\SP54740.exe
C:\Users\Minmi\AppData\Local\Temp\SP54906.exe
C:\Users\Minmi\AppData\Local\Temp\SP54963.exe
C:\Users\Minmi\AppData\Local\Temp\SP55156.exe
C:\Users\Minmi\AppData\Local\Temp\SP55390.exe
C:\Users\Minmi\AppData\Local\Temp\SP56247.exe
C:\Users\Minmi\AppData\Local\Temp\SP56488.exe
C:\Users\Minmi\AppData\Local\Temp\SP56729.exe
C:\Users\Minmi\AppData\Local\Temp\SP56811.exe
C:\Users\Minmi\AppData\Local\Temp\SP56876.exe
C:\Users\Minmi\AppData\Local\Temp\SP57272.exe
C:\Users\Minmi\AppData\Local\Temp\SP57555.exe
C:\Users\Minmi\AppData\Local\Temp\SP57556.exe
C:\Users\Minmi\AppData\Local\Temp\SP57698.exe
C:\Users\Minmi\AppData\Local\Temp\SP57879.exe
C:\Users\Minmi\AppData\Local\Temp\SP58268.exe
C:\Users\Minmi\AppData\Local\Temp\SP58647.exe
C:\Users\Minmi\AppData\Local\Temp\sp58915.exe
C:\Users\Minmi\AppData\Local\Temp\SP58930.exe
C:\Users\Minmi\AppData\Local\Temp\SP59118.exe
C:\Users\Minmi\AppData\Local\Temp\SP59151.exe
C:\Users\Minmi\AppData\Local\Temp\SP59196.exe
C:\Users\Minmi\AppData\Local\Temp\SP59202.exe
C:\Users\Minmi\AppData\Local\Temp\SP59213.exe
C:\Users\Minmi\AppData\Local\Temp\SP59291.exe
C:\Users\Minmi\AppData\Local\Temp\SP59529.exe
C:\Users\Minmi\AppData\Local\Temp\SP59530.exe
C:\Users\Minmi\AppData\Local\Temp\SP60686.exe
C:\Users\Minmi\AppData\Local\Temp\SP60769.exe
C:\Users\Minmi\AppData\Local\Temp\SP61104.exe
C:\Users\Minmi\AppData\Local\Temp\SP61411.exe
C:\Users\Minmi\AppData\Local\Temp\SP63779.exe
C:\Users\Minmi\AppData\Local\Temp\sp64126.exe
C:\Users\Minmi\AppData\Local\Temp\SP64676.exe
C:\Users\Minmi\AppData\Local\Temp\SP71068.exe
C:\Users\Minmi\AppData\Local\Temp\UninstallHPSA.exe
C:\Users\Minmi\AppData\Local\Temp\UninstallHPTCA.exe
C:\Users\Minmi\AppData\Local\Temp\war3_Install.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\SysWOW64\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
ATTENTION: ==> Could not access BCD.
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2934419145-1383663255-327153009-1002Core.job => C:\Users\Minmi\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2934419145-1383663255-327153009-1002UA.job => C:\Users\Minmi\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\HPCeeScheduleForMinmi.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Avira Antivirus (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Minmi\Desktop" je 185 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DTRun
c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\File Sanitizer
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update
"C:\Users\Minmi\AppData\Local\Google\Update\GoogleUpdate.exe" /c [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP HD Webcam [Fixed]_Monitor
C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPConnectionManager
C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPQuickWebProxy
"C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MfeEpePcMonitor
"C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft Default Manager
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF Complete
C:\Program Files (x86)\PDF Complete\pdfsty.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QLBController
C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TMMonitor.lnk
C:\PROGRA~2\ArcSoft\TOTALM~1.5\TMMONI~1.EXE
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000001
==================== End Of Log ==============================
Stahnete AdwCleaner 
Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce) 
Přispějete na provoz fóra?