Prosím o kontrolu logu - vytížení CPU, opožděný zvuk Vyřešeno

[ondoubek]

Ten soubor je OK.

[Reklama]

[ondoubek]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-05-2015
Ran by Ondra (administrator) on ONDRA-PC on 29-05-2015 22:38:29
Running from C:\Users\Ondra\Desktop
Loaded Profiles: Ondra (Available Profiles: Ondra)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe
() C:\Windows\System32\AsusService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(ASUSTeK Computer Inc.) C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(ASUSTeK Computer Inc.) C:\Program Files\EeePC\HotkeyService\HotkeyService.exe
(ASUSTeK Computer Inc.) C:\Program Files\EeePC\SHE\SuperHybridEngine.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\update.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [HotkeyService] => C:\Program Files\EeePC\HotkeyService\HotkeyService.exe [752056 2009-09-24] (ASUSTeK Computer Inc.)
HKLM\...\Run: [HotKeyMon] => C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe [100328 2009-09-11] (ASUSTeK Computer Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1545512 2009-07-20] (Synaptics Incorporated)
HKLM\...\Run: [SuperHybridEngine] => C:\Program Files\EeePC\SHE\SuperHybridEngine.exe [413688 2009-09-09] (ASUSTeK Computer Inc.)
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [83240 2009-07-20] (Synaptics Incorporated)
HKLM\...\Run: [IgfxExt] => C:\Windows\system32\IgfxExt.exe [174616 2010-09-29] (Intel Corporation)
HKLM\...\Run: [Cm106Sound] => RunDll32 cm106.cpl,CMICtrlWnd
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7744032 2009-11-23] (Realtek Semiconductor)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-3263161969-555476508-3097765438-1006\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
HKU\S-1-5-21-3263161969-555476508-3097765438-1006\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-3263161969-555476508-3097765438-1006\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com
HKU\S-1-5-21-3263161969-555476508-3097765438-1006\Software\Microsoft\Internet Explorer\Main,Old Start Page = http://www.google.cz/
SearchScopes: HKU\S-1-5-21-3263161969-555476508-3097765438-1006 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-03-10] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-10] (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-05-22] ()
FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-10] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-10] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2014-12-26] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2014-12-26] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

Chrome:
=======
CHR Profile: C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-12-26]
CHR Extension: (YouTube) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-26]
CHR Extension: (Google Search) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-26]
CHR Extension: (Disable Youtube™ HTML5 Player) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\enmofgaijnbjpblfljopnpdogpldapoc [2014-12-28]
CHR Extension: (Google Wallet) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-26]
CHR Extension: (Gmail) - C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-26]

Opera:
=======
OPR StartupUrls: "hxxp://www.google.cz/"

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AsusService; C:\Windows\System32\AsusService.exe [219136 2009-08-19] () [File not signed]
S4 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1030928 2015-02-27] (Disc Soft Ltd)
R2 gzserv; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [57520 2013-10-23] (Bitdefender)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsUpIO; C:\Windows\System32\drivers\AsUpIO.sys [11448 2009-07-06] ()
S3 athur; C:\Windows\System32\DRIVERS\athur.sys [1570304 2013-06-29] (Atheros Communications, Inc.)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [633344 2013-04-17] (BitDefender)
S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [486536 2013-04-17] (BitDefender)
R1 bdfwfpf; C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [108008 2013-07-02] (Bitdefender SRL)
R1 bdselfpr; C:\Program Files\Bitdefender\Antivirus Free Edition\bdselfpr.sys [135472 2013-07-16] (BitDefender LLC)
S3 ch7036; C:\Windows\System32\DRIVERS\ch7036.sys [118144 2013-06-08] (Intel Corporation) [File not signed]
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [25104 2015-04-12] (Disc Soft Ltd)
R1 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [164952 2013-04-22] (BitDefender LLC)
S3 iegdmini; C:\Windows\System32\DRIVERS\iegdmini.sys [2433152 2013-06-08] (Intel Corporation) [File not signed]
R3 igd; C:\Windows\System32\DRIVERS\igdkmd32.sys [648832 2010-09-16] (Intel Corporation)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [13880 2009-07-20] ( )
S3 lvds; C:\Windows\System32\DRIVERS\lvds.sys [19840 2013-06-08] (Intel Corporation) [File not signed]
S3 sdvo; C:\Windows\System32\DRIVERS\sdvo.sys [68352 2013-06-08] (Intel Corporation) [File not signed]
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [355744 2013-05-28] (BitDefender S.R.L.)
S3 USBMULCD; C:\Windows\System32\drivers\CM106.sys [1516544 2009-06-11] (C-Media Electronics Inc)
S2 adfs; No ImagePath
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 DIRECTIO; \??\C:\Program Files\PerformanceTest\DirectIo32.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-29 22:38 - 2015-05-29 22:39 - 00009608 _____ () C:\Users\Ondra\Desktop\FRST.txt
2015-05-29 22:38 - 2015-05-29 22:38 - 00000000 ____D () C:\FRST
2015-05-29 22:36 - 2015-05-29 22:36 - 01147392 _____ (Farbar) C:\Users\Ondra\Desktop\FRST.exe
2015-05-29 20:14 - 2015-05-29 20:14 - 00000000 ____D () C:\ProgramData\GZ
2015-05-29 20:10 - 2015-05-29 20:10 - 00003385 _____ () C:\Users\Ondra\Desktop\hijackthis.log
2015-05-29 20:09 - 2015-05-29 20:09 - 00388608 _____ (Trend Micro Inc.) C:\Users\Ondra\Desktop\hijackthis.exe
2015-05-29 20:05 - 2015-05-29 20:05 - 00000328 _____ () C:\Windows\PFRO.log
2015-05-29 19:37 - 2015-05-29 18:57 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-05-29 18:58 - 2015-05-29 20:06 - 00007993 _____ () C:\zoek-results.log
2015-05-29 18:57 - 2015-05-29 19:30 - 00000000 ____D () C:\zoek_backup
2015-05-29 18:42 - 2015-05-29 18:42 - 01308672 _____ () C:\Users\Ondra\Desktop\zoek.exe
2015-05-29 18:31 - 2015-05-29 22:32 - 00000168 _____ () C:\Windows\setupact.log
2015-05-29 18:31 - 2015-05-29 18:31 - 00000000 _____ () C:\Windows\setuperr.log
2015-05-29 18:16 - 2015-05-29 18:16 - 00001097 _____ () C:\Users\Public\Desktop\Opera.lnk
2015-05-29 18:16 - 2015-05-29 18:16 - 00001097 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-05-29 18:15 - 2015-05-29 18:15 - 00684208 _____ (Opera Software) C:\Users\Ondra\Downloads\Opera_NI_stable.exe
2015-05-29 17:56 - 2015-05-29 18:43 - 00035064 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2015-05-29 17:56 - 2015-05-29 18:09 - 00000000 ____D () C:\ProgramData\RogueKiller
2015-05-29 17:51 - 2015-05-29 17:51 - 00001064 _____ () C:\Users\Ondra\Desktop\JRT.txt
2015-05-29 17:45 - 2015-05-29 17:45 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-ONDRA-PC-Windows-7-Home-Premium-(32-bit).dat
2015-05-29 17:45 - 2015-05-29 17:45 - 00000000 ____D () C:\RegBackup
2015-05-29 17:44 - 2015-05-29 17:44 - 02948651 _____ (Thisisu) C:\Users\Ondra\Desktop\JRT.exe
2015-05-29 17:43 - 2015-05-29 17:44 - 17023576 _____ () C:\Users\Ondra\Desktop\RogueKiller.exe
2015-05-26 22:12 - 2015-05-26 22:12 - 09871304 _____ (Opera Software ASA) C:\Users\Ondra\Downloads\Opera_1210_en_Setup.exe
2015-05-26 22:12 - 2015-05-26 22:12 - 07469592 _____ (Opera Software ASA) C:\Users\Ondra\Downloads\Opera_1101_en_Setup.exe
2015-05-26 22:07 - 2015-05-26 22:08 - 09306504 _____ (Opera Software ASA ) C:\Users\Ondra\Downloads\Opera_1010_en_Setup.exe
2015-05-26 17:14 - 2015-05-26 17:14 - 00001792 _____ () C:\Users\Ondra\Desktop\Programy.lnk
2015-05-26 17:14 - 2015-05-26 17:14 - 00000000 ____D () C:\Users\Ondra\Documents\Programy
2015-05-22 06:39 - 2015-05-22 06:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SVP 3.1
2015-05-22 06:38 - 2015-05-22 06:40 - 00000000 ____D () C:\ProgramData\SVP 3.1
2015-05-22 06:38 - 2015-05-22 06:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
2015-05-22 06:38 - 2015-05-22 06:39 - 00000000 ____D () C:\Program Files\SVP
2015-05-22 06:38 - 2015-05-22 06:38 - 00000000 ____D () C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
2015-05-22 06:38 - 2015-05-22 06:38 - 00000000 ____D () C:\Program Files\AviSynth 2.5
2015-05-14 21:26 - 2015-05-01 15:16 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-14 20:26 - 2015-04-27 21:11 - 03989440 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-05-14 20:26 - 2015-04-27 21:11 - 03934144 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-05-14 20:26 - 2015-04-27 21:11 - 00137664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-05-14 20:26 - 2015-04-27 21:11 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-05-14 20:26 - 2015-04-27 21:08 - 01307648 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-05-14 20:26 - 2015-04-27 21:05 - 00851456 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-05-14 20:26 - 2015-04-27 21:05 - 00635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-05-14 20:26 - 2015-04-27 21:05 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-05-14 20:26 - 2015-04-27 21:05 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-05-14 20:26 - 2015-04-27 21:05 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-05-14 20:26 - 2015-04-27 21:05 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-05-14 20:26 - 2015-04-27 21:05 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-05-14 20:26 - 2015-04-27 21:05 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-05-14 20:26 - 2015-04-27 21:05 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-05-14 20:26 - 2015-04-27 21:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-05-14 20:26 - 2015-04-27 21:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-05-14 20:26 - 2015-04-27 21:05 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-05-14 20:26 - 2015-04-27 21:04 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-14 20:26 - 2015-04-27 21:04 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-05-14 20:26 - 2015-04-27 21:04 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-05-14 20:26 - 2015-04-27 21:04 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-05-14 20:26 - 2015-04-27 21:04 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-05-14 20:26 - 2015-04-27 21:04 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-05-14 20:26 - 2015-04-27 21:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-05-14 20:26 - 2015-04-27 21:04 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-05-14 20:26 - 2015-04-27 21:04 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-05-14 20:26 - 2015-04-27 21:04 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-05-14 20:26 - 2015-04-27 21:04 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-05-14 20:26 - 2015-04-27 21:04 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-05-14 20:26 - 2015-04-27 21:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-05-14 20:26 - 2015-04-27 21:03 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-05-14 20:26 - 2015-04-27 21:01 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-05-14 20:26 - 2015-04-27 21:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-05-14 20:26 - 2015-04-27 20:59 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-05-14 20:26 - 2015-04-27 20:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-05-14 20:26 - 2015-04-27 20:00 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-05-14 20:26 - 2015-04-13 05:19 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-14 20:26 - 2015-01-29 05:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-05-14 20:25 - 2015-05-05 03:12 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-14 20:25 - 2015-04-22 03:48 - 00342736 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-05-14 20:25 - 2015-04-21 18:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-05-14 20:25 - 2015-04-21 18:25 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-05-14 20:25 - 2015-04-21 18:24 - 19691008 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-05-14 20:25 - 2015-04-21 18:11 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-05-14 20:25 - 2015-04-21 18:11 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-05-14 20:25 - 2015-04-21 18:10 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-05-14 20:25 - 2015-04-21 18:09 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-05-14 20:25 - 2015-04-21 18:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-05-14 20:25 - 2015-04-21 18:04 - 02278400 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-05-14 20:25 - 2015-04-21 18:03 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-05-14 20:25 - 2015-04-21 18:02 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-05-14 20:25 - 2015-04-21 18:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-05-14 20:25 - 2015-04-21 17:58 - 00664576 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-05-14 20:25 - 2015-04-21 17:58 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-05-14 20:25 - 2015-04-21 17:58 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-05-14 20:25 - 2015-04-21 17:57 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-05-14 20:25 - 2015-04-21 17:51 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-14 20:25 - 2015-04-21 17:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-05-14 20:25 - 2015-04-21 17:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-14 20:25 - 2015-04-21 17:39 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-05-14 20:25 - 2015-04-21 17:38 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-05-14 20:25 - 2015-04-21 17:36 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-05-14 20:25 - 2015-04-21 17:31 - 04305920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-05-14 20:25 - 2015-04-21 17:26 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-05-14 20:25 - 2015-04-21 17:26 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-14 20:25 - 2015-04-21 17:25 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-05-14 20:25 - 2015-04-21 17:24 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-05-14 20:25 - 2015-04-21 17:17 - 12828672 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-05-14 20:25 - 2015-04-21 17:02 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-05-14 20:25 - 2015-04-21 16:58 - 01310208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-05-14 20:25 - 2015-04-21 16:56 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-05-14 20:25 - 2015-04-18 04:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-14 20:25 - 2015-03-04 06:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-05-14 20:25 - 2015-03-04 06:10 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-05-14 20:25 - 2015-03-04 06:10 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-05-14 20:25 - 2015-03-04 06:10 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-14 20:25 - 2015-02-18 09:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-05-14 20:24 - 2015-04-20 04:56 - 01250816 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-14 20:24 - 2015-04-20 04:56 - 00909312 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-14 20:24 - 2015-04-20 04:03 - 02382336 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-05-14 20:21 - 2015-04-08 05:14 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-05-14 20:21 - 2015-04-08 05:14 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-04-29 18:47 - 2015-05-24 14:53 - 00000000 ____D () C:\Users\Ondra\AppData\Roaming\Audacity
2015-04-29 18:47 - 2015-04-29 18:47 - 00000981 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2015-04-29 18:47 - 2015-04-29 18:47 - 00000969 _____ () C:\Users\Public\Desktop\Audacity.lnk
2015-04-29 18:46 - 2015-04-29 18:47 - 00000000 ____D () C:\Program Files\Audacity

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-29 22:35 - 2015-04-05 01:06 - 01204910 _____ () C:\Windows\WindowsUpdate.log
2015-05-29 22:32 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-29 20:14 - 2009-07-14 06:34 - 00018736 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-05-29 20:14 - 2009-07-14 06:34 - 00018736 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-05-29 18:16 - 2015-04-06 13:23 - 00000000 ____D () C:\Users\Ondra\AppData\Roaming\Opera Software
2015-05-29 18:16 - 2015-04-06 13:23 - 00000000 ____D () C:\Users\Ondra\AppData\Local\Opera Software
2015-05-29 18:16 - 2015-04-06 13:22 - 00000000 ____D () C:\Program Files\Opera
2015-05-28 21:09 - 2002-02-01 05:15 - 00000000 ____D () C:\Qoobox
2015-05-27 22:38 - 2013-07-24 21:39 - 01608964 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-26 22:36 - 2014-12-28 17:21 - 00000000 ____D () C:\Windows\Minidump
2015-05-26 22:03 - 2013-10-14 00:38 - 02362496 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-05-26 17:16 - 2014-12-26 13:56 - 00113272 _____ () C:\Users\Ondra\AppData\Local\GDIPFONTCACHEV1.DAT
2015-05-25 22:45 - 2014-12-26 22:51 - 00000000 ____D () C:\Users\Ondra\AppData\Roaming\vlc
2015-05-25 20:56 - 2015-01-03 22:09 - 00000000 ____D () C:\Users\Ondra\AppData\Roaming\foobar2000
2015-05-25 20:34 - 2015-03-09 18:29 - 00000870 _____ () C:\Users\Ondra\.lmmsrc.xml
2015-05-24 00:09 - 2015-04-11 13:14 - 00000892 _____ () C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-05-23 23:38 - 2015-04-05 01:33 - 00000000 ___SD () C:\Windows\system32\GWX
2015-05-22 23:28 - 2015-02-11 08:16 - 00000000 ____D () C:\Users\Ondra\AppData\Roaming\Mozilla
2015-05-22 23:06 - 2014-12-27 22:53 - 00000000 ____D () C:\Users\Ondra\AppData\Local\Opera
2015-05-22 22:57 - 2013-07-24 15:35 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-05-22 22:57 - 2013-07-24 15:35 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-05-16 17:47 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2015-05-16 16:02 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-05-14 21:51 - 2014-12-26 20:32 - 00007631 _____ () C:\Users\Ondra\AppData\Local\Resmon.ResmonCfg
2015-05-14 21:48 - 2009-07-14 09:49 - 00000000 ____D () C:\Program Files\Windows Journal
2015-05-14 21:33 - 2013-07-30 11:26 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2015-05-14 21:31 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2015-05-14 21:22 - 2013-08-11 12:22 - 00000000 ____D () C:\Windows\system32\MRT
2015-05-14 20:50 - 2014-12-26 21:39 - 00000000 ____D () C:\Users\Ondra\AppData\Local\midori
2015-05-14 20:50 - 2014-12-26 21:39 - 00000000 ____D () C:\Users\Ondra\.dbus-keyrings
2015-05-14 20:50 - 2013-07-25 11:12 - 137310008 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-05-14 20:37 - 2013-07-30 11:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-05-14 20:11 - 2015-02-09 23:52 - 00000000 ____D () C:\Users\Ondra\AppData\Local\Spotify
2015-05-14 20:05 - 2015-02-09 23:51 - 00000000 ____D () C:\Users\Ondra\AppData\Roaming\Spotify
2015-05-10 20:02 - 2015-01-21 18:46 - 00000000 ____D () C:\Users\Ondra\AppData\Roaming\uTorrent

==================== Files in the root of some directories =======

2015-03-02 14:35 - 2015-03-02 14:35 - 0138056 _____ () C:\Users\Ondra\AppData\Roaming\PnkBstrK.sys
2015-03-10 13:08 - 2015-03-10 13:08 - 0033193 _____ () C:\Users\Ondra\AppData\Roaming\UserTile.png
2015-02-14 13:18 - 2015-02-14 13:18 - 0000037 ___SH () C:\Users\Ondra\AppData\Local\70149b02515b3bb20dd492.47983420
2014-12-26 20:32 - 2015-05-14 21:51 - 0007631 _____ () C:\Users\Ondra\AppData\Local\Resmon.ResmonCfg
2015-02-04 17:22 - 2015-02-04 17:22 - 0249200 _____ () C:\ProgramData\1423062770.bdinstall.bin
2015-04-05 00:36 - 2015-04-05 00:36 - 0037630 _____ () C:\ProgramData\1428186960.bdinstall.bin
2015-04-05 00:36 - 2015-04-05 00:36 - 0097263 _____ () C:\ProgramData\1428186966.bdinstall.bin
2015-04-05 00:48 - 2015-04-05 00:48 - 0003496 _____ () C:\ProgramData\1428187727.bdinstall.bin
2015-04-05 00:49 - 2015-04-05 00:49 - 0003495 _____ () C:\ProgramData\1428187779.bdinstall.bin
2015-04-05 00:52 - 2015-04-05 00:52 - 0003496 _____ () C:\ProgramData\1428187958.bdinstall.bin
2015-04-05 00:54 - 2015-04-05 00:54 - 0037396 _____ () C:\ProgramData\1428188083.bdinstall.bin
2015-04-05 00:54 - 2015-04-05 00:54 - 0003496 _____ () C:\ProgramData\1428188086.bdinstall.bin
2015-04-05 00:57 - 2015-04-05 00:57 - 0037395 _____ () C:\ProgramData\1428188237.bdinstall.bin
2015-04-05 00:57 - 2015-04-05 00:57 - 0003496 _____ () C:\ProgramData\1428188244.bdinstall.bin
2015-04-05 00:58 - 2015-04-05 00:58 - 0037395 _____ () C:\ProgramData\1428188313.bdinstall.bin
2015-04-05 00:58 - 2015-04-05 00:58 - 0003496 _____ () C:\ProgramData\1428188316.bdinstall.bin
2015-04-05 01:06 - 2015-04-05 01:06 - 0174070 _____ () C:\ProgramData\1428188762.bdinstall.bin
2015-04-17 13:40 - 2015-04-17 13:40 - 0174484 _____ () C:\ProgramData\1429270752.bdinstall.bin

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-24 14:21

==================== End of log ============================

[ondoubek]

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29-05-2015
Ran by Ondra at 2015-05-29 22:40:11
Running from C:\Users\Ondra\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3263161969-555476508-3097765438-500 - Administrator - Disabled)
AvastSoftwareUpdater (S-1-5-21-3263161969-555476508-3097765438-1005 - Limited - Enabled)
Guest (S-1-5-21-3263161969-555476508-3097765438-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3263161969-555476508-3097765438-1002 - Limited - Enabled)
Ondra (S-1-5-21-3263161969-555476508-3097765438-1006 - Administrator - Enabled) => C:\Users\Ondra

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Bitdefender Antivirus Free Edition (Enabled - Up to date) {9B5F5313-CAF9-DD97-C460-E778420237B4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antivirus Free Edition (Enabled - Up to date) {203EB2F7-ECC3-D219-FED0-DC0A39857D09}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Adobe Flash Player 17 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 17.0.0.134 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
ASIO4ALL (HKLM\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach)
ASUSUpdate for Eee PC (HKLM\...\{587178E7-B1DF-494E-9838-FA4DD36E873C}) (Version: 1.03.04 - ASUSTeK Computer Inc.)
Atheros Client Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.0 - Atheros)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.10 - Atheros Communications Inc.)
Atheros Ethernet Utility (HKLM\...\{FB686487-C637-4EEF-BCB1-C92463F2CC05}) (Version: 1.1.0.5 - Atheros Communications Inc.)
Audacity 2.1.0 (HKLM\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
AviSynth 2.5 (HKLM\...\AviSynth) (Version: - )
Bitdefender Antivirus Free Edition (HKLM\...\BitDefender Gonzales) (Version: 1.0.21.1099 - Bitdefender)
CCleaner (HKLM\...\CCleaner) (Version: 4.06 - Piriform)
Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 5.0.1.0406 - Disc Soft Ltd)
Digital Zoom Control (HKLM\...\{75E9CAA3-B336-439D-85FB-7C7B2ACA1A16}) (Version: 1.0.6 - ASUS)
E-Cam (HKLM\...\{185AFA7A-F63E-450B-94AA-011CAC18090E}) (Version: 2.0.1.9 - )
FontResizer (HKLM\...\{FAD8718D-950E-468D-BDE2-17D4D6F1EA6A}) (Version: 1.01.0007 - ASUS)
foobar2000 v1.3.6 (HKLM\...\foobar2000) (Version: 1.3.6 - Peter Pawlowski)
Google Chrome (HKLM\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
HD Tune 2.50 (HKLM\...\HD Tune_is1) (Version: - EFD Software)
Hotkey Service (HKLM\...\{71C0E38E-09F2-4386-9977-404D4F6640CD}) (Version: 1.13 - AsusTek Computer)
Intel(R) Graphics Media Accelerator 500 (HKLM\...\LPCO) (Version: - Intel Corporation)
Java 8 Update 40 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
K-Lite Mega Codec Pack 9.9.5 (HKLM\...\KLiteCodecPack_is1) (Version: 9.9.5 - )
linguatec Voice Reader (HKLM\...\{93293322-B694-4270-B7FE-DDE1A681ACCA}) (Version: 1.00.0000 - linguatec)
Livestreamer 1.11.1 (HKLM\...\Livestreamer) (Version: - )
LiveUpdate (HKLM\...\{38E5A3B1-ADF1-47E0-8024-76310A30EB36}) (Version: 1.19 - Asus)
LMMS 1.1.3 (HKLM\...\LMMS) (Version: 1.1.3 - LMMS Developers)
Logon Screen (HKLM\...\{1730D13B-7517-4321-A88B-64627CF67CDC}_is1) (Version: 3.01 - Daniel Rebelo)
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 4.0 (HKLM\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
OpenAL (HKLM\...\OpenAL) (Version: - )
OpenOffice 4.1.1 (HKLM\...\{C560D6E7-E40A-435D-8B71-62CBCF1701B2}) (Version: 4.11.9775 - Apache Software Foundation)
Opera Stable 29.0.1795.60 (HKLM\...\Opera 29.0.1795.60) (Version: 29.0.1795.60 - Opera Software ASA)
paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC41}) (Version: 4.0.5 - dotPDN LLC)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5948 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM\...\{9D3D8C60-A55F-4fed-B2B9-173F09590E16}) (Version: 1.00.0124 - REALTEK Semiconductor Corp.)
Skype™ 7.1 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.1.105 - Skype Technologies S.A.)
SmoothVideo Project version 3.1.6 (HKLM\...\SmoothVideo Project_is1) (Version: 3.1.6 - SVP)
Spotify (HKU\S-1-5-21-3263161969-555476508-3097765438-1006\...\Spotify) (Version: 1.0.4.90.g0b6df40b - Spotify AB)
SRS Premium Sound Control Panel (HKLM\...\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}) (Version: 1.8.1800 - SRS Labs, Inc.)
Steam (HKLM\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Super Hybrid Engine (HKLM\...\{88F08F98-12BC-4613-81A2-8F9B88CFC73E}) (Version: 2.09 - AsusTek Computer)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.6.1 - Synaptics Incorporated)
USB Multi-Channel Audio Device (HKLM\...\C-Media CM106 Like Sound Driver) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WebM Media Foundation Components (HKLM\...\webmmf) (Version: 1.0.1.2 - WebM Project)
WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.0.9600 - Broadcom Corporation)
WinRAR 4.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

21-04-2015 21:38:12 Windows Update
25-04-2015 23:20:35 OK
08-05-2015 18:50:46 Naplánovaný kontrolní bod
14-05-2015 20:27:16 Windows Update
14-05-2015 21:47:32 Windows Update
15-05-2015 18:42:36 Windows Update
22-05-2015 23:05:41 Installed Opera 10.51.
22-05-2015 23:12:22 Removed Opera 10.51.
23-05-2015 23:29:02 Windows Update
25-05-2015 20:35:59 Installed VirtualDJ Home FREE
26-05-2015 17:04:40 Removed VirtualDJ Home FREE
26-05-2015 22:09:10 Installed Opera 10.10.
26-05-2015 22:29:22 Removed Opera 10.10.
29-05-2015 18:58:55 zoek.exe restore point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2015-05-29 19:00 - 00000841 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0BCF798B-A0D4-4A67-A825-A03B631927D7} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-07] (Microsoft Corporation)
Task: {121AAB0E-CFD1-4CE7-8729-5340FBDF5535} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {20C9E82D-52A3-40B0-B507-4BD45F40D80C} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_17_0_0_134_pepper.exe [2015-04-11] (Adobe Systems Incorporated)
Task: {452F38CB-ABFE-49A4-87BA-6C0B55C3E7CA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {48AE6952-877E-43D0-849B-D6053CE8D6D6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {61D42273-6A13-4355-82BF-AFB01EBDA987} - System32\Tasks\Logon Screen SkipUAC => C:\Program Files\Logon Screen\Logon Screen.exe [2015-02-15] (Daniel Rebelo)
Task: {759C46CA-1E49-4976-BA39-27B27159D17E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {9F9CB856-383D-470E-99EA-09E8A507F5DC} - System32\Tasks\Opera scheduled Autoupdate 1432916178 => C:\Program Files\Opera\launcher.exe [2015-05-18] (Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\system32\Macromed\Flash\FlashUtil32_17_0_0_134_pepper.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-04-17 13:39 - 2013-03-19 12:07 - 00508136 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\sqlite3.dll
2015-04-17 13:39 - 2013-09-03 14:29 - 00095088 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\BDMetrics.dll
2013-07-24 21:33 - 2009-08-19 02:35 - 00219136 _____ () C:\Windows\System32\AsusService.exe

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3263161969-555476508-3097765438-1006\Control Panel\Desktop\\Wallpaper -> C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: Disc Soft Lite Bus Service => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk => C:\Windows\pss\AsusVibeLauncher.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\Windows\pss\Bluetooth.lnk.CommonStartup
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: DigitalZoomControl => "C:\Program Files\ASUS\DigitalZoomControl\DigitalZoomControl.exe"
MSCONFIG\startupreg: Spotify => "C:\Users\Ondra\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Ondra\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{150EB933-3066-46FF-83AD-CB412E2DF2E3}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{5D215356-5183-494D-9509-4FC55D837061}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{2A4749D0-80C2-45B3-98BD-BA7F8340867C}] => (Allow) C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [{131CA0B6-7B4D-4670-BAAD-884E3F244121}] => (Allow) C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [{012D5B39-0189-4443-8025-15F428952128}] => (Allow) C:\Program Files\Opera\opera.exe
FirewallRules: [{D7457AC1-3360-4072-A9C4-87CA33D29BB2}] => (Allow) C:\Program Files\Opera\opera.exe
FirewallRules: [TCP Query User{78DD1691-41B7-4A54-89DC-59381135CBAD}C:\program files\tmnationsforever\tmforever.exe] => (Allow) C:\program files\tmnationsforever\tmforever.exe
FirewallRules: [UDP Query User{EFC21E08-2C2F-4436-81A5-A3DEFA75483C}C:\program files\tmnationsforever\tmforever.exe] => (Allow) C:\program files\tmnationsforever\tmforever.exe
FirewallRules: [TCP Query User{F4DA40FB-DCB9-454B-83CF-2E3F7BAC559B}C:\counter-strike 1.6\csko.exe] => (Block) C:\counter-strike 1.6\csko.exe
FirewallRules: [UDP Query User{340BA62B-8D0A-4BE5-81A3-FFC4ED921FE7}C:\counter-strike 1.6\csko.exe] => (Block) C:\counter-strike 1.6\csko.exe
FirewallRules: [TCP Query User{560944C3-46B8-4F16-93D7-20792FB6971C}C:\users\ondra\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ondra\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{1884B5DD-E56A-4DF6-AA62-0702D307FCD2}C:\users\ondra\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ondra\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{0C218042-B113-43B0-B2C4-0629DFDA6094}C:\users\ondra\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\ondra\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{EA309E9A-C858-49CB-B58F-EA8457E0856C}C:\users\ondra\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\ondra\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{3202FEC3-3F84-4254-8143-0428F37635FB}C:\counter-strike 1.6\csko.exe] => (Block) C:\counter-strike 1.6\csko.exe
FirewallRules: [UDP Query User{633414D9-0355-49F8-A188-44B1C3E84093}C:\counter-strike 1.6\csko.exe] => (Block) C:\counter-strike 1.6\csko.exe
FirewallRules: [TCP Query User{6FE240E5-E94D-4ACC-ADAB-73A25D60C4D2}C:\users\ondra\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ondra\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{92C5B815-28E8-4C8A-BD01-36AE4507D785}C:\users\ondra\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ondra\appdata\roaming\spotify\spotify.exe
FirewallRules: [{C9347D0C-A60D-439C-B349-72E548887432}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{BAAA5786-66A7-48B2-B97B-900DDA680D6F}] => (Allow) C:\Windows\System32\PnkBstrA.exe
FirewallRules: [{CFC08A6E-336F-4C2D-8AA7-9F51D5E6026C}] => (Allow) C:\Windows\System32\PnkBstrA.exe
FirewallRules: [{D51FC0BE-F179-4CA1-BE47-26A832D7792C}] => (Allow) C:\Windows\System32\PnkBstrB.exe
FirewallRules: [{547B3565-054B-4C9C-B779-EBD6AA9DAB3F}] => (Allow) C:\Windows\System32\PnkBstrB.exe
FirewallRules: [TCP Query User{4E95B93E-11A2-48CA-9B66-BB1F51BB954C}C:\program files\ea games\battlefield play4free\bfp4f.exe] => (Allow) C:\program files\ea games\battlefield play4free\bfp4f.exe
FirewallRules: [UDP Query User{1956E4DC-653A-4809-AEB4-27B4BF6C188E}C:\program files\ea games\battlefield play4free\bfp4f.exe] => (Allow) C:\program files\ea games\battlefield play4free\bfp4f.exe
FirewallRules: [{ACACBEF0-FF8C-4460-BF25-7EBB147FE14F}] => (Allow) C:\Users\Ondra\AppData\Local\Temp\nsv5237.tmp\CnetInstaller-75599199.exe
FirewallRules: [{861704CA-BC3C-4AE8-A631-62AA33E45B13}] => (Allow) C:\Users\Ondra\AppData\Local\Temp\nsv5237.tmp\CnetInstaller-75599199.exe
FirewallRules: [TCP Query User{89C2FE60-F997-41B2-9379-0DA661196556}C:\users\ondra\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ondra\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{5C2807EC-FDF6-4225-A1DF-D7EEE19E041C}C:\users\ondra\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ondra\appdata\roaming\spotify\spotify.exe
FirewallRules: [{EED91087-4436-4BF9-89F7-EA6ED369B144}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{2DBB5444-9BC7-4AE7-8190-394A4A8956F0}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{B7FA89E0-E6D6-4A5A-9936-1227A2B42651}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{AA96DCFA-8712-4CE8-913D-8EA037962374}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{FD643BB0-E57C-4F1C-A006-0C11E8A939FC}C:\program files\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{F1CFC23E-7B96-4798-B187-35A737A51117}C:\program files\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [{7C4DBABE-2C7F-462E-8848-57ED857A6811}] => (Allow) C:\Program Files\Maxthon\Bin\MxUp.exe
FirewallRules: [{5FCFA408-3061-4D9A-A42E-AFEEFA779054}] => (Allow) C:\Program Files\Maxthon\Bin\Maxthon.exe
FirewallRules: [{DE404453-DE60-4177-8B13-DBB68F3BC73C}] => (Allow) C:\Program Files\Maxthon\Bin\MxUp.exe
FirewallRules: [{D2D2798E-005C-4057-A840-053C53982FFE}] => (Allow) C:\Program Files\Maxthon\Bin\Maxthon.exe

==================== Faulty Device Manager Devices =============

Name: adfs
Description: adfs
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: adfs
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/27/2015 10:53:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 6.1.7601.17567, časové razítko: 0x4d6727a7
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18839, časové razítko: 0x553e8801
Kód výjimky: 0xc015000f
Posun chyby: 0x00084270
ID chybujícího procesu: 0x7f0
Čas spuštění chybující aplikace: 0xExplorer.EXE0
Cesta k chybující aplikaci: Explorer.EXE1
Cesta k chybujícímu modulu: Explorer.EXE2
ID zprávy: Explorer.EXE3

Error: (05/27/2015 10:53:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 6.1.7601.17567, časové razítko: 0x4d6727a7
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000
ID chybujícího procesu: 0x7f0
Čas spuštění chybující aplikace: 0xExplorer.EXE0
Cesta k chybující aplikaci: Explorer.EXE1
Cesta k chybujícímu modulu: Explorer.EXE2
ID zprávy: Explorer.EXE3

Error: (05/27/2015 10:30:44 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Index nebyl inicializován.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/27/2015 10:30:44 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.

Kontext: aplikace Windows

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/27/2015 10:30:44 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt indexování nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/27/2015 10:30:44 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)

Error: (05/27/2015 10:30:42 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.JetPropStore> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/27/2015 10:30:42 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Služba Windows Search nenačetla informace o úložišti vlastností.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Databáze indexu obsahu je poškozená. (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/27/2015 10:30:42 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Služba Windows Search byla zastavena, protože došlo k problému s indexovacím modulem The catalog is corrupt.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/27/2015 10:30:42 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: Vyhledávací služby zjistila, že index {id=4700} obsahuje poškozené datové soubory. Služba se pokusí tyto potíže automaticky odstranit vytvořením nového indexu.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (05/29/2015 10:33:37 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535

Error: (05/29/2015 10:33:37 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535

Error: (05/29/2015 10:33:37 PM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: 0x80630801

Error: (05/29/2015 10:33:37 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535

Error: (05/29/2015 10:33:37 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535

Error: (05/29/2015 10:33:37 PM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: 0x80630801

Error: (05/29/2015 10:33:28 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535

Error: (05/29/2015 10:33:28 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535

Error: (05/29/2015 10:33:28 PM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: 0x80630801

Error: (05/29/2015 10:33:08 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
cdrom


Microsoft Office:
=========================
Error: (05/27/2015 10:53:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.1.7601.175674d6727a7ntdll.dll6.1.7601.18839553e8801c015000f000842707f001d098bbf1efe330C:\Windows\Explorer.EXEC:\Windows\SYSTEM32\ntdll.dll6697b28f-04b2-11e5-80d4-002243d6dc1d

Error: (05/27/2015 10:53:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.1.7601.175674d6727a7unknown0.0.0.000000000c0000005000000007f001d098bbf1efe330C:\Windows\Explorer.EXEunknown6026481c-04b2-11e5-80d4-002243d6dc1d

Error: (05/27/2015 10:30:44 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/27/2015 10:30:44 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Kontext: aplikace Windows

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/27/2015 10:30:44 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/27/2015 10:30:44 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (05/27/2015 10:30:42 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore

Error: (05/27/2015 10:30:42 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Databáze indexu obsahu je poškozená. (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/27/2015 10:30:42 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt

Error: (05/27/2015 10:30:42 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
4700


CodeIntegrity Errors:
===================================
Date: 2015-04-25 23:08:27.765
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:08:27.453
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:08:23.348
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:08:22.958
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:08:20.667
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:08:18.962
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:08:18.666
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:08:00.812
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:08:00.313
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:05:22.116
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Atom(TM) CPU Z520 @ 1.33GHz
Percentage of memory in use: 44%
Total physical RAM: 2037.93 MB
Available physical RAM: 1127.01 MB
Total Pagefile: 4075.86 MB
Available Pagefile: 3014.29 MB
Total Virtual: 2047.88 MB
Available Virtual: 1896.09 MB

==================== Drives ================================

Drive c: (Win7) (Fixed) (Total:465.74 GB) (Free:338.21 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: AE566AC3)
Partition 1: (Active) - (Size=465.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=16 MB) - (Type=EF)

==================== End of log ============================

[ondoubek]

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29-05-2015
Ran by Ondra at 2015-05-29 22:40:11
Running from C:\Users\Ondra\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3263161969-555476508-3097765438-500 - Administrator - Disabled)
AvastSoftwareUpdater (S-1-5-21-3263161969-555476508-3097765438-1005 - Limited - Enabled)
Guest (S-1-5-21-3263161969-555476508-3097765438-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3263161969-555476508-3097765438-1002 - Limited - Enabled)
Ondra (S-1-5-21-3263161969-555476508-3097765438-1006 - Administrator - Enabled) => C:\Users\Ondra

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Bitdefender Antivirus Free Edition (Enabled - Up to date) {9B5F5313-CAF9-DD97-C460-E778420237B4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antivirus Free Edition (Enabled - Up to date) {203EB2F7-ECC3-D219-FED0-DC0A39857D09}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Adobe Flash Player 17 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 17.0.0.134 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
ASIO4ALL (HKLM\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach)
ASUSUpdate for Eee PC (HKLM\...\{587178E7-B1DF-494E-9838-FA4DD36E873C}) (Version: 1.03.04 - ASUSTeK Computer Inc.)
Atheros Client Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.0 - Atheros)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.10 - Atheros Communications Inc.)
Atheros Ethernet Utility (HKLM\...\{FB686487-C637-4EEF-BCB1-C92463F2CC05}) (Version: 1.1.0.5 - Atheros Communications Inc.)
Audacity 2.1.0 (HKLM\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
AviSynth 2.5 (HKLM\...\AviSynth) (Version: - )
Bitdefender Antivirus Free Edition (HKLM\...\BitDefender Gonzales) (Version: 1.0.21.1099 - Bitdefender)
CCleaner (HKLM\...\CCleaner) (Version: 4.06 - Piriform)
Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 5.0.1.0406 - Disc Soft Ltd)
Digital Zoom Control (HKLM\...\{75E9CAA3-B336-439D-85FB-7C7B2ACA1A16}) (Version: 1.0.6 - ASUS)
E-Cam (HKLM\...\{185AFA7A-F63E-450B-94AA-011CAC18090E}) (Version: 2.0.1.9 - )
FontResizer (HKLM\...\{FAD8718D-950E-468D-BDE2-17D4D6F1EA6A}) (Version: 1.01.0007 - ASUS)
foobar2000 v1.3.6 (HKLM\...\foobar2000) (Version: 1.3.6 - Peter Pawlowski)
Google Chrome (HKLM\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
HD Tune 2.50 (HKLM\...\HD Tune_is1) (Version: - EFD Software)
Hotkey Service (HKLM\...\{71C0E38E-09F2-4386-9977-404D4F6640CD}) (Version: 1.13 - AsusTek Computer)
Intel(R) Graphics Media Accelerator 500 (HKLM\...\LPCO) (Version: - Intel Corporation)
Java 8 Update 40 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
K-Lite Mega Codec Pack 9.9.5 (HKLM\...\KLiteCodecPack_is1) (Version: 9.9.5 - )
linguatec Voice Reader (HKLM\...\{93293322-B694-4270-B7FE-DDE1A681ACCA}) (Version: 1.00.0000 - linguatec)
Livestreamer 1.11.1 (HKLM\...\Livestreamer) (Version: - )
LiveUpdate (HKLM\...\{38E5A3B1-ADF1-47E0-8024-76310A30EB36}) (Version: 1.19 - Asus)
LMMS 1.1.3 (HKLM\...\LMMS) (Version: 1.1.3 - LMMS Developers)
Logon Screen (HKLM\...\{1730D13B-7517-4321-A88B-64627CF67CDC}_is1) (Version: 3.01 - Daniel Rebelo)
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 4.0 (HKLM\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
OpenAL (HKLM\...\OpenAL) (Version: - )
OpenOffice 4.1.1 (HKLM\...\{C560D6E7-E40A-435D-8B71-62CBCF1701B2}) (Version: 4.11.9775 - Apache Software Foundation)
Opera Stable 29.0.1795.60 (HKLM\...\Opera 29.0.1795.60) (Version: 29.0.1795.60 - Opera Software ASA)
paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC41}) (Version: 4.0.5 - dotPDN LLC)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5948 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM\...\{9D3D8C60-A55F-4fed-B2B9-173F09590E16}) (Version: 1.00.0124 - REALTEK Semiconductor Corp.)
Skype™ 7.1 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.1.105 - Skype Technologies S.A.)
SmoothVideo Project version 3.1.6 (HKLM\...\SmoothVideo Project_is1) (Version: 3.1.6 - SVP)
Spotify (HKU\S-1-5-21-3263161969-555476508-3097765438-1006\...\Spotify) (Version: 1.0.4.90.g0b6df40b - Spotify AB)
SRS Premium Sound Control Panel (HKLM\...\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}) (Version: 1.8.1800 - SRS Labs, Inc.)
Steam (HKLM\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Super Hybrid Engine (HKLM\...\{88F08F98-12BC-4613-81A2-8F9B88CFC73E}) (Version: 2.09 - AsusTek Computer)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.6.1 - Synaptics Incorporated)
USB Multi-Channel Audio Device (HKLM\...\C-Media CM106 Like Sound Driver) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WebM Media Foundation Components (HKLM\...\webmmf) (Version: 1.0.1.2 - WebM Project)
WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.0.9600 - Broadcom Corporation)
WinRAR 4.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

21-04-2015 21:38:12 Windows Update
25-04-2015 23:20:35 OK
08-05-2015 18:50:46 Naplánovaný kontrolní bod
14-05-2015 20:27:16 Windows Update
14-05-2015 21:47:32 Windows Update
15-05-2015 18:42:36 Windows Update
22-05-2015 23:05:41 Installed Opera 10.51.
22-05-2015 23:12:22 Removed Opera 10.51.
23-05-2015 23:29:02 Windows Update
25-05-2015 20:35:59 Installed VirtualDJ Home FREE
26-05-2015 17:04:40 Removed VirtualDJ Home FREE
26-05-2015 22:09:10 Installed Opera 10.10.
26-05-2015 22:29:22 Removed Opera 10.10.
29-05-2015 18:58:55 zoek.exe restore point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2015-05-29 19:00 - 00000841 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0BCF798B-A0D4-4A67-A825-A03B631927D7} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-07] (Microsoft Corporation)
Task: {121AAB0E-CFD1-4CE7-8729-5340FBDF5535} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {20C9E82D-52A3-40B0-B507-4BD45F40D80C} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_17_0_0_134_pepper.exe [2015-04-11] (Adobe Systems Incorporated)
Task: {452F38CB-ABFE-49A4-87BA-6C0B55C3E7CA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {48AE6952-877E-43D0-849B-D6053CE8D6D6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {61D42273-6A13-4355-82BF-AFB01EBDA987} - System32\Tasks\Logon Screen SkipUAC => C:\Program Files\Logon Screen\Logon Screen.exe [2015-02-15] (Daniel Rebelo)
Task: {759C46CA-1E49-4976-BA39-27B27159D17E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {9F9CB856-383D-470E-99EA-09E8A507F5DC} - System32\Tasks\Opera scheduled Autoupdate 1432916178 => C:\Program Files\Opera\launcher.exe [2015-05-18] (Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\system32\Macromed\Flash\FlashUtil32_17_0_0_134_pepper.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-04-17 13:39 - 2013-03-19 12:07 - 00508136 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\sqlite3.dll
2015-04-17 13:39 - 2013-09-03 14:29 - 00095088 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\BDMetrics.dll
2013-07-24 21:33 - 2009-08-19 02:35 - 00219136 _____ () C:\Windows\System32\AsusService.exe

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3263161969-555476508-3097765438-1006\Control Panel\Desktop\\Wallpaper -> C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: Disc Soft Lite Bus Service => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk => C:\Windows\pss\AsusVibeLauncher.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\Windows\pss\Bluetooth.lnk.CommonStartup
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: DigitalZoomControl => "C:\Program Files\ASUS\DigitalZoomControl\DigitalZoomControl.exe"
MSCONFIG\startupreg: Spotify => "C:\Users\Ondra\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Ondra\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{150EB933-3066-46FF-83AD-CB412E2DF2E3}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{5D215356-5183-494D-9509-4FC55D837061}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{2A4749D0-80C2-45B3-98BD-BA7F8340867C}] => (Allow) C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [{131CA0B6-7B4D-4670-BAAD-884E3F244121}] => (Allow) C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [{012D5B39-0189-4443-8025-15F428952128}] => (Allow) C:\Program Files\Opera\opera.exe
FirewallRules: [{D7457AC1-3360-4072-A9C4-87CA33D29BB2}] => (Allow) C:\Program Files\Opera\opera.exe
FirewallRules: [TCP Query User{78DD1691-41B7-4A54-89DC-59381135CBAD}C:\program files\tmnationsforever\tmforever.exe] => (Allow) C:\program files\tmnationsforever\tmforever.exe
FirewallRules: [UDP Query User{EFC21E08-2C2F-4436-81A5-A3DEFA75483C}C:\program files\tmnationsforever\tmforever.exe] => (Allow) C:\program files\tmnationsforever\tmforever.exe
FirewallRules: [TCP Query User{F4DA40FB-DCB9-454B-83CF-2E3F7BAC559B}C:\counter-strike 1.6\csko.exe] => (Block) C:\counter-strike 1.6\csko.exe
FirewallRules: [UDP Query User{340BA62B-8D0A-4BE5-81A3-FFC4ED921FE7}C:\counter-strike 1.6\csko.exe] => (Block) C:\counter-strike 1.6\csko.exe
FirewallRules: [TCP Query User{560944C3-46B8-4F16-93D7-20792FB6971C}C:\users\ondra\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ondra\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{1884B5DD-E56A-4DF6-AA62-0702D307FCD2}C:\users\ondra\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ondra\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{0C218042-B113-43B0-B2C4-0629DFDA6094}C:\users\ondra\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\ondra\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{EA309E9A-C858-49CB-B58F-EA8457E0856C}C:\users\ondra\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\ondra\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{3202FEC3-3F84-4254-8143-0428F37635FB}C:\counter-strike 1.6\csko.exe] => (Block) C:\counter-strike 1.6\csko.exe
FirewallRules: [UDP Query User{633414D9-0355-49F8-A188-44B1C3E84093}C:\counter-strike 1.6\csko.exe] => (Block) C:\counter-strike 1.6\csko.exe
FirewallRules: [TCP Query User{6FE240E5-E94D-4ACC-ADAB-73A25D60C4D2}C:\users\ondra\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ondra\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{92C5B815-28E8-4C8A-BD01-36AE4507D785}C:\users\ondra\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ondra\appdata\roaming\spotify\spotify.exe
FirewallRules: [{C9347D0C-A60D-439C-B349-72E548887432}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{BAAA5786-66A7-48B2-B97B-900DDA680D6F}] => (Allow) C:\Windows\System32\PnkBstrA.exe
FirewallRules: [{CFC08A6E-336F-4C2D-8AA7-9F51D5E6026C}] => (Allow) C:\Windows\System32\PnkBstrA.exe
FirewallRules: [{D51FC0BE-F179-4CA1-BE47-26A832D7792C}] => (Allow) C:\Windows\System32\PnkBstrB.exe
FirewallRules: [{547B3565-054B-4C9C-B779-EBD6AA9DAB3F}] => (Allow) C:\Windows\System32\PnkBstrB.exe
FirewallRules: [TCP Query User{4E95B93E-11A2-48CA-9B66-BB1F51BB954C}C:\program files\ea games\battlefield play4free\bfp4f.exe] => (Allow) C:\program files\ea games\battlefield play4free\bfp4f.exe
FirewallRules: [UDP Query User{1956E4DC-653A-4809-AEB4-27B4BF6C188E}C:\program files\ea games\battlefield play4free\bfp4f.exe] => (Allow) C:\program files\ea games\battlefield play4free\bfp4f.exe
FirewallRules: [{ACACBEF0-FF8C-4460-BF25-7EBB147FE14F}] => (Allow) C:\Users\Ondra\AppData\Local\Temp\nsv5237.tmp\CnetInstaller-75599199.exe
FirewallRules: [{861704CA-BC3C-4AE8-A631-62AA33E45B13}] => (Allow) C:\Users\Ondra\AppData\Local\Temp\nsv5237.tmp\CnetInstaller-75599199.exe
FirewallRules: [TCP Query User{89C2FE60-F997-41B2-9379-0DA661196556}C:\users\ondra\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ondra\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{5C2807EC-FDF6-4225-A1DF-D7EEE19E041C}C:\users\ondra\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ondra\appdata\roaming\spotify\spotify.exe
FirewallRules: [{EED91087-4436-4BF9-89F7-EA6ED369B144}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{2DBB5444-9BC7-4AE7-8190-394A4A8956F0}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{B7FA89E0-E6D6-4A5A-9936-1227A2B42651}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{AA96DCFA-8712-4CE8-913D-8EA037962374}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{FD643BB0-E57C-4F1C-A006-0C11E8A939FC}C:\program files\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{F1CFC23E-7B96-4798-B187-35A737A51117}C:\program files\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [{7C4DBABE-2C7F-462E-8848-57ED857A6811}] => (Allow) C:\Program Files\Maxthon\Bin\MxUp.exe
FirewallRules: [{5FCFA408-3061-4D9A-A42E-AFEEFA779054}] => (Allow) C:\Program Files\Maxthon\Bin\Maxthon.exe
FirewallRules: [{DE404453-DE60-4177-8B13-DBB68F3BC73C}] => (Allow) C:\Program Files\Maxthon\Bin\MxUp.exe
FirewallRules: [{D2D2798E-005C-4057-A840-053C53982FFE}] => (Allow) C:\Program Files\Maxthon\Bin\Maxthon.exe

==================== Faulty Device Manager Devices =============

Name: adfs
Description: adfs
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: adfs
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/27/2015 10:53:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 6.1.7601.17567, časové razítko: 0x4d6727a7
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18839, časové razítko: 0x553e8801
Kód výjimky: 0xc015000f
Posun chyby: 0x00084270
ID chybujícího procesu: 0x7f0
Čas spuštění chybující aplikace: 0xExplorer.EXE0
Cesta k chybující aplikaci: Explorer.EXE1
Cesta k chybujícímu modulu: Explorer.EXE2
ID zprávy: Explorer.EXE3

Error: (05/27/2015 10:53:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 6.1.7601.17567, časové razítko: 0x4d6727a7
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000
ID chybujícího procesu: 0x7f0
Čas spuštění chybující aplikace: 0xExplorer.EXE0
Cesta k chybující aplikaci: Explorer.EXE1
Cesta k chybujícímu modulu: Explorer.EXE2
ID zprávy: Explorer.EXE3

Error: (05/27/2015 10:30:44 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Index nebyl inicializován.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/27/2015 10:30:44 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.

Kontext: aplikace Windows

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/27/2015 10:30:44 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt indexování nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/27/2015 10:30:44 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)

Error: (05/27/2015 10:30:42 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.JetPropStore> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/27/2015 10:30:42 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Služba Windows Search nenačetla informace o úložišti vlastností.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Databáze indexu obsahu je poškozená. (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/27/2015 10:30:42 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Služba Windows Search byla zastavena, protože došlo k problému s indexovacím modulem The catalog is corrupt.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/27/2015 10:30:42 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: Vyhledávací služby zjistila, že index {id=4700} obsahuje poškozené datové soubory. Služba se pokusí tyto potíže automaticky odstranit vytvořením nového indexu.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (05/29/2015 10:33:37 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535

Error: (05/29/2015 10:33:37 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535

Error: (05/29/2015 10:33:37 PM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: 0x80630801

Error: (05/29/2015 10:33:37 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535

Error: (05/29/2015 10:33:37 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535

Error: (05/29/2015 10:33:37 PM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: 0x80630801

Error: (05/29/2015 10:33:28 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535

Error: (05/29/2015 10:33:28 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535

Error: (05/29/2015 10:33:28 PM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: 0x80630801

Error: (05/29/2015 10:33:08 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
cdrom


Microsoft Office:
=========================
Error: (05/27/2015 10:53:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.1.7601.175674d6727a7ntdll.dll6.1.7601.18839553e8801c015000f000842707f001d098bbf1efe330C:\Windows\Explorer.EXEC:\Windows\SYSTEM32\ntdll.dll6697b28f-04b2-11e5-80d4-002243d6dc1d

Error: (05/27/2015 10:53:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.1.7601.175674d6727a7unknown0.0.0.000000000c0000005000000007f001d098bbf1efe330C:\Windows\Explorer.EXEunknown6026481c-04b2-11e5-80d4-002243d6dc1d

Error: (05/27/2015 10:30:44 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/27/2015 10:30:44 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Kontext: aplikace Windows

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/27/2015 10:30:44 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/27/2015 10:30:44 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (05/27/2015 10:30:42 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore

Error: (05/27/2015 10:30:42 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Databáze indexu obsahu je poškozená. (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/27/2015 10:30:42 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt

Error: (05/27/2015 10:30:42 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
4700


CodeIntegrity Errors:
===================================
Date: 2015-04-25 23:08:27.765
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:08:27.453
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:08:23.348
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:08:22.958
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:08:20.667
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:08:18.962
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:08:18.666
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:08:00.812
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:08:00.313
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-04-25 23:05:22.116
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Atom(TM) CPU Z520 @ 1.33GHz
Percentage of memory in use: 44%
Total physical RAM: 2037.93 MB
Available physical RAM: 1127.01 MB
Total Pagefile: 4075.86 MB
Available Pagefile: 3014.29 MB
Total Virtual: 2047.88 MB
Available Virtual: 1896.09 MB

==================== Drives ================================

Drive c: (Win7) (Fixed) (Total:465.74 GB) (Free:338.21 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: AE566AC3)
Partition 1: (Active) - (Size=465.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=16 MB) - (Type=EF)

==================== End of log ============================

[jaro3]

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

SearchScopes: HKU\S-1-5-21-3263161969-555476508-3097765438-1006 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
C:\ProgramData\1423062770.bdinstall.bin
C:\ProgramData\1428186960.bdinstall.bin
C:\ProgramData\1428186966.bdinstall.bin
C:\ProgramData\1428187727.bdinstall.bin
C:\ProgramData\1428187779.bdinstall.bin
C:\ProgramData\1428187958.bdinstall.bin
C:\ProgramData\1428188083.bdinstall.bin
C:\ProgramData\1428188086.bdinstall.bin
C:\ProgramData\1428188237.bdinstall.bin
C:\ProgramData\1428188244.bdinstall.bin
C:\ProgramData\1428188313.bdinstall.bin
C:\ProgramData\1428188316.bdinstall.bin
C:\ProgramData\1428188762.bdinstall.bin
C:\ProgramData\1429270752.bdinstall.bin
C:\Qoobox


(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

[ondoubek]

Fix result of Farbar Recovery Scan Tool (x86) Version: 29-05-2015
Ran by Ondra at 2015-05-30 09:59:53 Run:1
Running from C:\Users\Ondra\Desktop
Loaded Profiles: Ondra (Available Profiles: Ondra)
Boot Mode: Normal

==============================================

fixlist content:
*****************
SearchScopes: HKU\S-1-5-21-3263161969-555476508-3097765438-1006 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
C:\ProgramData\1423062770.bdinstall.bin
C:\ProgramData\1428186960.bdinstall.bin
C:\ProgramData\1428186966.bdinstall.bin
C:\ProgramData\1428187727.bdinstall.bin
C:\ProgramData\1428187779.bdinstall.bin
C:\ProgramData\1428187958.bdinstall.bin
C:\ProgramData\1428188083.bdinstall.bin
C:\ProgramData\1428188086.bdinstall.bin
C:\ProgramData\1428188237.bdinstall.bin
C:\ProgramData\1428188244.bdinstall.bin
C:\ProgramData\1428188313.bdinstall.bin
C:\ProgramData\1428188316.bdinstall.bin
C:\ProgramData\1428188762.bdinstall.bin
C:\ProgramData\1429270752.bdinstall.bin
C:\Qoobox
*****************

"HKU\S-1-5-21-3263161969-555476508-3097765438-1006\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => key Removed successfully.
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
MSCONFIG\Services: gupdate => 2 => Error: No automatic fix found for this entry.
MSCONFIG\Services: gupdatem => 3 => Error: No automatic fix found for this entry.
C:\ProgramData\1423062770.bdinstall.bin => Moved successfully.
C:\ProgramData\1428186960.bdinstall.bin => Moved successfully.
C:\ProgramData\1428186966.bdinstall.bin => Moved successfully.
C:\ProgramData\1428187727.bdinstall.bin => Moved successfully.
C:\ProgramData\1428187779.bdinstall.bin => Moved successfully.
C:\ProgramData\1428187958.bdinstall.bin => Moved successfully.
C:\ProgramData\1428188083.bdinstall.bin => Moved successfully.
C:\ProgramData\1428188086.bdinstall.bin => Moved successfully.
C:\ProgramData\1428188237.bdinstall.bin => Moved successfully.
C:\ProgramData\1428188244.bdinstall.bin => Moved successfully.
C:\ProgramData\1428188313.bdinstall.bin => Moved successfully.
C:\ProgramData\1428188316.bdinstall.bin => Moved successfully.
C:\ProgramData\1428188762.bdinstall.bin => Moved successfully.
C:\ProgramData\1429270752.bdinstall.bin => Moved successfully.
C:\Qoobox => Moved successfully.

==== End of Fixlog 09:59:54 ====

[jerabina]

Co problémy? + nový log z HJT

[ondoubek]

Zdá se to být OK.

[ondoubek]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:51:30, on 30.5.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
Boot mode: Normal

Running processes:
C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Ondra\Desktop\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll
O4 - HKLM\..\Run: [HotkeyService] AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotkeyService.exe
O4 - HKLM\..\Run: [HotKeyMon] AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SuperHybridEngine] AsusSender.exe C:\Program Files\EeePC\SHE\SuperHybridEngine.exe
O4 - HKLM\..\Run: [SynAsusAcpi] %ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [IgfxExt] C:\Windows\system32\IgfxExt.exe /RegServer
O4 - HKLM\..\Run: [Cm106Sound] RunDll32 cm106.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil32_17_0_0_134_pepper.exe -update pepperplugin
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Asus Launcher Service (AsusService) - Unknown owner - C:\Windows\System32\AsusService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Bitdefender Antivirus Free Edition (gzserv) - Bitdefender - C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 3550 bytes

[jerabina]

Zavři ostatní programy/prohlížeče, odpoj se od internetu a v HJT fixni:
NÁVOD

Kód: Vybrat vše

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil32_17_0_0_134_pepper.exe -update pepperplugin

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore) .
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci.

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde:
v C: \ DelFix.txt

Pokud nejsou problémy, je to vše a můžeš dát vyřešeno - zelenou "fajfku"

[ondoubek]

Díky za pomoc :)

# DelFix v1.010 - Logfile created 30/05/2015 at 13:21:21
# Updated 26/04/2015 by Xplode
# Username : Ondra - ONDRA-PC
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\RegBackup
Deleted : C:\zoek-results.log
Deleted : C:\Users\Ondra\Desktop\Addition.txt
Deleted : C:\Users\Ondra\Desktop\Fixlog.txt
Deleted : C:\Users\Ondra\Desktop\FRST.exe
Deleted : C:\Users\Ondra\Desktop\FRST.txt
Deleted : C:\Users\Ondra\Desktop\JRT.exe
Deleted : C:\Users\Ondra\Desktop\JRT.txt
Deleted : C:\Users\Ondra\Desktop\hijackthis.exe
Deleted : C:\Users\Ondra\Desktop\hijackthis.log
Deleted : C:\Users\Ondra\Desktop\hijackthis1.txt
Deleted : C:\Users\Ondra\Desktop\RogueKiller.exe
Deleted : C:\Users\Ondra\Desktop\zoek.exe
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis

~ Cleaning system restore ...

Deleted : RP #117 [Windows Update | 04/21/2015 19:38:12]
Deleted : RP #118 [OK | 04/25/2015 21:20:35]
Deleted : RP #119 [Naplánovaný kontrolní bod | 05/08/2015 16:50:46]
Deleted : RP #120 [Windows Update | 05/14/2015 18:27:16]
Deleted : RP #121 [Windows Update | 05/14/2015 19:47:32]
Deleted : RP #122 [Windows Update | 05/15/2015 16:42:36]
Deleted : RP #123 [Installed Opera 10.51. | 05/22/2015 21:05:41]
Deleted : RP #124 [Removed Opera 10.51. | 05/22/2015 21:12:22]
Deleted : RP #125 [Windows Update | 05/23/2015 21:29:02]
Deleted : RP #126 [Installed VirtualDJ Home FREE | 05/25/2015 18:35:59]
Deleted : RP #127 [Removed VirtualDJ Home FREE | 05/26/2015 15:04:40]
Deleted : RP #128 [Installed Opera 10.10. | 05/26/2015 20:09:10]
Deleted : RP #129 [Removed Opera 10.10. | 05/26/2015 20:29:22]
Deleted : RP #130 [zoek.exe restore point | 05/29/2015 16:58:55]

New restore point created !

########## - EOF - ##########