﻿Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by Ivik (administrator) on IVIK-VAIO on 10-04-2015 09:02:06
Running from C:\Users\Ivik\Desktop
Loaded Profiles: Ivik (Available profiles: Ivik)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
(Google Inc.) C:\Users\Ivik\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL$SPZSQL2012\Binn\sqlservr.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Google Inc.) C:\Users\Ivik\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ivik\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ivik\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ivik\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Google Inc.) C:\Users\Ivik\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESGfxMgr.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
(Google Inc.) C:\Users\Ivik\AppData\Local\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(forum.viry.cz) C:\Users\Ivik\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2531624 2011-06-24] (Synaptics Incorporated)
HKLM\...\Run: [Bluetooth] => C:\Program Files\WIDCOMM\Bluetooth Software\bttray.exe [1211680 2011-07-27] (Broadcom Corporation.)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [2801288 2011-05-31] (Sony Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-31] (AVAST Software)
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKU\S-1-5-21-3908110682-3860477712-1496009051-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-3908110682-3860477712-1496009051-1000\...\MountPoints2: {495c9037-75b1-11e2-91bd-ccaf78d5a74a} - E:\Autorun.exe
HKU\S-1-5-21-3908110682-3860477712-1496009051-1000\...\MountPoints2: {5c1ddb74-1c7a-11e4-a677-f0bf97ce9175} - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-3908110682-3860477712-1496009051-1000\...\MountPoints2: {7f45f227-a2a0-11e3-b803-f0bf97ce9175} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-3908110682-3860477712-1496009051-1000\...\MountPoints2: {937905a5-39d6-11e1-a523-f0bf97ce9175} - E:\Startme.exe
HKU\S-1-5-21-3908110682-3860477712-1496009051-1000\...\MountPoints2: {a1a18476-5554-11e1-a147-f0bf97ce9175} - F:\Autorun.exe
HKU\S-1-5-21-3908110682-3860477712-1496009051-1000\...\MountPoints2: {faed7aed-416f-11e4-85ed-f0bf97ce9175} - F:\autorun.exe
HKU\S-1-5-21-3908110682-3860477712-1496009051-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> 
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Service Manager.lnk
ShortcutTarget: Service Manager.lnk -> C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ivik\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ivik\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ivik\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ivik\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ivik\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ivik\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ivik\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ivik\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ivik\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ivik\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ivik\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ivik\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-3908110682-3860477712-1496009051-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKU\S-1-5-21-3908110682-3860477712-1496009051-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
HKU\S-1-5-21-3908110682-3860477712-1496009051-1000\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://sony.msn.com
HKU\S-1-5-21-3908110682-3860477712-1496009051-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-3908110682-3860477712-1496009051-1000 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3908110682-3860477712-1496009051-1000 -> {85661C8E-5CF6-4A80-8A4A-D84C8373C9D6} URL = http://services.zinio.com/search?s={searchTerms}&rf=sonyslices
SearchScopes: HKU\S-1-5-21-3908110682-3860477712-1496009051-1000 -> {BDD157E1-F3D5-4AF5-8BE9-A9D391D53B63} URL = http://rover.ebay.com/rover/1/14361-113527-36183-9/4?mpre=http://search.eim.ebay.cz/?oemInLn=ieSrch-Q311&kw={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-08-31] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2011-01-26] (SEIKO EPSON CORPORATION)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-07-05] (Atheros Commnucations)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-08-31] (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2011-01-26] (SEIKO EPSON CORPORATION)
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36

FireFox:
========
FF ProfilePath: C:\Users\Ivik\AppData\Roaming\Mozilla\Firefox\Profiles\j9qt65dk.default
FF SelectedSearchEngine: Seznam
FF Homepage: hxxp://www.seznam.cz/
FF Keyword.URL: hxxp://search.seznam.cz/?sourceid=Quicksearch_14875&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-04-09] ()
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-19] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre1.8.0_31\bin\new_plugin\npjp2.dll No File
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-19] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-04-09] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2011-04-20] (CANON INC.)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\new_plugin\npjp2.dll No File
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-19] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files (x86)\Sony\MSS\3.8.130\npMcAfeeMss.dll No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll [2012-12-04] (RocketLife, LLP)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files (x86)\Sony\Media Go\npmediago.dll [2010-12-10] (Sony Network Entertainment International LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-09-23] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3908110682-3860477712-1496009051-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Ivik\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin HKU\S-1-5-21-3908110682-3860477712-1496009051-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Ivik\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF SearchPlugin: C:\Users\Ivik\AppData\Roaming\Mozilla\Firefox\Profiles\j9qt65dk.default\searchplugins\firmycz.xml [2014-04-05]
FF SearchPlugin: C:\Users\Ivik\AppData\Roaming\Mozilla\Firefox\Profiles\j9qt65dk.default\searchplugins\youtube.xml [2011-11-28]
FF SearchPlugin: C:\Users\Ivik\AppData\Roaming\Mozilla\Firefox\Profiles\j9qt65dk.default\searchplugins\zbocz.xml [2014-04-05]
FF Extension: ColorfulTabs - C:\Users\Ivik\AppData\Roaming\Mozilla\Firefox\Profiles\j9qt65dk.default\Extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe} [2015-03-26]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-02-20]

Chrome: 
=======
CHR HomePage: Default -> hxxp://seznam.cz/
CHR Profile: C:\Users\Ivik\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Ivik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-02-10]
CHR Extension: (Google Drive) - C:\Users\Ivik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-02-10]
CHR Extension: (YouTube) - C:\Users\Ivik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-02-10]
CHR Extension: (Google Search) - C:\Users\Ivik\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-02-10]
CHR Extension: (Love O'Clock) - C:\Users\Ivik\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbcnbegbcdfdlndabgemkabfhfllocma [2013-02-10]
CHR Extension: (AdBlock) - C:\Users\Ivik\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-04-04]
CHR Extension: (Avast Online Security) - C:\Users\Ivik\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-31]
CHR Extension: (English vocabulary) - C:\Users\Ivik\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgmklfohhllfpjjmjejencmaodgiknmj [2013-02-10]
CHR Extension: (Google Wallet) - C:\Users\Ivik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Evernote Web Clipper) - C:\Users\Ivik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2013-02-10]
CHR Extension: (Gmail) - C:\Users\Ivik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-02-10]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-31]
StartMenuInternet: Google Chrome - C:\Users\Ivik\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [138400 2011-07-05] (Atheros) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [98976 2011-07-05] (Atheros Commnucations) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-31] (AVAST Software)
S3 DCDhcpService; C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe [104096 2011-07-19] (Atheros Communication Inc.) [File not signed]
R2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [File not signed]
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
S2 ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-01] (Intel Corporation)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-04-02] (Nero AG)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [138192 2011-02-07] ()
S3 McComponentHostServiceSony; C:\Program Files (x86)\Sony\MSS\3.8.130\McCHSvc.exe [235216 2013-10-16] (McAfee, Inc.)
R2 MSSQL$SPZSQL2012; C:\Program Files (x86)\Microsoft SQL Server\MSSQL$SPZSQL2012\Binn\sqlservr.exe [7520337 2002-12-17] (Microsoft Corporation) [File not signed]
S3 MSSQLServerADHelper; C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [66112 2002-12-17] (Microsoft Corporation) [File not signed]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [50688 2012-02-08] (Hewlett-Packard) [File not signed]
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [66048 2012-02-08] (Hewlett-Packard) [File not signed]
S3 SQLAgent$SPZSQL2012; C:\Program Files (x86)\Microsoft SQL Server\MSSQL$SPZSQL2012\Binn\sqlagent.EXE [311872 2002-12-17] (Microsoft Corporation) [File not signed]
R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [105024 2011-02-23] (ArcSoft, Inc.)
R3 USER_ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-01] (Intel Corporation)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [887000 2011-01-20] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1642544 2014-02-28] (Sony Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-31] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-31] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-31] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-31] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-11-25] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-31] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-31] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2014-01-22] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-31] ()
U5 ATHDFU; C:\Windows\System32\Drivers\ATHDFU.sys [51872 2011-07-05] (Windows (R) Win 7 DDK provider)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2013-08-15] ()
S3 GemCCID; C:\Windows\System32\DRIVERS\GemCCID.sys [126720 2012-03-28] (Gemalto)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-08-15] ()
R2 risdsnpe; C:\Windows\system32\drivers\risdsnxc64.sys [98816 2011-06-24] (REDC)
S3 s1039bus; C:\Windows\System32\DRIVERS\s1039bus.sys [127600 2010-03-01] (MCCI Corporation)
S3 s1039mdfl; C:\Windows\System32\DRIVERS\s1039mdfl.sys [19568 2010-03-01] (MCCI Corporation)
S3 s1039mdm; C:\Windows\System32\DRIVERS\s1039mdm.sys [161904 2010-03-01] (MCCI Corporation)
S3 s1039mgmt; C:\Windows\System32\DRIVERS\s1039mgmt.sys [141424 2010-03-01] (MCCI Corporation)
S3 s1039nd5; C:\Windows\System32\DRIVERS\s1039nd5.sys [34416 2010-03-01] (MCCI Corporation)
S3 s1039obex; C:\Windows\System32\DRIVERS\s1039obex.sys [137328 2010-03-01] (MCCI Corporation)
S3 s1039unic; C:\Windows\System32\DRIVERS\s1039unic.sys [158320 2010-03-01] (MCCI Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-09-21] (Duplex Secure Ltd.)
U3 a7nc2dox; C:\Windows\System32\Drivers\a7nc2dox.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zero size file/folder)
U3 ayjrsqrq; C:\Windows\System32\Drivers\ayjrsqrq.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zero size file/folder)
S3 moufiltr; system32\DRIVERS\moufiltr.sys [X]
S3 pccsmcfd; system32\DRIVERS\pccsmcfdx64.sys [X]
S3 vhidmini; system32\DRIVERS\walvhid.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-10 09:02 - 2015-04-10 09:04 - 00025325 _____ () C:\Users\Ivik\Desktop\FRST.txt
2015-04-10 09:01 - 2015-04-10 09:01 - 00112640 _____ (forum.viry.cz) C:\Users\Ivik\Desktop\FRSTLauncher.exe
2015-04-10 08:00 - 2015-04-10 08:00 - 02095616 _____ (Farbar) C:\Users\Ivik\Desktop\FRST64.exe
2015-04-10 07:31 - 2015-04-10 09:02 - 00000000 ___DC () C:\FRST
2015-04-09 22:19 - 2015-04-09 22:19 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-04-09 14:48 - 2015-04-09 14:48 - 00001746 _____ () C:\Users\Ivik\Desktop\malware.txt
2015-04-09 14:16 - 2015-04-10 07:44 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-04-09 14:16 - 2015-04-09 14:16 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-04-09 14:09 - 2015-04-09 14:09 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\Ivik\Desktop\mbam-setup-2.1.4.1018.exe
2015-04-09 11:38 - 2015-04-09 11:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune
2015-04-09 11:38 - 2015-04-09 11:38 - 00000000 ____D () C:\Program Files (x86)\HD Tune
2015-04-09 11:36 - 2015-04-09 11:36 - 00642632 _____ (EFD Software ) C:\Users\Ivik\Desktop\hdtune_255.exe
2015-04-09 11:01 - 2015-04-09 11:03 - 00000000 ___DC () C:\AdwCleaner
2015-04-09 10:59 - 2015-04-09 10:59 - 00000000 ____D () C:\Users\Ivik\Desktop\CrystalDiskInfo5_0_0
2015-04-09 10:57 - 2015-04-09 10:57 - 02217984 _____ () C:\Users\Ivik\Desktop\adwcleaner_4.201.exe
2015-04-09 10:56 - 2015-04-09 10:56 - 01496172 _____ () C:\Users\Ivik\Desktop\CrystalDiskInfo5_0_0.zip
2015-04-09 09:21 - 2015-04-09 09:22 - 00000000 ___DC () C:\rsit
2015-04-09 09:14 - 2015-04-09 09:14 - 01222144 _____ () C:\Users\Ivik\Desktop\RSITx64.exe
2015-04-07 08:21 - 2015-04-10 08:58 - 00000616 _____ () C:\Windows\setupact.log
2015-04-07 08:21 - 2015-04-07 08:21 - 00000000 _____ () C:\Windows\setuperr.log
2015-04-07 08:20 - 2015-04-10 07:42 - 00003370 _____ () C:\Windows\PFRO.log
2015-04-04 10:41 - 2015-04-04 10:41 - 00003130 _____ () C:\Windows\System32\Tasks\USER_ESRV_SVC
2015-04-04 10:41 - 2015-04-04 10:41 - 00001987 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care.lnk
2015-04-04 10:41 - 2015-04-04 10:41 - 00000000 __RHD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care
2015-04-04 10:41 - 2015-04-04 10:40 - 00013792 _____ () C:\Windows\system32\Drivers\semav6thermal64ro.sys
2015-04-01 15:20 - 2015-04-01 15:20 - 00004552 _____ () C:\Users\Ivik\Desktop\Graf1.crtx
2015-03-28 11:56 - 2015-03-28 11:56 - 00038814 _____ () C:\Users\Ivik\Desktop\metodicky_pokyn_PRVCVV_4_priloha_B_sablona_potisku_vazby_zaverecne_prace.dotx
2015-03-25 17:35 - 2015-04-08 09:28 - 00101034 _____ () C:\Users\Ivik\Desktop\vyhodnoceni_dat_dp.xlsx
2015-03-24 18:52 - 2015-04-03 18:33 - 01536162 ____H () C:\Users\Ivik\Desktop\~WRL0003.tmp

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-10 09:02 - 2015-02-19 07:44 - 01184508 _____ () C:\Windows\WindowsUpdate.log
2015-04-10 08:58 - 2013-05-10 17:15 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-10 08:58 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-10 08:57 - 2012-05-03 18:39 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-04-10 08:47 - 2013-04-15 07:51 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-10 08:46 - 2013-05-19 12:56 - 00000958 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3908110682-3860477712-1496009051-1000UA.job
2015-04-10 08:30 - 2013-05-10 17:15 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-10 08:03 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-04-10 07:50 - 2009-07-14 06:45 - 00028576 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-10 07:50 - 2009-07-14 06:45 - 00028576 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-10 07:48 - 2015-02-09 12:30 - 00000000 ____D () C:\Users\Ivik\Desktop\Filmy
2015-04-10 07:47 - 2014-03-15 13:41 - 00000000 ____D () C:\Users\Ivik\Desktop\DP_material
2015-04-10 07:47 - 2011-11-26 23:37 - 00000000 ___RD () C:\Users\Ivik\Desktop\VŠFS
2015-04-10 07:24 - 2011-08-19 13:14 - 00000000 ____D () C:\Windows\ro
2015-04-09 22:14 - 2011-11-27 16:41 - 00000000 ____D () C:\Users\Ivik\AppData\Local\CrashDumps
2015-04-09 21:49 - 2011-08-19 13:08 - 00000000 ____D () C:\Windows\PCHEALTH
2015-04-09 21:00 - 2012-10-24 12:17 - 10100224 ___SH () C:\Users\Ivik\Desktop\Thumbs.db
2015-04-09 18:06 - 2012-12-04 11:09 - 00000000 ____D () C:\Windows\rescache
2015-04-09 17:34 - 2011-02-14 22:16 - 00743730 _____ () C:\Windows\system32\perfh005.dat
2015-04-09 17:34 - 2011-02-14 22:16 - 00178510 _____ () C:\Windows\system32\perfc005.dat
2015-04-09 17:34 - 2009-07-14 07:13 - 01810134 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-09 11:08 - 2013-04-03 12:15 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-04-09 10:46 - 2013-05-19 12:56 - 00000906 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3908110682-3860477712-1496009051-1000Core.job
2015-04-09 09:48 - 2011-11-20 13:32 - 00000000 ____D () C:\Users\Ivik\AppData\Local\Adobe
2015-04-09 09:32 - 2012-03-30 13:41 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-09 09:32 - 2012-03-30 13:41 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-04-09 09:32 - 2011-08-19 12:09 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-09 09:21 - 2013-04-03 15:12 - 00000000 ____D () C:\Program Files\trend micro
2015-04-07 08:23 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-04-07 08:22 - 2009-07-14 06:45 - 00343952 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-04-06 20:37 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-04-06 15:57 - 2015-02-09 11:40 - 00000000 ____D () C:\Users\Ivik\Desktop\4.semestr
2015-04-06 15:36 - 2011-11-20 13:26 - 00000000 ____D () C:\Users\Ivik
2015-04-06 15:33 - 2011-11-27 16:59 - 00000000 ___RD () C:\Users\Ivik\MOJE
2015-04-06 15:31 - 2011-11-20 13:26 - 00081280 _____ () C:\Users\Ivik\AppData\Local\GDIPFONTCACHEV1.DAT
2015-04-06 15:25 - 2011-12-25 13:29 - 01553408 ___SH () C:\Users\Ivik\Thumbs.db
2015-04-06 15:25 - 2011-11-20 13:32 - 00000000 ____D () C:\Users\Ivik\Documents\Bluetooth Folder
2015-04-06 15:17 - 2013-02-12 11:27 - 00000000 ____D () C:\found.000
2015-04-06 15:16 - 2011-11-20 13:26 - 00000000 ____D () C:\Windows\pss
2015-04-06 15:14 - 2013-12-01 19:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
2015-04-06 15:12 - 2015-01-16 12:43 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2015-04-06 15:12 - 2014-04-04 21:00 - 00000000 ____D () C:\Users\Ivik\AppData\Roaming\Seznam.cz
2015-04-06 15:08 - 2012-04-01 21:32 - 00000000 ____D () C:\Program Files (x86)\Fotolab
2015-04-06 15:02 - 2012-12-24 22:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Essentials 4
2015-04-05 21:41 - 2011-11-28 18:44 - 00000000 ____D () C:\Users\Ivik\AppData\Roaming\uTorrent
2015-04-04 10:44 - 2013-06-13 21:25 - 00000000 ___DC () C:\Update
2015-04-04 10:41 - 2011-08-19 12:04 - 00000000 ____D () C:\Program Files (x86)\Sony
2015-03-22 20:11 - 2012-12-03 14:38 - 00000000 ___RD () C:\Users\Ivik\Dropbox
2015-03-22 20:10 - 2012-12-03 14:30 - 00000000 ____D () C:\Users\Ivik\AppData\Roaming\Dropbox
2015-03-17 18:43 - 2012-12-03 14:30 - 00000000 ____D () C:\Users\Ivik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-03-12 23:38 - 2011-08-19 12:49 - 00000000 ____D () C:\SPLASH.000
2015-03-11 22:24 - 2011-11-27 16:57 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-03-11 22:22 - 2013-08-05 19:23 - 00000000 ____D () C:\Windows\system32\MRT
2015-03-11 22:09 - 2011-11-30 12:39 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== Files in the root of some directories =======

2012-11-30 20:14 - 2013-11-14 16:26 - 0005120 _____ () C:\Users\Ivik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-04-23 10:07 - 2013-04-23 10:07 - 0008061 _____ () C:\Users\Ivik\AppData\Local\recently-used.xbel
2012-02-20 16:14 - 2012-02-22 21:56 - 0007605 _____ () C:\Users\Ivik\AppData\Local\Resmon.ResmonCfg
2012-12-24 22:26 - 2013-04-05 11:56 - 0000952 ___SH () C:\ProgramData\KGyGaAvL.sys
2012-12-24 21:56 - 2012-03-26 20:18 - 0000105 ____R () C:\ProgramData\Ppster.ini

Some content of TEMP:
====================
C:\Users\Ivik\AppData\Local\Temp\DRPCUNLR.dll
C:\Users\Ivik\AppData\Local\Temp\Quarantine.exe
C:\Users\Ivik\AppData\Local\Temp\sqlite3.dll
C:\Users\Ivik\AppData\Local\Temp\Uninst.exe
C:\Users\Ivik\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3908110682-3860477712-1496009051-1000Core.job => C:\Users\Ivik\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3908110682-3860477712-1496009051-1000UA.job => C:\Users\Ivik\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

  
***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Ivik\Desktop" je 235851 MB.
 
 
***** Startup Programs *****
 
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update
"C:\Users\Ivik\AppData\Local\Google\Update\GoogleUpdate.exe" /c [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SeznamInstall-uninstall:901097be09013fd09928ac051703ecde
"C:\Users\Ivik\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe" -c "C:\Users\Ivik\AppData\Roaming\Seznam.cz" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Ivik^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Vezy obrazovky a sputn aplikace OneNote 2007.lnk
C:\PROGRA~2\MICROS~2\Office12\ONENOTEM.EXE  

 
***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
    EnableFirewall    REG_DWORD    0x1
    DisableNotifications    REG_DWORD    0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    EnableFirewall    REG_DWORD    0x1
    DisableNotifications    REG_DWORD    0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
 
 
***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

 



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3908110682-3860477712-1496009051-1000Core.job => C:\Users\Ivik\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3908110682-3860477712-1496009051-1000UA.job => C:\Users\Ivik\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

  
***** Velikost "Plochy" *****

Velikost slozky  je 235851 MB.
