Často mě to převádí na jiné stránky nebo to po mě chce odkliknout nějakou hloupost abych si
mohl prohlížet zvolenou stránku. Myslím že to nemusím více rozebírat, protože už jste se
s něčím takovým setkali.
Sice s obtížemi (chrom to nechtěl stáhnout, pak avast nechat spustit), ale i tak jsem byl schopný získat tenhle log.
Snad mi budete schopni poradit s chromem a když objevíte i jiné problémy taky bude dobře.
Předem děkuju za pomoc.
- Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:09-12-2015
Ran by Lukas (administrator) on LUKAS-VAIO (09-12-2015 20:07:49)
Running from C:\Users\Lukas\Desktop
Loaded Profiles: Lukas (Available Profiles: Lukas)
Platform: Windows 7 Ultimate (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
() C:\Program Files\IB Updater\ExtensionUpdaterService.exe
(tsvr.com) C:\Users\Lukas\AppData\Roaming\TSv\TSvr.exe
(National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\MDM.EXE
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
(Sony Corporation) C:\Program Files (x86)\SONY\PMB\PMBDeviceInfoProvider.exe
(TODO: <公司名>) C:\Program Files (x86)\SFK\SSFK.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
(Sony Corporation) C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(TFuns LIMITED) C:\ProgramData\8WdM8\WdMan.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(National Instruments, Inc.) C:\Windows\SysWOW64\lkcitdl.exe
(National Instruments Corporation) C:\Windows\SysWOW64\lktsrv.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Sony Corporation) C:\Program Files (x86)\SONY\VAIO Event Service\VESMgrSub.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VAIOCareService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\Apoint.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(BitTorrent Inc.) C:\Program Files (x86)\uTorrent\uTorrent.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApMsgFwd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Sony Corporation) C:\Program Files (x86)\SONY\PMB\PMBVolumeWatcher.exe
(Google) C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
(Google) C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApntEx.exe
(ALPS) C:\Program Files\Apoint\Apvfb.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCsystray.exe
(forum.viry.cz) C:\Users\Lukas\Desktop\FRSTLauncher.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12681320 2011-08-26] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint\Apoint.exe [208384 2009-11-04] (Alps Electric Co., Ltd.)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2277480 2011-08-16] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2009-11-21] (Intel Corporation)
HKLM-x32\...\Run: [PMBVolumeWatcher] => c:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [597792 2009-10-24] (Sony Corporation)
HKLM-x32\...\Run: [Google Desktop Search] => C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [30192 2011-07-25] (Google)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-09-08] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [NI Update Service] => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [3004512 2011-11-02] (National Instruments)
HKLM-x32\...\Run: [RUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [115048 2011-09-20] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-28] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\SYSTEM32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\igfxcui:
Winlogon\Notify\VESWinlogon-x32: VESWinlogon.dll [X]
HKU\S-1-5-21-1129460984-616144676-2562209765-1000\...\Run: [uTorrent] => C:\Program Files (x86)\uTorrent\uTorrent.exe [802136 2013-06-30] (BitTorrent Inc.)
HKU\S-1-5-21-1129460984-616144676-2562209765-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [4910912 2011-08-02] (DT Soft Ltd)
HKU\S-1-5-21-1129460984-616144676-2562209765-1000\...\Run: [OscarEditor] => C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe [2636800 2010-07-22] ()
HKU\S-1-5-21-1129460984-616144676-2562209765-1000\...\MountPoints2: {32896cd7-d4dd-11e2-8ae3-0024bec539e7} - D:\AutoRun.exe
HKU\S-1-5-21-1129460984-616144676-2562209765-1000\...\MountPoints2: {666c1cbe-f9ba-11e1-a87c-0024bec539e7} - G:\AutoRun.exe
HKU\S-1-5-21-1129460984-616144676-2562209765-1000\...\MountPoints2: {a6e01760-eb63-11e0-add1-0024bec539e7} - D:\autorun.exe
HKU\S-1-5-21-1129460984-616144676-2562209765-1000\...\MountPoints2: {ed95dd2b-f97c-11e1-b8d7-0024bec539e7} - G:\AutoRun.exe
HKU\S-1-5-21-1129460984-616144676-2562209765-1000\...\MountPoints2: {f86ca41f-06d8-11e2-80be-0024bec539e7} - G:\Startme.exe
AppInit_DLLs-x32: C:\PROGRA~2\Google\GOOGLE~3\GO36F4~1.DLL => C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktopNetwork3.dll [123392 2011-07-25] (Google)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-11-28] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting.lnk [2013-01-06]
ShortcutTarget: NI Error Reporting.lnk -> C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
CHR HKU\S-1-5-21-1129460984-616144676-2562209765-1000\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [24280 2011-06-01] (National Instruments Corporation)
Winsock: Catalog5-x64 08 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [26328 2011-06-01] (National Instruments Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 93.95.32.2 8.8.8.8
Tcpip\..\Interfaces\{33E16AA4-7666-4C96-A7FD-CC130D4C0D78}: [DhcpNameServer] 93.95.32.2 8.8.8.8
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yoursites123.com/?type=hp&ts=144965 ... M1954M1954
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yoursites123.com/?type=hp&ts=144965 ... M1954M1954
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.yoursites123.com/web/?type=ds&ts=14 ... earchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.yoursites123.com/?type=hp&ts=144965 ... M1954M1954
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.yoursites123.com/?type=hp&ts=144965 ... M1954M1954
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.yoursites123.com/web/?type=ds&ts=14 ... earchTerms}
HKU\S-1-5-21-1129460984-616144676-2562209765-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.yoursites123.com/web/?type=ds&ts=14 ... earchTerms}
HKU\S-1-5-21-1129460984-616144676-2562209765-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yoursites123.com/?type=hp&ts=144965 ... M1954M1954
HKU\S-1-5-21-1129460984-616144676-2562209765-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.yoursites123.com/?type=hp&ts=144965 ... M1954M1954
HKU\S-1-5-21-1129460984-616144676-2562209765-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.yoursites123.com/web/?type=ds&ts=14 ... earchTerms}
URLSearchHook: HKU\S-1-5-21-1129460984-616144676-2562209765-1000 - (No Name) - {687578b9-7132-4a7a-80e4-30ee31099e03} - No File
URLSearchHook: HKU\S-1-5-21-1129460984-616144676-2562209765-1000 - FroggyBoss Class - {539F76FD-084E-4858-86D5-62F02F54AE86} - C:\Program Files (x86)\Minibar\Froggy.dll (TODO: <название компании>)
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.yoursites123.com/web/?type=ds&ts=14 ... earchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.yoursites123.com/web/?type=ds&ts=14 ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.thesearchpage.info/?l=1&q={searchTerms}&pid=20462&r=2015/01/08&hid=15251881281741770283&lg=EN&cc=US&unqvl=74
SearchScopes: HKLM-x32 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.thesearchpage.info/?l=1&q={searchTerms}&pid=20462&r=2015/01/08&hid=15251881281741770283&lg=EN&cc=US&unqvl=74
SearchScopes: HKU\S-1-5-21-1129460984-616144676-2562209765-1000 -> DefaultScope {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.thesearchpage.info/?l=1&q={searchTerms}&pid=20462&r=2015/01/08&hid=15251881281741770283&lg=EN&cc=US&unqvl=74
SearchScopes: HKU\S-1-5-21-1129460984-616144676-2562209765-1000 -> {0DE3A979-025E-4055-9C52-2ABF91C1B45C} URL = hxxp://www.zinio.com/search/index.jsp?s={searc ... yie8search
SearchScopes: HKU\S-1-5-21-1129460984-616144676-2562209765-1000 -> {170DC629-71F2-46B8-8F2E-2BC8040AF2C7} URL = hxxp://uk.shopping.com/?linkin_id=8056359
SearchScopes: HKU\S-1-5-21-1129460984-616144676-2562209765-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.yoursites123.com/web/?type=ds&ts=14 ... earchTerms}
SearchScopes: HKU\S-1-5-21-1129460984-616144676-2562209765-1000 -> {5968B84D-E4F8-412B-ADD0-D98AAA4DCC52} URL = hxxp://rover.ebay.com/rover/1/710-42480-16445-5/4?satitle={searchTerms}
SearchScopes: HKU\S-1-5-21-1129460984-616144676-2562209765-1000 -> {70D46D94-BF1E-45ED-B567-48701376298E} URL = hxxp://127.0.0.1:4664/search&s=HmVsI4vmOIaW8DWjBQ8kd4L4kPw?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1129460984-616144676-2562209765-1000 -> {AA1E3BF9-95EC-4606-A74D-26CDF2406006} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=FF&o=14594&src=kw&q={searchTerms}&locale=en_EU&apn_ptnrs=FV&apn_dtid=YYYYYYYYCZ&apn_uid=b251e225-3900-4f92-aac3-5331e8166435&apn_sauid=57BAAB37-4E8B-4835-904B-FFE14F06CBD5
SearchScopes: HKU\S-1-5-21-1129460984-616144676-2562209765-1000 -> {B84156CD-1625-4F36-B025-96DAAA3FC3BF} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... EC_csCZ442
SearchScopes: HKU\S-1-5-21-1129460984-616144676-2562209765-1000 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.thesearchpage.info/?l=1&q={searchTerms}&pid=20462&r=2015/01/08&hid=15251881281741770283&lg=EN&cc=US&unqvl=74
SearchScopes: HKU\S-1-5-21-1129460984-616144676-2562209765-1000 -> {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = hxxp://mystart.incredibar.com/mb201/?search={searchTerms}&loc=IB_DS&a=6Oz0XlLhhC&i=26
SearchScopes: HKU\S-1-5-21-1129460984-616144676-2562209765-1000 -> {E48CB6BC-CB83-4EFB-9F31-5F6B8FE6A7FD} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
BHO: Windows Live Family Safety Browser Helper Class -> {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} -> C:\Program Files\Windows Live\Family Safety\fssbho.dll [2009-08-05] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-28] (AVAST Software)
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-08-12] (Adblock Plus)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: No Name -> {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} -> No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-06] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-28] (AVAST Software)
BHO-x32: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-06] (Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12] (Adblock Plus)
Toolbar: HKLM - No Name - {5054562D-5247-006A-76A7-7A786E7484D7} - No File
Toolbar: HKLM-x32 - No Name - {5054562D-5247-006A-76A7-7A786E7484D7} - No File
Toolbar: HKU\S-1-5-21-1129460984-616144676-2562209765-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKU\S-1-5-21-1129460984-616144676-2562209765-1000 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKU\S-1-5-21-1129460984-616144676-2562209765-1000 -> No Name - {687578B9-7132-4A7A-80E4-30EE31099E03} - No File
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.istartsurf.com/?type=sc&ts=14460490 ... M1954M1954
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-17] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-17] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-06] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-06] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.3 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2008-11-13] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
FF Plugin-x32: @playstation.com/PsndlCheck,version=1.00 -> C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll [2011-08-03] (Sony Computer Entertainment Inc.)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files (x86)\Sony\Media Go\npmediago.dll [2012-06-29] (Sony Network Entertainment International LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2011-06-07] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2011-06-07] (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\googledesktop.xml [2011-07-25]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2011-12-23] [not signed]
FF HKLM\...\Firefox\Extensions: [{336D0C35-8A85-403a-B9D2-65C292C39087}] - C:\Program Files\IB Updater\Firefox
FF Extension: IB Updater - C:\Program Files\IB Updater\Firefox [2013-03-03] [not signed]
FF HKLM\...\Firefox\Extensions: [{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}] - C:\Program Files\IB Updater\Firefox
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-09]
FF HKLM-x32\...\Firefox\Extensions: [{336D0C35-8A85-403a-B9D2-65C292C39087}] - C:\Program Files\IB Updater\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}] - C:\Program Files\IB Updater\Firefox
FF HKLM-x32\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\Lukas\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com
FF Extension: Speed Analysis 2 - C:\Users\Lukas\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2013-06-30] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [pluswinks@PlusWinks] - C:\Users\Lukas\AppData\Roaming\Mozilla\Extensions\pluswinks@PlusWinks
FF Extension: Cool Smiley Bar for Facebook - C:\Users\Lukas\AppData\Roaming\Mozilla\Extensions\pluswinks@PlusWinks [2013-06-30] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-11-28]
FF HKU\S-1-5-21-1129460984-616144676-2562209765-1000\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\Lukas\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com
FF HKU\S-1-5-21-1129460984-616144676-2562209765-1000\...\Firefox\Extensions: [pluswinks@PlusWinks] - C:\Users\Lukas\AppData\Roaming\Mozilla\Extensions\pluswinks@PlusWinks
Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-03]
CHR Extension: (Dokumenty Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-03]
CHR Extension: (Disk Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-03]
CHR Extension: (YouTube) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-03]
CHR Extension: (Adblock Plus) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-11-24]
CHR Extension: (Vyhledávání Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-03]
CHR Extension: (Tabulky Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-17]
CHR Extension: (Avast Online Security) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-03]
CHR Extension: (Skype Click to Call) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-11-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-03]
CHR Extension: (Gmail) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-03]
CHR HKLM\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\IB Updater\source.crx [2013-01-21]
CHR HKU\S-1-5-21-1129460984-616144676-2562209765-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lpgjmggepafkhenaeknpnjiceakbedpi] - C:\Users\Lukas\AppData\Local\CRE\lpgjmggepafkhenaeknpnjiceakbedpi.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [aaaahnibljmklpljnbpgfobmfpfhplch] - C:\ProgramData\AskPartnerNetwork\Toolbar\PTV-RG\CRX\ToolbarCR.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\IB Updater\source.crx [2013-01-21]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-28]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2011-10-10]
CHR HKLM-x32\...\Chrome\Extension: [lpgjmggepafkhenaeknpnjiceakbedpi] - C:\Users\Lukas\AppData\Local\CRE\lpgjmggepafkhenaeknpnjiceakbedpi.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [mocblcnaofikinigmceddfghppkkjbog] - C:\Users\Lukas\AppData\Roaming\PlusWinks\PlusWinks.crx [2013-06-11]
StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe hxxp://www.yoursites123.com/?type=sc&ts=144965 ... M1954M1954
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-28] (AVAST Software)
S3 GoogleDesktopManager-051210-111108; C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [30192 2011-07-25] (Google)
R2 IB Updater; C:\Program Files\IB Updater\ExtensionUpdaterService.exe [188760 2013-01-29] () [File not signed]
R2 IhPul; C:\Users\Lukas\AppData\Roaming\TSv\TSvr.exe [580752 2015-12-08] (tsvr.com)
R2 LkCitadelServer; C:\Windows\SysWOW64\lkcitdl.exe [695136 2010-10-27] (National Instruments, Inc.)
R2 lkClassAds; C:\Windows\SysWOW64\lkads.exe [46192 2011-06-14] (National Instruments Corporation)
R2 lkTimeSync; C:\Windows\SysWOW64\lktsrv.exe [56952 2011-06-14] (National Instruments Corporation)
R2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [50336 2011-05-27] (National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [68256 2011-05-27] (National Instruments Corporation)
R2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [362104 2011-06-14] (National Instruments Corporation)
S3 NILM License Manager; C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe [1427688 2010-08-02] (Macrovision Corporation)
R2 nimDNSResponder; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [194224 2011-06-01] (National Instruments Corporation)
R2 niSvcLoc; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [50328 2011-05-27] (National Instruments Corporation)
S3 Roxio UPnP Renderer 10; C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe [313840 2009-08-31] (Sonic Solutions)
S2 Roxio Upnp Server 10; C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe [362992 2009-08-31] (Sonic Solutions)
S3 SampleCollector; C:\Program Files\Sony\VAIO Care\collsvc.exe [167424 2009-09-16] (Intel Corporation) [File not signed]
S3 SOHDBSvr; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe [70952 2009-10-15] (Sony Corporation)
S3 SOHPlMgr; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe [91432 2009-10-15] (Sony Corporation)
S3 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) [File not signed]
R2 SSFK; C:\Program Files (x86)\SFK\SSFK.exe [170144 2015-11-27] (TODO: <公司名>)
R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.)
S3 VAIO Entertainment TV Device Arbitration Service; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe [69632 2009-09-14] (Sony Corporation) [File not signed]
R2 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [642416 2009-09-14] (Sony Corporation)
R2 VSNService; C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [821760 2009-11-25] (Sony Corporation) [File not signed]
S3 VUAgent; C:\Program Files\Sony\VAIO Update 5\VUAgent.exe [1165680 2009-10-30] (Sony Corporation)
R2 WdMan; C:\ProgramData\8WdM8\WdMan.exe [333312 2015-12-04] (TFuns LIMITED) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-11-28] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-11-28] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-11-28] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-11-28] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-28] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-28] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [154256 2015-11-28] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-11-28] (AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [270912 2011-09-30] (DT Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 FSProFilter; C:\Windows\System32\Drivers\FSPFltd.sys [54848 2010-07-22] (FSPro Labs)
S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [7778176 2009-12-16] (Intel Corporation) [File not signed]
S3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [244736 2009-12-16] (Intel(R) Corporation) [File not signed]
S1 mbmiodrvr; C:\Windows\syswow64\mbmiodrvr.sys [4608 2004-04-10] (cansoft@livewiredev.com) [File not signed]
S3 rusb3hub; C:\Windows\System32\DRIVERS\rusb3hub.sys [114568 2012-08-27] (Renesas Electronics Corporation)
S3 rusb3xhc; C:\Windows\System32\DRIVERS\rusb3xhc.sys [230280 2012-08-27] (Renesas Electronics Corporation)
R1 SLEE_17_DRIVER; C:\Windows\Sleen1764.sys [108256 2011-09-12] (Softwareentwicklung Remus - ArchiCrypt - )
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [526392 2013-09-17] () [File not signed]
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-11-12] ()
U3 ar7xxx3q; C:\Windows\System32\Drivers\ar7xxx3q.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zero byte File/Folder)
S3 ALSysIO; \??\C:\Users\Lukas\AppData\Local\Temp\ALSysIO64.sys [X]
S3 btwaudio; system32\drivers\btwaudio.sys [X]
S3 btwavdt; \SystemRoot\system32\drivers\btwavdt.sys [X]
S3 btwl2cap; system32\DRIVERS\btwl2cap.sys [X]
S3 btwrchid; \SystemRoot\system32\drivers\btwrchid.sys [X]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-12-09 20:07 - 2015-12-09 20:12 - 00033544 _____ C:\Users\Lukas\Desktop\FRST.txt
2015-12-09 20:07 - 2015-12-09 20:07 - 00000000 ____D C:\FRST
2015-12-09 20:04 - 2015-12-09 19:48 - 00112640 _____ (forum.viry.cz) C:\Users\Lukas\Desktop\FRSTLauncher.exe
2015-12-09 19:48 - 2015-12-09 19:48 - 00112640 _____ (forum.viry.cz) C:\Users\Lukas\Downloads\FRSTLauncher.exe
2015-12-09 19:17 - 2015-12-09 19:19 - 02369024 _____ (Farbar) C:\Users\Lukas\Desktop\FRST64.exe
2015-12-09 16:58 - 2015-12-09 16:58 - 00326111 _____ C:\Users\Lukas\Downloads\bankdetails.pdf
2015-12-09 15:39 - 2015-12-09 20:01 - 00000001 _____ C:\Windows\SysWOW64\en.html
2015-12-09 09:38 - 2015-12-09 19:58 - 00000000 ____D C:\Program Files (x86)\SFK
2015-12-09 09:38 - 2015-12-09 09:39 - 00000000 ____D C:\ProgramData\8WdM8
2015-12-09 09:38 - 2015-12-09 09:38 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\TSv
2015-12-09 09:37 - 2015-12-09 09:37 - 00000000 ____D C:\ProgramData\UWdMU
2015-12-05 10:25 - 2015-12-05 10:32 - 00026853 _____ C:\Users\Lukas\Downloads\mzdovy_list_11_2015-Luk.Masl..xlsx
2015-12-04 20:13 - 2015-12-04 20:13 - 00609587 _____ C:\Users\Lukas\Downloads\ZJ_MRL_0100_20160111 72.rar
2015-12-04 20:13 - 2015-12-04 20:13 - 00609587 _____ C:\Users\Lukas\Downloads\ZJ_MRL_0100_20160111 72 (1).rar
2015-12-04 20:13 - 2015-12-04 20:13 - 00000000 ____D C:\Users\Lukas\Downloads\ZJ_MRL_0100_20160111 72
2015-12-04 16:27 - 2015-12-04 16:27 - 00048566 _____ C:\Users\Lukas\Downloads\264036875_20151130_11_MCZB.pdf
2015-12-04 13:02 - 2015-12-04 13:02 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2015-12-04 13:02 - 2015-12-04 13:02 - 00000000 ____D C:\Program Files\Common Files\AV
2015-12-02 17:32 - 2015-12-02 17:32 - 00277728 _____ C:\Users\Lukas\Downloads\Lukas+Maslanak,+zivotopis+EN.pdf
2015-11-28 20:51 - 2015-11-28 20:51 - 00386096 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-11-28 20:51 - 2015-11-28 20:51 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-11-26 21:30 - 2015-11-26 21:31 - 00000000 ___HD C:\$WINDOWS.~BT
2015-11-24 16:13 - 2015-11-24 16:13 - 01293645 _____ C:\Users\Lukas\Downloads\damage-panel-s-indikatorem-3-verze-0-9-12[WoTportal.cz].rar
2015-11-24 16:13 - 2015-11-24 16:13 - 00000000 ____D C:\Users\Lukas\Downloads\damage-panel-s-indikatorem-3-verze-0-9-12[WoTportal.cz]
2015-11-21 08:58 - 2015-11-21 08:58 - 00048684 _____ C:\Users\Lukas\Downloads\151026_morava_plany_podzim.xlsx
2015-11-20 14:54 - 2015-11-20 14:54 - 00000795 _____ C:\Users\Lukas\Downloads\dopis
2015-11-20 13:07 - 2015-11-20 13:07 - 00000000 ____D C:\Users\Lukas\Downloads\wot-tweaker-plus-0-9-12[WoTportal.cz]
2015-11-20 13:07 - 2015-11-20 13:07 - 00000000 ____D C:\Users\Lukas\Downloads\standart-damage-panel-gambiter-0-9-12[WoTportal.cz]
2015-11-20 13:07 - 2015-11-20 13:07 - 00000000 ____D C:\Users\Lukas\Downloads\hitlog-0-9-12[WoTportal.cz]
2015-11-20 11:16 - 2015-11-20 11:16 - 00583338 _____ C:\Users\Lukas\Downloads\wot-tweaker-plus-0-9-12[WoTportal.cz].rar
2015-11-20 11:16 - 2015-11-20 11:16 - 00458802 _____ C:\Users\Lukas\Downloads\standart-damage-panel-gambiter-0-9-12[WoTportal.cz].rar
2015-11-20 11:16 - 2015-11-20 11:16 - 00117267 _____ C:\Users\Lukas\Downloads\hitlog-0-9-12[WoTportal.cz].rar
2015-11-19 10:39 - 2015-11-19 10:39 - 00000000 ____D C:\Users\Lukas\Downloads\ZJ_MRL_0100_20151201
2015-11-19 10:39 - 2015-11-19 10:39 - 00000000 ____D C:\Users\Lukas\Downloads\mod-kam-miri-nepratelsky-tank-0-9-12[WoTportal.cz]
2015-11-19 10:36 - 2015-11-19 10:36 - 00000000 ____D C:\Users\Lukas\Downloads\serverovy-zamerovac-zoom-zoomx-noscroll-0-9-12[WoTportal.cz]
2015-11-19 10:36 - 2015-11-19 10:36 - 00000000 ____D C:\Users\Lukas\Downloads\0.9.12
2015-11-17 17:28 - 2015-11-17 17:28 - 00085328 _____ C:\Users\Lukas\Desktop\záložky_17.11.15.html
2015-11-16 18:47 - 2015-11-16 18:47 - 00000000 ____D C:\ProgramData\Reimage Protector
2015-11-16 18:46 - 2015-11-17 18:18 - 00000000 ____D C:\rei
2015-11-16 18:46 - 2015-11-17 15:49 - 00000000 ____D C:\Program Files\Reimage
2015-11-12 18:02 - 2015-11-12 18:07 - 00000000 ____D C:\Users\Lukas\Desktop\mobil
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-12-09 20:21 - 2011-07-25 19:05 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\uTorrent
2015-12-09 20:07 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2015-12-09 20:06 - 2009-07-14 05:45 - 00010096 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-09 20:06 - 2009-07-14 05:45 - 00010096 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-09 20:04 - 2015-01-17 15:00 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-09 20:01 - 2015-01-17 15:00 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-09 19:55 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-09 19:22 - 2015-10-02 22:26 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-12-09 19:22 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2015-12-09 18:49 - 2015-08-19 11:51 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\ObviousIdea
2015-12-09 09:38 - 2015-10-28 17:17 - 00000074 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-12-09 09:38 - 2014-04-24 17:34 - 00002376 _____ C:\Users\Lukas\Desktop\MAFIA II .lnk
2015-12-09 09:37 - 2015-10-28 17:17 - 00000000 ____D C:\ProgramData\gWMiniProg
2015-12-08 23:50 - 2011-07-27 18:15 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\TS3Client
2015-12-08 18:56 - 2015-10-19 07:47 - 00014894 _____ C:\Users\Lukas\Desktop\hodiny.xlsx
2015-12-08 18:34 - 2011-07-25 19:10 - 00003978 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{29A359CA-A3D2-4B10-AB97-448B8D8E4385}
2015-12-08 09:33 - 2012-09-07 13:57 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-12-06 08:07 - 2011-07-26 19:48 - 00102912 _____ C:\Users\Lukas\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-12-05 22:09 - 2011-07-25 22:04 - 00000000 ____D C:\Users\Lukas\Desktop\Torrenty
2015-12-04 12:59 - 2015-01-17 15:00 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-04 12:59 - 2015-01-17 15:00 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-02 17:34 - 2014-01-07 11:23 - 00000000 ____D C:\Users\Lukas\Desktop\Všechno možne
2015-11-28 20:51 - 2014-09-01 08:55 - 00154256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-11-28 20:51 - 2014-09-01 08:55 - 00028656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2015-11-28 20:51 - 2013-06-30 09:27 - 00273784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2015-11-28 20:51 - 2013-06-30 09:27 - 00065224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2015-11-28 20:51 - 2012-09-07 13:57 - 00093528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-11-28 20:51 - 2012-09-07 13:51 - 00449992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2015-11-28 20:51 - 2012-09-07 13:51 - 00097648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-11-28 20:50 - 2012-09-07 13:51 - 01059656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2015-11-26 21:31 - 2010-02-03 23:12 - 00000000 ____D C:\Windows\Panther
2015-11-25 20:45 - 2015-03-06 15:01 - 00000000 ____D C:\Users\Lukas\Desktop\Fotky
2015-11-20 21:46 - 2010-02-03 23:35 - 00672046 _____ C:\Windows\system32\perfh005.dat
2015-11-20 21:46 - 2010-02-03 23:35 - 00142610 _____ C:\Windows\system32\perfc005.dat
2015-11-20 21:46 - 2009-07-14 06:13 - 01591814 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-20 21:46 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2015-11-19 11:38 - 2015-01-27 09:21 - 00000000 ____D C:\Users\Lukas\Desktop\Funkční res mod
2015-11-17 19:32 - 2012-01-28 16:34 - 00000000 ____D C:\Program Files (x86)\Warcraft III
2015-11-17 19:22 - 2015-10-02 22:26 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-11-17 19:22 - 2012-10-16 19:10 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-17 19:22 - 2011-09-05 15:12 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-17 18:50 - 2015-07-01 21:21 - 00001882 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-11-17 18:20 - 2011-07-25 19:07 - 00000000 ____D C:\Users\Lukas
2015-11-17 18:18 - 2015-10-28 17:17 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\istartsurf
2015-11-17 18:18 - 2015-07-10 10:07 - 00000000 ___SD C:\Windows\system32\GWX
2015-11-17 18:18 - 2012-10-16 19:10 - 00000000 ____D C:\Windows\system32\Macromed
2015-11-17 18:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2015-11-12 18:01 - 2013-04-08 18:48 - 00000000 ____D C:\Users\Lukas\Desktop\Format Factory
==================== Files in the root of some directories =======
2014-12-10 19:19 - 2014-12-09 07:19 - 0000044 ____H () C:\Program Files (x86)\e6374727.tmp
2015-10-28 17:27 - 2015-10-28 17:27 - 0000053 _____ () C:\Users\Lukas\AppData\Roaming\Camdata.ini
2015-10-28 17:27 - 2015-10-28 17:27 - 0000408 _____ () C:\Users\Lukas\AppData\Roaming\CamLayout.ini
2015-10-28 17:27 - 2015-10-28 17:27 - 0000408 _____ () C:\Users\Lukas\AppData\Roaming\CamShapes.ini
2015-10-28 17:27 - 2015-10-28 17:27 - 0004549 _____ () C:\Users\Lukas\AppData\Roaming\CamStudio.cfg
2014-11-23 18:17 - 2014-11-23 18:33 - 0000702 _____ () C:\Users\Lukas\AppData\Roaming\Ping Monitor_Settings.ini
2013-06-30 18:42 - 2013-06-30 18:41 - 0030894 _____ () C:\Users\Lukas\AppData\Roaming\speedanalysis.ico
2015-03-20 22:46 - 2015-03-20 22:47 - 0011264 ___SH () C:\Users\Lukas\AppData\Roaming\Thumbs.db
2015-10-28 17:19 - 2015-10-28 17:19 - 0000096 _____ () C:\Users\Lukas\AppData\Roaming\version2.xml
2011-07-26 19:48 - 2015-12-06 08:07 - 0102912 _____ () C:\Users\Lukas\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-05-06 13:50 - 2013-05-06 13:50 - 0004096 ____H () C:\Users\Lukas\AppData\Local\keyfile3.drm
2015-11-06 20:46 - 2015-11-06 20:46 - 0000852 _____ () C:\Users\Lukas\AppData\Local\recently-used.xbel
2011-07-27 12:21 - 2015-03-21 18:09 - 0007609 _____ () C:\Users\Lukas\AppData\Local\resmon.resmoncfg
2014-06-28 20:39 - 2014-06-28 20:39 - 0000041 ___SH () C:\ProgramData\.zreglib
2012-02-11 18:14 - 2012-02-11 18:14 - 0000000 _____ () C:\ProgramData\946cce535fc1af24b2e6f5999318191b_c
2015-10-28 17:17 - 2015-12-09 09:38 - 0000074 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
Files to move or delete:
====================
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
Some files in TEMP:
====================
C:\Users\Lukas\AppData\Local\Temp\KMP_4.0.1.5.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll
[2011-07-26 10:46] - [2015-10-01 08:50] - 0357888 ____A (Microsoft Corporation) 603E16265E3BEB4D7216E81CB23BBC70
C:\Windows\SysWOW64\dnsapi.dll
[2011-07-26 10:46] - [2015-10-01 08:50] - 0270336 ____A (Microsoft Corporation) 53472F8CE2B1135443BC01123924486E
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
Light Image Resizer 4.6.0.0 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.6.0.0 - ObviousIdea)
Reduce PDF Size (HKLM-x32\...\{32BD8FD9-8990-46A0-B86B-857F11014DF6}_is1) (Version: - reducepdfsize.com)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Lukas\Desktop" je 247473 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================