Před nedávnem jsem měl problém s viry, který jsem patrně nevyřešil, protože při kontrolách avastu se stále něco najde. Zkoušel jsem Avast a Malwarebytes Anti-Malware, přičemž už došlo k odstranění x věcí a start trvá hodně dlouho.
Dopředu velice děkuji za pomoc. Log z FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-12-2016
Ran by MirekZika (administrator) on ASUS (30-12-2016 08:34:15)
Running from C:\Users\MirekZika\Desktop
Loaded Profiles: MirekZika (Available Profiles: MirekZika)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) D:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(ASUS) C:\Windows\AsScrPro.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Dassault Systèmes) C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
(ASUS) C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Virage Logic Corporation / Sonic Focus) C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(AVAST Software) D:\Program Files\AVAST Software\Avast\avastui.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
(Valve Corporation) D:\Program Files\Steam\Steam.exe
(Valve Corporation) D:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) D:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Jan Fiala) D:\Program Files\PSPad\PSPad.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\Pub\PubMonitor.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(forum.viry.cz) C:\Users\MirekZika\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2816808 2011-07-21] (Synaptics Incorporated)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [361984 2011-03-21] (Alcor Micro Corp.)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1419008 2016-06-03] (Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [1014432 2011-12-29] (Atheros Communications)
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [98088 2011-07-21] (Synaptics Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-05-02] (NVIDIA Corporation)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3331312 2012-02-24] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [SonicMasterTray] => C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe [984400 2010-07-10] (Virage Logic Corporation / Sonic Focus)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [318080 2011-12-23] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174720 2011-10-25] (ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-03] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-11-19] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => D:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-15] (AVAST Software)
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [6006560 2016-11-01] (IObit)
HKLM\...\RunOnce: [wd] => C:\windows\TEMP\gEC0.tmp.exe <===== ATTENTION
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\WB:
HKU\S-1-5-21-3317870569-3240765912-3471653827-1001\...\Run: [Advanced SystemCare 9] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [2023712 2016-07-27] (IObit)
HKU\S-1-5-21-3317870569-3240765912-3471653827-1001\...\Run: [Dropbox Update] => C:\Users\MirekZika\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-04] (Dropbox, Inc.)
HKU\S-1-5-21-3317870569-3240765912-3471653827-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8619224 2016-01-15] (Piriform Ltd)
HKU\S-1-5-21-3317870569-3240765912-3471653827-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-3317870569-3240765912-3471653827-1001\...\MountPoints2: {e0404f3a-5614-11e3-85ec-10bf489e5ab8} - "H:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-3317870569-3240765912-3471653827-1001\...\MountPoints2: {f1752b8d-4c6b-11e4-b6e0-10bf489e5ab8} - F:\Startme.exe
AppInit_DLLs: C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [177952 2016-05-20] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\windows\SysWOW64\nvinit.dll => C:\windows\SysWOW64\nvinit.dll [155768 2016-05-20] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-09] (AVAST Software)
ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\ASUSWSShellExt64.dll [2011-05-25] (eCareme Technologies, Inc.)
ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\ASUSWSShellExt64.dll [2011-05-25] (eCareme Technologies, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MirekZika\AppData\Roaming\Dropbox\bin\DropboxExt.3.0.dll [2016-12-21] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk [2012-02-24]
ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe (ASUSTeK Computer Inc.)
BootExecute: RegistryDefragBootTime.exeautocheck autochk * aswBoot.exe /M:50c1ae4443 /wow /dir:"D:\Program Files\AVAST Software\Avast"
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{5C7BB2DC-5A62-438E-AC60-D637F15CA6C7}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{B720ABF7-8CF9-4639-A4C8-374B8CFFCCA4}: [DhcpNameServer] 10.0.1.4
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3317870569-3240765912-3471653827-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=6826
HKU\S-1-5-21-3317870569-3240765912-3471653827-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-3317870569-3240765912-3471653827-1001 -> DefaultScope {346E1C65-3BFC-4E57-9D98-9CB1F3956243} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_6826&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3317870569-3240765912-3471653827-1001 -> 24C4C8445CF75AB8D162905993362A7B URL = hxxp://www.mapy.cz/?sourceid=quicksearch_6826& ... earchTerms}
SearchScopes: HKU\S-1-5-21-3317870569-3240765912-3471653827-1001 -> 7B3F999D877CFAE551B3C2FD593B3594 URL = hxxp://www.zbozi.cz/?sourceid=quicksearch_6826&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3317870569-3240765912-3471653827-1001 -> 905EEAC09200463C03525B844D42EB87 URL = hxxp://videa.seznam.cz/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3317870569-3240765912-3471653827-1001 -> B1BD0961D06D8FFC82735D276BE5B18C URL = hxxp://www.firmy.cz/phr/{searchTerms}
SearchScopes: HKU\S-1-5-21-3317870569-3240765912-3471653827-1001 -> {346E1C65-3BFC-4E57-9D98-9CB1F3956243} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_6826&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-11-20] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> D:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-10-25] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-20] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-20] (Oracle Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-12-29] (Atheros Commnucations)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-10-25] (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)
BHO-x32: No Name -> {D5FEC983-01DB-414A-9456-AF95AC9ED7B5} -> No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-20] (Oracle Corporation)
BHO-x32: No Name -> {DDA57003-0068-4ed2-9D32-4D1EC707D94D} -> No File
Toolbar: HKU\S-1-5-21-3317870569-3240765912-3471653827-1001 -> No Name - {25E2E5C9-C43C-4EE8-B23E-4383915F2BCE} - No File
Toolbar: HKU\S-1-5-21-3317870569-3240765912-3471653827-1001 -> No Name - {91397D20-1446-11D4-8AF4-0040CA1127B6} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-09-23] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\MirekZika\AppData\Roaming\TomTom\HOME\Profiles\9ewxf0c3.default [2016-05-20]
FF Extension: (Emulator) - C:\Users\MirekZika\AppData\Roaming\TomTom\HOME\Profiles\9ewxf0c3.default\Extensions\Navcore.9.510.1234792@tomtom.com [2016-05-15] [not signed]
FF Extension: (No Name) - D:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
FF ProfilePath: C:\Users\MirekZika\AppData\Roaming\Mozilla\Firefox\Profiles\w8xqn2jm.default [2016-12-30]
FF user.js: detected! => C:\Users\MirekZika\AppData\Roaming\Mozilla\Firefox\Profiles\w8xqn2jm.default\user.js [2016-10-29]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\w8xqn2jm.default -> Seznam
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\w8xqn2jm.default -> hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\w8xqn2jm.default -> Seznam
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\w8xqn2jm.default -> Seznam
FF Homepage: Mozilla\Firefox\Profiles\w8xqn2jm.default -> hxxps://www.seznam.cz/?clid=22668
FF Keyword.URL: Mozilla\Firefox\Profiles\w8xqn2jm.default -> hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF SearchPlugin: C:\Users\MirekZika\AppData\Roaming\Mozilla\Firefox\Profiles\w8xqn2jm.default\searchplugins\firmy.cz-225930.xml [2015-02-16]
FF SearchPlugin: C:\Users\MirekZika\AppData\Roaming\Mozilla\Firefox\Profiles\w8xqn2jm.default\searchplugins\google-avast.xml [2014-12-04]
FF SearchPlugin: C:\Users\MirekZika\AppData\Roaming\Mozilla\Firefox\Profiles\w8xqn2jm.default\searchplugins\seznam-avast.xml [2015-06-05]
FF SearchPlugin: C:\Users\MirekZika\AppData\Roaming\Mozilla\Firefox\Profiles\w8xqn2jm.default\searchplugins\seznam.cz-225930.xml [2015-02-16]
FF SearchPlugin: C:\Users\MirekZika\AppData\Roaming\Mozilla\Firefox\Profiles\w8xqn2jm.default\searchplugins\videa.seznam.cz-225930.xml [2015-02-16]
FF SearchPlugin: C:\Users\MirekZika\AppData\Roaming\Mozilla\Firefox\Profiles\w8xqn2jm.default\searchplugins\zbozi.cz-225930.xml [2015-02-16]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - D:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - D:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-09]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - D:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - D:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-09]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - D:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - D:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKU\S-1-5-21-3317870569-3240765912-3471653827-1001\...\Firefox\Extensions: [firefox@passwordbox.com] - C:\Program Files (x86)\PasswordBox\Firefox
FF Extension: (PasswordBox) - C:\Program Files (x86)\PasswordBox\Firefox [2013-09-09] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll [2016-12-20] ()
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-11-20] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-11-20] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-20] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-20] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-20] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-05-20] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-05-20] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
StartMenuInternet: FIREFOX.EXE - D:\Program Files\Mozilla Firefox\firefox.exe
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\MirekZika\AppData\Local\Google\Chrome\User Data\Default [2016-12-30]
CHR Extension: (Avast Online Security) - C:\Users\MirekZika\AppData\Local\Google\Chrome\User Data\Default\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2016-12-08]
CHR Extension: (Avast SafePrice) - C:\Users\MirekZika\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-16]
CHR Extension: (Avast SafePrice) - C:\Users\MirekZika\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcoadmpfijfcmokecmkgolhbaeclfage [2016-11-16]
CHR Extension: (AdBlock) - C:\Users\MirekZika\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-12-29]
CHR Extension: (TlaÄŤĂtko Pin It) - C:\Users\MirekZika\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2016-11-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MirekZika\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Fast search) - C:\Users\MirekZika\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbdpajcdgknpendpmecafmopknefafha [2016-12-19]
CHR Extension: (Chrome Media Router) - C:\Users\MirekZika\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16]
CHR Extension: (RSS Feed Reader) - C:\Users\MirekZika\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2016-12-13]
CHR HKU\S-1-5-21-3317870569-3240765912-3471653827-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bdgldefdgecfggjdniencbihfhfnenke] - C:\Users\MirekZika\AppData\Local\PasswordBox\Chrome\extension [2013-05-03]
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fcoadmpfijfcmokecmkgolhbaeclfage] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - D:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [pchfckkccldkbclgdepkaonamkignanh] - hxxp://clients2.google.com/service/update2/crx
Opera:
=======
OPR StartupUrls: "hxxp://www.seznam.cz/?clid=6826"
OPR Extension: (Fast search) - C:\Users\MirekZika\AppData\Roaming\Opera Software\Opera Stable\Extensions\pbdpajcdgknpendpmecafmopknefafha [2016-12-19]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdvancedSystemCareService9; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [452384 2016-07-25] (IObit)
R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-02-04] (ASUS)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [106144 2011-12-29] (Atheros Commnucations) [File not signed]
R2 avast! Antivirus; D:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-09] (AVAST Software)
R2 DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [125440 2016-02-04] (Dassault Systèmes) [File not signed]
S2 IBG_gds_db; C:\Program Files (x86)\Embarcadero\Studio\14.0\InterBaseXE3\bin\ibguard.exe [636744 2014-03-24] (Embarcadero Technologies, Inc.)
S3 IBS_gds_db; C:\Program Files (x86)\Embarcadero\Studio\14.0\InterBaseXE3\bin\ibserver.exe [5487944 2014-03-24] (Embarcadero Technologies, Inc.)
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [1600800 2016-10-21] (IObit)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [3046688 2016-07-29] (IObit)
R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [69964448 2015-04-03] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-05-02] (NVIDIA Corporation)
S3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-05-02] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-05-02] (NVIDIA Corporation)
S3 PasswordBox; C:\Program Files (x86)\PasswordBox\pbbtnService.exe [67584 2014-05-14] (PasswordBox, Inc.) [File not signed]
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [441512 2015-04-03] (Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [158880 2011-12-29] (Atheros) [File not signed]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswHwid; C:\windows\system32\drivers\aswHwid.sys [37656 2016-09-09] (AVAST Software)
R1 aswKbd; C:\windows\system32\drivers\aswKbd.sys [37144 2016-09-09] (AVAST Software)
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [108816 2016-09-09] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr2.sys [103064 2016-09-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-09] (AVAST Software)
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [969184 2016-09-14] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [513632 2016-09-23] (AVAST Software)
S2 aswStm; C:\windows\system32\drivers\aswStm.sys [163416 2016-09-09] (AVAST Software)
S3 aswTap; C:\windows\System32\DRIVERS\aswTap.sys [44640 2014-09-24] (The OpenVPN Project)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-13] (AVAST Software)
S2 atksgt; C:\windows\System32\DRIVERS\atksgt.sys [312480 2013-04-14] ()
S3 dg_ssudbus; C:\windows\System32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.)
R3 dtsoftbus01; C:\windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-09-22] (DT Soft Ltd)
S3 GeneStor; C:\windows\System32\DRIVERS\GeneStor.sys [60928 2016-09-12] (GenesysLogic)
R1 HWiNFO32; C:\windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-06-03] (REALiX(tm))
R0 iaStorF; C:\windows\System32\DRIVERS\iaStorF.sys [28216 2012-11-19] (Intel Corporation)
R3 IMFFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\IMFFilter.sys [22208 2016-04-01] (IObit)
R3 kbfiltr; C:\windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 L1C; C:\windows\System32\DRIVERS\L1C62x64.sys [129224 2016-06-03] (Qualcomm Atheros Co., Ltd.)
R2 lirsgt; C:\windows\System32\DRIVERS\lirsgt.sys [43168 2013-04-14] ()
R2 npf; C:\windows\System32\drivers\npf.sys [36600 2014-04-18] (Riverbed Technology, Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-05-02] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R0 pwdrvio; C:\windows\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\windows\system32\pwdspio.sys [12504 2013-09-30] ()
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2016-07-27] (IObit.com)
R3 rtsuvc; C:\windows\System32\DRIVERS\rtsuvc.sys [9113304 2016-06-03] (Realtek Semiconductor Corp.)
S3 s0017bus; C:\windows\System32\DRIVERS\s0017bus.sys [113704 2008-10-21] (MCCI Corporation)
S3 ssudmdm; C:\windows\System32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics Co., Ltd.)
S3 VSPerfDrv100; D:\Program Files\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys [68440 2011-01-18] (Microsoft Corporation)
U4 secdrv; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-30 08:34 - 2016-12-30 08:37 - 00033189 _____ C:\Users\MirekZika\Desktop\FRST.txt
2016-12-30 08:27 - 2016-12-30 08:28 - 00112640 _____ (forum.viry.cz) C:\Users\MirekZika\Desktop\FRSTLauncher.exe
2016-12-29 21:33 - 2016-12-29 21:33 - 00001179 _____ C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2016-12-29 21:33 - 2016-12-29 21:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
2016-12-29 21:22 - 2016-12-29 21:22 - 02420736 _____ (Farbar) C:\Users\MirekZika\Desktop\FRST64.exe
2016-12-29 20:18 - 2016-12-29 23:13 - 3143795152 _____ C:\Users\MirekZika\Downloads\Lepsi-uz-to-nebude-(As-Good-as-It-Gets)-cz-tit-1997.mp4
2016-12-28 16:42 - 2016-12-30 08:00 - 00016708 _____ C:\windows\System32\Tasks\599q239c202g782
2016-12-28 16:42 - 2016-12-28 16:42 - 00000000 ___HD C:\ProgramData\599q239c202g782
2016-12-27 18:27 - 2016-12-27 18:41 - 00000000 ____D C:\Users\MirekZika\Downloads\MaskedPassword
2016-12-23 14:38 - 2016-12-23 14:38 - 00000000 ____D C:\Users\MirekZika\AppData\LocalLow\Ludeon Studios
2016-12-23 14:08 - 2016-12-23 14:08 - 00000000 ____D C:\Users\MirekZika\Downloads\RimWorld.Alpha.13-(Od-TomiosinoCZ)
2016-12-23 13:26 - 2016-12-23 13:42 - 266360142 _____ C:\Users\MirekZika\Downloads\RimWorld.Alpha.13-(Od-TomiosinoCZ).rar
2016-12-22 18:55 - 2016-12-22 18:55 - 00001559 _____ C:\Users\MirekZika\Desktop\Synthesia.exe.lnk
2016-12-22 18:55 - 2016-12-22 18:55 - 00000000 ____D C:\Users\MirekZika\Documents\Synthesia
2016-12-22 18:53 - 2016-12-26 15:56 - 00000000 ____D C:\Users\MirekZika\AppData\Roaming\Synthesia
2016-12-22 09:12 - 2016-12-22 09:12 - 00000000 ____D C:\Users\MirekZika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-12-20 10:47 - 2016-12-20 10:47 - 00000000 ____D C:\Users\MirekZika\Desktop\bak
2016-12-20 09:30 - 2016-12-20 20:14 - 06880664 _____ (Tim Kosse) C:\Users\MirekZika\Downloads\FileZilla_3.23.0.2_win64-setup.exe
2016-12-19 20:48 - 2016-12-19 20:48 - 00002273 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-19 20:48 - 2016-12-19 20:48 - 00002261 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-12-19 20:46 - 2016-12-19 20:55 - 00003384 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-19 20:45 - 2016-12-19 20:55 - 00003256 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-12-19 20:39 - 2016-12-19 20:39 - 01065376 _____ (Google Inc.) C:\Users\MirekZika\Downloads\ChromeSetup.exe
2016-12-19 20:23 - 2016-12-21 15:04 - 00192216 _____ (Malwarebytes) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2016-12-19 20:22 - 2016-12-19 20:25 - 00001108 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-12-19 20:22 - 2016-12-19 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-12-19 20:22 - 2016-12-19 20:25 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-12-19 20:22 - 2016-12-19 20:22 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-12-19 20:22 - 2016-03-10 14:09 - 00064896 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2016-12-19 20:22 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamchameleon.sys
2016-12-19 20:22 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys
2016-12-19 10:27 - 2016-12-30 08:37 - 00016722 _____ C:\windows\System32\Tasks\502970619d20t8207976
2016-12-19 10:27 - 2016-12-28 16:42 - 00000000 ___HD C:\ProgramData\502970619d20t8207976
2016-12-18 21:35 - 2016-12-18 21:35 - 00011073 _____ C:\Users\MirekZika\Downloads\for_elise_by_beethoven.mid
2016-12-18 21:34 - 2016-12-19 20:28 - 00000000 ____D C:\Program Files (x86)\Synthesia
2016-12-12 23:13 - 2016-12-12 23:13 - 00000973 _____ C:\Users\Public\Desktop\Zoo Tycoon Complete Collection.lnk
2016-12-12 23:11 - 2016-12-12 23:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
2016-12-08 08:39 - 2016-12-10 08:45 - 00000000 ____D C:\Users\MirekZika\AppData\Roaming\Exanima
2016-12-05 21:34 - 2016-12-05 21:34 - 00007408 _____ C:\Users\MirekZika\Downloads\MaskedPassword.zip
2016-11-30 09:50 - 2016-11-30 09:56 - 00000000 ____D C:\Users\MirekZika\Desktop\vrabcak
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-30 08:29 - 2016-11-06 23:12 - 00000000 ____D C:\Users\MirekZika\Desktop\YT
2016-12-30 08:28 - 2016-11-23 18:51 - 00000000 ____D C:\Users\MirekZika\AppData\LocalLow\Mozilla
2016-12-30 08:13 - 2012-10-27 18:10 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2016-12-30 07:46 - 2015-07-08 09:23 - 00000934 _____ C:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3317870569-3240765912-3471653827-1001UA.job
2016-12-30 01:26 - 2009-07-14 05:45 - 00018736 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-30 01:26 - 2009-07-14 05:45 - 00018736 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-29 22:46 - 2015-07-08 09:23 - 00000882 _____ C:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3317870569-3240765912-3471653827-1001Core.job
2016-12-29 21:33 - 2016-06-03 18:54 - 00000000 ____D C:\ProgramData\ProductData
2016-12-29 21:33 - 2016-06-03 18:50 - 00000000 ____D C:\Program Files (x86)\IObit
2016-12-29 21:33 - 2012-09-22 08:20 - 00000000 ____D C:\ProgramData\IObit
2016-12-29 21:31 - 2016-09-03 20:45 - 00002268 _____ C:\Users\Public\Desktop\Advanced SystemCare 9.lnk
2016-12-29 21:31 - 2009-07-14 04:20 - 00000000 ____D C:\windows\inf
2016-12-29 19:22 - 2016-04-05 17:37 - 00000000 ____D C:\Users\MirekZika\AppData\Roaming\FileZilla
2016-12-29 19:22 - 2013-12-19 18:03 - 00000600 _____ C:\Users\MirekZika\AppData\Local\PUTTY.RND
2016-12-29 14:52 - 2011-02-19 06:36 - 00736308 _____ C:\windows\system32\perfh005.dat
2016-12-29 14:52 - 2011-02-19 06:36 - 00167524 _____ C:\windows\system32\perfc005.dat
2016-12-29 14:52 - 2009-07-14 06:13 - 01774630 _____ C:\windows\system32\PerfStringBackup.INI
2016-12-29 11:44 - 2012-11-23 10:14 - 00000000 ____D C:\Users\MirekZika\Desktop\udělej
2016-12-29 09:11 - 2012-09-23 12:54 - 00000132 _____ C:\Users\MirekZika\AppData\Roaming\Adobe PNG Format CS5 Prefs
2016-12-29 08:56 - 2012-09-21 22:46 - 00000539 _____ C:\Users\MirekZika\AppData\Roaming\sp_data.sys
2016-12-27 18:16 - 2012-09-21 22:46 - 00170688 _____ C:\Users\MirekZika\AppData\Local\GDIPFONTCACHEV1.DAT
2016-12-27 17:21 - 2013-12-20 21:24 - 00000000 ____D C:\Users\MirekZika\AppData\Roaming\GHISLER
2016-12-27 17:21 - 2013-12-20 21:24 - 00000000 ____D C:\totalcmd
2016-12-27 17:20 - 2016-05-13 18:55 - 00000000 ____D C:\Program Files (x86)\TomTom International B.V
2016-12-27 17:18 - 2012-09-26 17:23 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-12-27 16:49 - 2016-06-03 19:27 - 00002886 _____ C:\windows\System32\Tasks\Driver Booster SkipUAC (MirekZika)
2016-12-27 16:41 - 2009-07-14 06:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-12-27 16:40 - 2012-07-01 03:58 - 00000000 ____D C:\ProgramData\NVIDIA
2016-12-24 12:45 - 2012-09-22 12:14 - 00000000 ____D C:\Users\MirekZika\Documents\Visual Studio 2010
2016-12-22 09:12 - 2014-03-12 06:57 - 00000000 ____D C:\Users\MirekZika\AppData\Roaming\Dropbox
2016-12-20 22:57 - 2012-10-27 18:10 - 00003852 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2016-12-20 22:57 - 2012-09-22 18:26 - 00802904 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2016-12-20 22:57 - 2012-09-22 18:26 - 00144472 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-12-20 22:56 - 2016-04-14 07:18 - 00003836 _____ C:\windows\System32\Tasks\Opera scheduled Autoupdate 1412501240
2016-12-20 22:56 - 2012-09-22 18:26 - 00000000 ____D C:\windows\system32\Macromed
2016-12-20 22:56 - 2012-09-22 07:15 - 00000000 ____D C:\Program Files (x86)\Opera
2016-12-20 22:56 - 2012-02-24 12:54 - 00000000 ____D C:\windows\SysWOW64\Macromed
2016-12-20 11:23 - 2015-02-19 15:01 - 00000000 ____D C:\Users\MirekZika\AppData\Local\Steam
2016-12-20 10:50 - 2016-10-12 15:57 - 144879616 _____ C:\windows\system32\config\software.iodefrag.bak
2016-12-20 10:50 - 2016-10-12 15:57 - 144879616 _____ C:\windows\system32\config\software.iodefrag
2016-12-20 10:50 - 2016-10-12 15:57 - 05177344 _____ C:\windows\system32\config\default.iodefrag.bak
2016-12-20 10:50 - 2016-10-12 15:57 - 05177344 _____ C:\windows\system32\config\default.iodefrag
2016-12-20 10:50 - 2016-10-12 15:57 - 00069632 _____ C:\windows\system32\config\sam.iodefrag.bak
2016-12-20 10:50 - 2016-10-12 15:57 - 00069632 _____ C:\windows\system32\config\sam.iodefrag
2016-12-20 10:50 - 2016-10-12 15:57 - 00032768 _____ C:\windows\system32\config\security.iodefrag.bak
2016-12-20 10:50 - 2016-10-12 15:57 - 00032768 _____ C:\windows\system32\config\security.iodefrag
2016-12-20 10:44 - 2012-10-07 17:26 - 00000000 ____D C:\Users\MirekZika\AppData\Local\ElevatedDiagnostics
2016-12-20 09:01 - 2013-08-18 07:46 - 00000000 ____D C:\Users\MirekZika\AppData\Local\NVIDIA
2016-12-19 22:36 - 2009-07-29 06:20 - 00000000 ____D C:\windows\ASUS
2016-12-19 20:45 - 2012-02-24 12:40 - 00000000 ____D C:\Program Files (x86)\Google
2016-12-19 20:02 - 2016-03-18 21:10 - 00000000 ____D C:\FRST
2016-12-17 18:16 - 2012-09-22 08:05 - 00000000 ____D C:\Users\MirekZika\AppData\Roaming\DAEMON Tools Lite
2016-12-17 18:13 - 2012-09-27 22:28 - 00000000 ____D C:\Users\MirekZika\AppData\Local\CrashDumps
2016-12-15 07:57 - 2016-11-16 15:14 - 00010324 _____ C:\Users\MirekZika\Desktop\smeny.xlsx
2016-12-12 21:55 - 2012-11-04 13:03 - 00000000 ____D C:\Users\MirekZika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-12-11 09:27 - 2016-10-17 13:41 - 00000000 ____D C:\Users\MirekZika\Desktop\eltb
2016-12-10 15:54 - 2016-11-15 15:08 - 00000000 ____D C:\Users\MirekZika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Debugmode
2016-12-10 15:54 - 2016-11-15 15:06 - 00000000 ____D C:\Program Files (x86)\DebugMode
2016-12-10 15:50 - 2016-11-21 09:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft ActiveX Control Pad
2016-12-09 14:28 - 2012-09-28 11:34 - 00004180 _____ C:\windows\System32\Tasks\avast! Emergency Update
2016-12-08 21:12 - 2012-10-01 21:15 - 00000000 ____D C:\Users\MirekZika\AppData\Roaming\Skype
2016-12-08 00:22 - 2016-04-25 11:07 - 00000000 ____D C:\GOG Games
2016-12-08 00:22 - 2014-12-11 20:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2016-12-08 00:22 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-12-08 00:20 - 2012-12-16 23:00 - 00000000 ____D C:\Users\MirekZika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-12-05 22:03 - 2012-12-10 21:35 - 00001456 _____ C:\Users\MirekZika\AppData\Local\Adobe Save for Web 12.0 Prefs
2016-12-02 16:56 - 2012-10-25 10:40 - 00000000 ____D C:\Users\MirekZika\Desktop\doc
==================== Files in the root of some directories =======
2012-09-28 20:54 - 2012-11-17 13:30 - 0000132 _____ () C:\Users\MirekZika\AppData\Roaming\Adobe AIFF Format CS5 Prefs
2012-12-09 16:08 - 2015-05-10 18:33 - 0000132 _____ () C:\Users\MirekZika\AppData\Roaming\Adobe GIF Format CS5 Prefs
2012-09-23 12:54 - 2016-12-29 09:11 - 0000132 _____ () C:\Users\MirekZika\AppData\Roaming\Adobe PNG Format CS5 Prefs
2012-09-21 22:46 - 2016-12-29 08:56 - 0000539 _____ () C:\Users\MirekZika\AppData\Roaming\sp_data.sys
2016-04-05 19:20 - 2016-04-05 19:20 - 0000600 _____ () C:\Users\MirekZika\AppData\Roaming\winscp.rnd
2012-12-10 21:35 - 2016-12-05 22:03 - 0001456 _____ () C:\Users\MirekZika\AppData\Local\Adobe Save for Web 12.0 Prefs
2013-07-07 15:32 - 2013-07-07 15:32 - 0003584 _____ () C:\Users\MirekZika\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-07-30 11:30 - 2016-10-30 09:59 - 0405732 _____ () C:\Users\MirekZika\AppData\Local\debuggee.mdmp
2013-12-19 18:03 - 2016-12-29 19:22 - 0000600 _____ () C:\Users\MirekZika\AppData\Local\PUTTY.RND
2016-04-29 23:33 - 2016-04-29 23:33 - 0001504 _____ () C:\Users\MirekZika\AppData\Local\recently-used.xbel
2012-09-29 09:23 - 2016-09-03 20:41 - 0007645 _____ () C:\Users\MirekZika\AppData\Local\resmon.resmoncfg
2013-07-31 09:11 - 2013-07-31 09:11 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-06-03 20:13 - 2016-06-03 20:13 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2012-02-24 12:55 - 2010-10-06 18:45 - 0131984 _____ () C:\ProgramData\FullRemove.exe
2012-07-01 04:17 - 2012-07-01 04:18 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2012-07-01 04:16 - 2012-07-01 04:17 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2012-07-01 04:15 - 2012-07-01 04:16 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\SysWOW64\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3317870569-3240765912-3471653827-1001Core.job => C:\Users\MirekZika\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3317870569-3240765912-3471653827-1001UA.job => C:\Users\MirekZika\AppData\Local\Dropbox\Update\DropboxUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: IObit Malware Fighter (Disabled - Out of date) {4D381C57-3C7A-6F22-07EB-639F49E836D4}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: IObit Malware Fighter (Enabled - Up to date) {A751AC20-3B48-5237-898A-78C4436BB78D}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\MirekZika\Desktop" je 23159 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ACMON
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher
"C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeBridge
"C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager
"D:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5
C:\windows\AsScrPro.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector
C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSWebStorage
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray
"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"C:\Users\MirekZika\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dropbox Update
"C:\Users\MirekZika\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update
"D:\Program Files\FeedReader30\feedreader.exe" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\feedreader.exe
C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_267_Plugin.exe -update plugin [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FlashPlayerUpdate
C:\Users\MirekZika\AppData\Roaming\ICQM\icq.exe -CU [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl
"C:\windows\system32\rundll32.exe" C:\windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ShadowPlay
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype
"C:\Users\MirekZika\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify
"C:\Users\MirekZika\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper
"D:\Program Files\Steam\Steam.exe" -silent [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard
"D:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe
"C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\XboxStat
Re§im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Renesas AutoUpdate.lnk
D:\PROGRA~1\Renesas\Hew\AUTOUP~1\AUTOUP~1.EXE [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SpeedFan.lnk
D:\PROGRA~1\SpeedFan\speedfan.exe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^MirekZika^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk
C:\Users\MIREKZ~1\AppData\Roaming\Dropbox\bin\Dropbox.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^MirekZika^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Messenger.lnk
C:\Users\MIREKZ~1\AppData\Local\Facebook\MESSEN~1\214814~1.0\FACEBO~1.EXE [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^MirekZika^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Rainmeter.lnk
C:\PROGRA~1\RAINME~1\RAINME~1.EXE [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^MirekZika^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Sledovat věstrahy inkoustu - HP Deskjet 2050 J510 series.lnk
C:\windows\system32\RunDll32.exe
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Přispějete na provoz fóra?