Vyskakující reklamy
Napsal: 13 bře 2016 18:25
Ahoj, dobrý den,
vyskakují mi na notebooku reklamy. Prosím o kontrolu logu FRST děkuji:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
Ran by Káťa (administrator) on KATA (13-03-2016 18:16:46)
Running from C:\Users\Káťa\Desktop
Loaded Profiles: Káťa (Available Profiles: Káťa)
Platform: Windows 8 Enterprise (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Atheros Commnucations) C:\Windows\System32\AdminService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Káťa\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2803496 2011-06-24] (Synaptics Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5512912 2015-04-04] (Avast Software s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)
HKLM-x32\...\Run: [WindowsDriverScan86] => C:\Program Files (x86)\Adobe Arkalis\Arkalis86.lnk [1501 2014-08-10] ()
HKLM-x32\...\Run: [WindowsDriverScan64] => C:\Program Files (x86)\Adobe Arkalis\Arkalis.lnk [1419 2014-08-10] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-4131273117-163398813-1816125510-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50599552 2016-02-10] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-04-04] (Avast Software s.r.o.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{4560D279-D8B3-4AE8-A01F-7A0E227BF88B}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{97DA9DDF-82A4-466B-89D6-945168FDB1B9}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-4131273117-163398813-1816125510-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKU\S-1-5-21-4131273117-163398813-1816125510-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKU\S-1-5-21-4131273117-163398813-1816125510-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-11-18] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-04] (Avast Software s.r.o.)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-11-10] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-11-18] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-04-04] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-04] (Avast Software s.r.o.)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-11-10] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-04-04] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-04-04] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-04-04] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-18] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-11-18] (Microsoft Corporation)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-10]
Chrome:
=======
CHR Profile: C:\Users\Káťa\AppData\Local\Google\Chrome\User Data\Default
CHR Profile: C:\Users\Káťa\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Avast SafePrice) - C:\Users\Káťa\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-01-28]
CHR Extension: (TweetOrig) - C:\Users\Káťa\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcgihiajnclmbdppignkkeogcacoih [2016-02-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Káťa\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-07]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-04-04]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-04]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AtherosSvc; C:\Windows\system32\AdminService.exe [189440 2012-02-02] (Atheros Commnucations)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-04-04] (Avast Software s.r.o.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-04-04] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [88408 2015-04-04] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-04-04] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-04-04] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-04-04] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-04-04] (Avast Software s.r.o.)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [136752 2015-04-04] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [271200 2015-04-04] ()
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [5139968 2012-06-02] (Broadcom Corporation)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
S3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [1866080 2012-11-28] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-13 18:16 - 2016-03-13 18:17 - 00011035 _____ C:\Users\Káťa\Desktop\FRST.txt
2016-03-13 18:16 - 2016-03-13 18:16 - 00000000 ____D C:\FRST
2016-03-13 18:14 - 2016-03-13 18:14 - 02374144 _____ (Farbar) C:\Users\Káťa\Desktop\FRST64.exe
2016-03-13 18:14 - 2016-03-13 18:14 - 00112640 _____ (forum.viry.cz) C:\Users\Káťa\Desktop\FRSTLauncher.exe
2016-03-13 18:12 - 2016-03-13 18:12 - 00112640 _____ (forum.viry.cz) C:\Users\Káťa\Downloads\Nepotvrzeno 753354.crdownload
2016-03-12 13:09 - 2016-03-12 13:09 - 00015067 _____ C:\Users\Káťa\Downloads\Skupina A.odt
2016-03-12 13:08 - 2016-03-12 13:08 - 00018045 _____ C:\Users\Káťa\Downloads\Otázky skupina B.odt
2016-03-05 04:54 - 2016-03-05 04:54 - 00000000 ____D C:\Users\Káťa\AppData\Local\Blizzard Entertainment
2016-03-05 04:52 - 2016-03-05 04:53 - 00000000 ____D C:\ProgramData\Battle.net
2016-03-05 04:52 - 2016-03-05 04:52 - 03142712 _____ (Blizzard Entertainment) C:\Users\Káťa\Downloads\Hearthstone-Setup.exe
2016-03-05 04:51 - 2016-03-05 05:31 - 729475072 _____ C:\Users\Káťa\Downloads\Human-Traffic-cz-avi-(1999).avi
2016-03-02 23:43 - 2016-03-02 23:43 - 00000000 ____D C:\Users\Káťa\Desktop\osko
2016-03-01 19:38 - 2016-03-01 19:38 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-03-01 19:38 - 2016-03-01 19:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-02-28 13:38 - 2016-02-28 13:38 - 00000000 ____D C:\Users\Káťa\AppData\Roaming\java
2016-02-28 13:32 - 2016-02-28 13:32 - 00001222 _____ C:\Users\Public\Desktop\Minecraft Launcher 1.8.lnk
2016-02-28 13:32 - 2016-02-28 13:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher 1.8
2016-02-28 13:32 - 2016-02-28 13:32 - 00000000 ____D C:\ProgramData\Caphyon
2016-02-28 13:32 - 2016-02-28 13:32 - 00000000 ____D C:\Program Files (x86)\Mojang
2016-02-28 13:32 - 2016-02-28 13:32 - 00000000 ____D C:\Program Files (x86)\Adobe Arkalis
2016-02-28 13:31 - 2016-02-28 13:31 - 00000000 ____D C:\Users\Káťa\Downloads\Minecraft-Launcher-1.8-+(vsechny-verze!)
2016-02-28 13:31 - 2016-02-28 13:31 - 00000000 ____D C:\Users\Káťa\AppData\Roaming\Mojang
2016-02-28 13:27 - 2016-02-28 13:28 - 14879576 _____ C:\Users\Káťa\Downloads\Minecraft-Launcher-1.8-+(vsechny-verze!).rar
2016-02-23 11:08 - 2016-02-23 11:11 - 00135680 _____ C:\Users\Káťa\Downloads\objednavky_JaN_v871%2520%281%29.xls
2016-02-17 19:48 - 2016-02-17 19:48 - 00060928 _____ C:\Users\Káťa\Downloads\rozpis_ledu_unor.xls
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-13 17:54 - 2015-04-06 14:50 - 00000000 ____D C:\Users\Káťa\AppData\Roaming\Skype
2016-03-13 17:52 - 2015-04-04 19:24 - 00000970 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-13 17:38 - 2015-04-06 14:50 - 00000000 ____D C:\ProgramData\Skype
2016-03-13 17:36 - 2015-04-04 19:24 - 00000966 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-12 13:09 - 2015-04-04 19:09 - 00000000 ____D C:\Users\Káťa\AppData\Local\Packages
2016-03-12 07:29 - 2015-04-06 15:48 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-03-11 23:15 - 2015-04-04 19:56 - 00000000 ____D C:\Users\Káťa\AppData\Roaming\vlc
2016-03-11 23:15 - 2015-04-04 19:44 - 00000000 ____D C:\frd stahování
2016-03-02 23:11 - 2015-04-18 12:20 - 00000000 ____D C:\Users\Káťa\AppData\Local\Microsoft Help
2016-03-02 18:40 - 2015-04-04 19:15 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4131273117-163398813-1816125510-1001
2016-03-01 21:53 - 2016-01-11 19:51 - 00000000 ____D C:\Users\Káťa\Desktop\somka
2016-03-01 21:51 - 2015-11-18 16:39 - 00000820 ____H C:\Users\Káťa\Downloads\.picasa.ini
2016-03-01 19:38 - 2015-04-06 14:50 - 00000000 ____D C:\Users\Káťa\AppData\Local\Skype
2016-03-01 17:45 - 2012-07-26 11:01 - 00693070 _____ C:\Windows\system32\perfh005.dat
2016-03-01 17:45 - 2012-07-26 11:01 - 00140226 _____ C:\Windows\system32\perfc005.dat
2016-03-01 17:45 - 2012-07-26 08:28 - 01626896 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-01 17:45 - 2012-07-26 06:37 - 00000000 ____D C:\Windows\Inf
2016-02-29 21:55 - 2016-01-05 16:41 - 00000000 ____D C:\Users\Káťa\Desktop\dejak
2016-02-28 16:53 - 2015-04-06 15:12 - 00000000 ____D C:\Users\Káťa\AppData\Roaming\.minecraft
2016-02-27 19:30 - 2016-02-09 19:26 - 00000000 ____D C:\Users\Káťa\AppData\Roaming\dvdcss
2016-02-20 07:54 - 2015-04-04 19:26 - 00002212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-19 18:11 - 2012-07-26 08:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-17 20:17 - 2015-04-06 15:00 - 00000000 ____D C:\Vše
2016-02-15 16:15 - 2015-04-04 19:24 - 00000000 ____D C:\Users\Káťa\AppData\Local\Google
2016-02-14 21:36 - 2012-07-26 06:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-02-12 17:29 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\system32\NDF
==================== Files in the root of some directories =======
Some files in TEMP:
====================
C:\Users\Káťa\AppData\Local\Temp\KMPAddedCode_KMP_adpageopen_Step1.exe
C:\Users\Káťa\AppData\Local\Temp\vlc-2.2.1-win32.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\K��a\Desktop" je 54 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
==================== End Of Log ==============================
vyskakují mi na notebooku reklamy. Prosím o kontrolu logu FRST děkuji:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
Ran by Káťa (administrator) on KATA (13-03-2016 18:16:46)
Running from C:\Users\Káťa\Desktop
Loaded Profiles: Káťa (Available Profiles: Káťa)
Platform: Windows 8 Enterprise (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Atheros Commnucations) C:\Windows\System32\AdminService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Káťa\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2803496 2011-06-24] (Synaptics Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5512912 2015-04-04] (Avast Software s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)
HKLM-x32\...\Run: [WindowsDriverScan86] => C:\Program Files (x86)\Adobe Arkalis\Arkalis86.lnk [1501 2014-08-10] ()
HKLM-x32\...\Run: [WindowsDriverScan64] => C:\Program Files (x86)\Adobe Arkalis\Arkalis.lnk [1419 2014-08-10] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-4131273117-163398813-1816125510-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50599552 2016-02-10] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-04-04] (Avast Software s.r.o.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{4560D279-D8B3-4AE8-A01F-7A0E227BF88B}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{97DA9DDF-82A4-466B-89D6-945168FDB1B9}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-4131273117-163398813-1816125510-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKU\S-1-5-21-4131273117-163398813-1816125510-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKU\S-1-5-21-4131273117-163398813-1816125510-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-11-18] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-04] (Avast Software s.r.o.)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-11-10] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-11-18] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-04-04] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-04] (Avast Software s.r.o.)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-11-10] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-04-04] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-04-04] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-04-04] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-18] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-11-18] (Microsoft Corporation)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-10]
Chrome:
=======
CHR Profile: C:\Users\Káťa\AppData\Local\Google\Chrome\User Data\Default
CHR Profile: C:\Users\Káťa\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Avast SafePrice) - C:\Users\Káťa\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-01-28]
CHR Extension: (TweetOrig) - C:\Users\Káťa\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcgihiajnclmbdppignkkeogcacoih [2016-02-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Káťa\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-07]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-04-04]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-04]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AtherosSvc; C:\Windows\system32\AdminService.exe [189440 2012-02-02] (Atheros Commnucations)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-04-04] (Avast Software s.r.o.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-04-04] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [88408 2015-04-04] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-04-04] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-04-04] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-04-04] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-04-04] (Avast Software s.r.o.)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [136752 2015-04-04] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [271200 2015-04-04] ()
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [5139968 2012-06-02] (Broadcom Corporation)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
S3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [1866080 2012-11-28] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-13 18:16 - 2016-03-13 18:17 - 00011035 _____ C:\Users\Káťa\Desktop\FRST.txt
2016-03-13 18:16 - 2016-03-13 18:16 - 00000000 ____D C:\FRST
2016-03-13 18:14 - 2016-03-13 18:14 - 02374144 _____ (Farbar) C:\Users\Káťa\Desktop\FRST64.exe
2016-03-13 18:14 - 2016-03-13 18:14 - 00112640 _____ (forum.viry.cz) C:\Users\Káťa\Desktop\FRSTLauncher.exe
2016-03-13 18:12 - 2016-03-13 18:12 - 00112640 _____ (forum.viry.cz) C:\Users\Káťa\Downloads\Nepotvrzeno 753354.crdownload
2016-03-12 13:09 - 2016-03-12 13:09 - 00015067 _____ C:\Users\Káťa\Downloads\Skupina A.odt
2016-03-12 13:08 - 2016-03-12 13:08 - 00018045 _____ C:\Users\Káťa\Downloads\Otázky skupina B.odt
2016-03-05 04:54 - 2016-03-05 04:54 - 00000000 ____D C:\Users\Káťa\AppData\Local\Blizzard Entertainment
2016-03-05 04:52 - 2016-03-05 04:53 - 00000000 ____D C:\ProgramData\Battle.net
2016-03-05 04:52 - 2016-03-05 04:52 - 03142712 _____ (Blizzard Entertainment) C:\Users\Káťa\Downloads\Hearthstone-Setup.exe
2016-03-05 04:51 - 2016-03-05 05:31 - 729475072 _____ C:\Users\Káťa\Downloads\Human-Traffic-cz-avi-(1999).avi
2016-03-02 23:43 - 2016-03-02 23:43 - 00000000 ____D C:\Users\Káťa\Desktop\osko
2016-03-01 19:38 - 2016-03-01 19:38 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-03-01 19:38 - 2016-03-01 19:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-02-28 13:38 - 2016-02-28 13:38 - 00000000 ____D C:\Users\Káťa\AppData\Roaming\java
2016-02-28 13:32 - 2016-02-28 13:32 - 00001222 _____ C:\Users\Public\Desktop\Minecraft Launcher 1.8.lnk
2016-02-28 13:32 - 2016-02-28 13:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher 1.8
2016-02-28 13:32 - 2016-02-28 13:32 - 00000000 ____D C:\ProgramData\Caphyon
2016-02-28 13:32 - 2016-02-28 13:32 - 00000000 ____D C:\Program Files (x86)\Mojang
2016-02-28 13:32 - 2016-02-28 13:32 - 00000000 ____D C:\Program Files (x86)\Adobe Arkalis
2016-02-28 13:31 - 2016-02-28 13:31 - 00000000 ____D C:\Users\Káťa\Downloads\Minecraft-Launcher-1.8-+(vsechny-verze!)
2016-02-28 13:31 - 2016-02-28 13:31 - 00000000 ____D C:\Users\Káťa\AppData\Roaming\Mojang
2016-02-28 13:27 - 2016-02-28 13:28 - 14879576 _____ C:\Users\Káťa\Downloads\Minecraft-Launcher-1.8-+(vsechny-verze!).rar
2016-02-23 11:08 - 2016-02-23 11:11 - 00135680 _____ C:\Users\Káťa\Downloads\objednavky_JaN_v871%2520%281%29.xls
2016-02-17 19:48 - 2016-02-17 19:48 - 00060928 _____ C:\Users\Káťa\Downloads\rozpis_ledu_unor.xls
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-13 17:54 - 2015-04-06 14:50 - 00000000 ____D C:\Users\Káťa\AppData\Roaming\Skype
2016-03-13 17:52 - 2015-04-04 19:24 - 00000970 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-13 17:38 - 2015-04-06 14:50 - 00000000 ____D C:\ProgramData\Skype
2016-03-13 17:36 - 2015-04-04 19:24 - 00000966 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-12 13:09 - 2015-04-04 19:09 - 00000000 ____D C:\Users\Káťa\AppData\Local\Packages
2016-03-12 07:29 - 2015-04-06 15:48 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-03-11 23:15 - 2015-04-04 19:56 - 00000000 ____D C:\Users\Káťa\AppData\Roaming\vlc
2016-03-11 23:15 - 2015-04-04 19:44 - 00000000 ____D C:\frd stahování
2016-03-02 23:11 - 2015-04-18 12:20 - 00000000 ____D C:\Users\Káťa\AppData\Local\Microsoft Help
2016-03-02 18:40 - 2015-04-04 19:15 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4131273117-163398813-1816125510-1001
2016-03-01 21:53 - 2016-01-11 19:51 - 00000000 ____D C:\Users\Káťa\Desktop\somka
2016-03-01 21:51 - 2015-11-18 16:39 - 00000820 ____H C:\Users\Káťa\Downloads\.picasa.ini
2016-03-01 19:38 - 2015-04-06 14:50 - 00000000 ____D C:\Users\Káťa\AppData\Local\Skype
2016-03-01 17:45 - 2012-07-26 11:01 - 00693070 _____ C:\Windows\system32\perfh005.dat
2016-03-01 17:45 - 2012-07-26 11:01 - 00140226 _____ C:\Windows\system32\perfc005.dat
2016-03-01 17:45 - 2012-07-26 08:28 - 01626896 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-01 17:45 - 2012-07-26 06:37 - 00000000 ____D C:\Windows\Inf
2016-02-29 21:55 - 2016-01-05 16:41 - 00000000 ____D C:\Users\Káťa\Desktop\dejak
2016-02-28 16:53 - 2015-04-06 15:12 - 00000000 ____D C:\Users\Káťa\AppData\Roaming\.minecraft
2016-02-27 19:30 - 2016-02-09 19:26 - 00000000 ____D C:\Users\Káťa\AppData\Roaming\dvdcss
2016-02-20 07:54 - 2015-04-04 19:26 - 00002212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-19 18:11 - 2012-07-26 08:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-17 20:17 - 2015-04-06 15:00 - 00000000 ____D C:\Vše
2016-02-15 16:15 - 2015-04-04 19:24 - 00000000 ____D C:\Users\Káťa\AppData\Local\Google
2016-02-14 21:36 - 2012-07-26 06:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-02-12 17:29 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\system32\NDF
==================== Files in the root of some directories =======
Some files in TEMP:
====================
C:\Users\Káťa\AppData\Local\Temp\KMPAddedCode_KMP_adpageopen_Step1.exe
C:\Users\Káťa\AppData\Local\Temp\vlc-2.2.1-win32.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\K��a\Desktop" je 54 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
==================== End Of Log ==============================
