﻿Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24-01-2015 01
Ran by pavel (administrator) on PRVN-4WVTXYCSU1 on 28-01-2015 11:55:21
Running from C:\Documents and Settings\pavel\Plocha
Loaded Profiles: pavel (Available profiles: pavel & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(AVAST Software) D:\P R O G R A M Y\avast\AvastSvc.exe
(Creative Technology Ltd) C:\Program Files\Creative\Shared Files\CTAudSvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(AVAST Software) D:\P R O G R A M Y\avast\AvastUI.exe
() C:\OscarX7H\program files\OSCAR Editor\OscarEditor.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
() C:\Program Files\Garena Plus\GarenaMessenger.exe
(Microsoft Corporation) C:\Program Files\Microsoft ActiveSync\wcescomm.exe
(Microsoft Corporation) C:\PROGRA~1\MI3AA1~1\rapimgr.exe
(Creative Technology Ltd) C:\WINDOWS\system32\CTSVCCDA.EXE
(InterVideo) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Oracle Corporation) C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
(CANON INC.) C:\WINDOWS\system32\CNAB4RPK.EXE
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(forum.viry.cz) C:\Documents and Settings\pavel\Plocha\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AMBDef] => C:\WINDOWS\AMBDef.exe [53248 2008-01-24] (Creative Technology Ltd.)
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [1753192 2010-11-04] ()
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20029032 2011-02-17] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AvastUI.exe] => D:\P R O G R A M Y\avast\AvastUI.exe [4085896 2014-08-01] (AVAST Software)
Winlogon\Notify\!SASWinLogon: D:\P R O G R A M Y\SuperAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
HKU\S-1-5-21-1343024091-343818398-839522115-1003\...\Run: [OscarEditor] => C:\OscarX7H\program files\OSCAR Editor\OscarEditor.exe [4053504 2009-08-31] ()
HKU\S-1-5-21-1343024091-343818398-839522115-1003\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1343024091-343818398-839522115-1003\...\Run: [GarenaPlus] => C:\Program Files\Garena Plus\GarenaMessenger.exe [9936176 2014-04-29] ()
HKU\S-1-5-21-1343024091-343818398-839522115-1003\...\Run: [H/PC Connection Agent] => C:\Program Files\Microsoft ActiveSync\wcescomm.exe [1289000 2006-11-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\P R O G R A M Y\avast\ashShell.dll (AVAST Software)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKU\S-1-5-21-1343024091-343818398-839522115-1003\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-1343024091-343818398-839522115-1003\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
HKU\S-1-5-21-1343024091-343818398-839522115-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKU\S-1-5-21-1343024091-343818398-839522115-1003\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <======= ATTENTION
SearchScopes: HKLM -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1343024091-343818398-839522115-1003 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll No File
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> D:\P R O G R A M Y\avast\aswWebRepIE.dll No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll No File
Toolbar: HKU\S-1-5-21-1343024091-343818398-839522115-1003 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\System32\browseui.dll (Společnost Microsoft)
DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - D:\P R O G R A M Y\SuperAntiSpyware\SASSEH.DLL [77824 2008-05-13] (SuperAdBlocker.com)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.5.1 -> C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=12.0.1.652 -> C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=12.0.1.652 -> C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @t.garena.com/garenatalk -> C:\Program Files\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll ( Garena)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1343024091-343818398-839522115-1003: @tools.google.com/Google Update;version=3 -> C:\Documents and Settings\pavel\Local Settings\Data aplikací\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-1343024091-343818398-839522115-1003: @tools.google.com/Google Update;version=9 -> C:\Documents and Settings\pavel\Local Settings\Data aplikací\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} [2011-04-03]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2010-08-22]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - D:\P R O G R A M Y\avast\WebRep\FF
FF Extension: avast! Online Security - D:\P R O G R A M Y\avast\WebRep\FF [2011-04-17]

Chrome: 
=======
CHR Profile: C:\Documents and Settings\pavel\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (AdBlock) - C:\Documents and Settings\pavel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-05-13]
CHR Extension: (Avast Online Security) - C:\Documents and Settings\pavel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-12-06]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\pavel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-08]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - D:\P R O G R A M Y\avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-01]
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - No Path
StartMenuInternet: chrome.exe - C:\Documents and Settings\pavel\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; D:\P R O G R A M Y\avast\AvastSvc.exe [50344 2014-08-01] (AVAST Software)
S3 Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2010-08-19] (Creative Labs) [File not signed]
R2 Creative Service for CDROM Access; C:\WINDOWS\System32\CTsvcCDA.exe [44032 1999-12-12] (Creative Technology Ltd) [File not signed]
R2 CTAudSvcService; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [417792 2008-04-30] (Creative Technology Ltd) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe [161704 2012-07-05] (Oracle Corporation)
S3 Sound Blaster X-Fi MB Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\XMBLicensing.exe [79360 2010-08-19] (Creative Labs) [File not signed]
S3 TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-08-01] ()
R1 aswKbd; C:\WINDOWS\system32\Drivers\aswKbd.sys [20624 2012-10-30] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-08-01] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55112 2014-08-01] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-08-01] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [779536 2014-11-22] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [414520 2014-08-01] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57800 2014-08-01] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [192352 2014-08-01] ()
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [279712 2010-10-09] ()
R3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [25280 2010-11-17] (LogMeIn, Inc.)
R2 hardlock; C:\WINDOWS\System32\DRIVERS\hardlock.sys [420000 2004-01-31] () [File not signed]
R2 Haspnt; C:\WINDOWS\system32\drivers\Haspnt.sys [47616 2003-12-18] (Aladdin Knowledge Systems) [File not signed]
R2 ithsgt; C:\WINDOWS\System32\DRIVERS\ithsgt.sys [162432 2011-09-14] () [File not signed]
R2 lilsgt; C:\WINDOWS\System32\DRIVERS\lilsgt.sys [12032 2011-09-14] () [File not signed]
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [25888 2010-10-09] ()
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
S3 NVHDA; C:\WINDOWS\System32\drivers\nvhda32.sys [100456 2010-11-12] (NVIDIA Corporation)
R2 NwlnkIpx; C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys [88320 2008-04-13] (Microsoft Corporation)
R2 NwlnkNb; C:\WINDOWS\System32\DRIVERS\nwlnknb.sys [63232 2001-10-25] (Microsoft Corporation)
R2 NwlnkSpx; C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys [55936 2001-10-25] (Microsoft Corporation)
S3 pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [47360 2010-10-21] (VSO Software) [File not signed]
R1 SASDIFSV; D:\P R O G R A M Y\SuperAntiSpyware\SASDIFSV.SYS [12872 2010-02-17] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; D:\P R O G R A M Y\SuperAntiSpyware\SASKUTIL.SYS [67656 2010-05-10] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SCDEmu; C:\WINDOWS\system32\Drivers\SCDEmu.sys [56268 2009-03-15] (PowerISO Computing, Inc.) [File not signed]
S3 SECUSB2; C:\WINDOWS\System32\Drivers\SECUSB2.sys [10528 2008-04-16] (Windows (R) 2000 DDK provider) [File not signed]
R2 Sentinel; C:\WINDOWS\System32\Drivers\SENTINEL.SYS [76288 2004-05-17] (Rainbow Technologies, Inc.) [File not signed]
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [717296 2011-02-04] () [File not signed]
R3 tap0901t; C:\WINDOWS\System32\DRIVERS\tap0901t.sys [27136 2009-09-16] (Tunngle.net) [File not signed]
S3 wceusbsh; C:\WINDOWS\System32\DRIVERS\wceusbsh.sys [104576 2008-04-16] (Microsoft Corporation) [File not signed]
U3 a4p3zce0; C:\WINDOWS\system32\Drivers\a4p3zce0.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero size file/folder)
S3 GGSAFERDriver; \??\C:\Program Files\Garena Plus\Room\safedrv.sys [X]
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-28 11:55 - 2015-01-28 11:55 - 00015514 _____ () C:\Documents and Settings\pavel\Plocha\FRST.txt
2015-01-28 11:55 - 2015-01-28 11:55 - 00000000 ____D () C:\FRST
2015-01-28 11:54 - 2015-01-28 11:48 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\pavel\Plocha\FRSTLauncher.exe
2015-01-28 11:54 - 2015-01-28 11:47 - 01120768 _____ (Farbar) C:\Documents and Settings\pavel\Plocha\frst.exe
2015-01-28 01:08 - 2015-01-27 21:16 - 02194432 _____ () C:\Documents and Settings\pavel\Plocha\adwcleaner_4.109.exe
2015-01-22 12:24 - 2015-01-22 12:25 - 00000000 ____D () C:\Documents and Settings\pavel\Plocha\Nová složka
2015-01-22 12:21 - 1995-01-01 01:39 - 00000044 _____ () C:\Documents and Settings\pavel\Plocha\Track13.cda

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-28 11:55 - 2010-08-19 20:05 - 00000000 ____D () C:\Documents and Settings\pavel\Plocha
2015-01-28 11:55 - 2010-08-19 20:05 - 00000000 ____D () C:\Documents and Settings\pavel\Local Settings\Temp
2015-01-28 11:54 - 2010-08-19 20:05 - 00000000 ___HD () C:\Documents and Settings\pavel\Local Settings\Data aplikací
2015-01-28 11:53 - 2012-08-28 07:24 - 00000338 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-01-28 11:48 - 2010-08-22 20:36 - 02081081 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-28 11:47 - 2014-05-17 19:35 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-01-28 11:47 - 2014-05-17 19:35 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2015-01-28 11:46 - 2013-10-10 10:04 - 00000278 _____ () C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-1343024091-343818398-839522115-1003.job
2015-01-28 11:46 - 2010-08-19 20:02 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-28 01:52 - 2010-08-19 20:05 - 00032430 _____ () C:\WINDOWS\SchedLgU.Txt
2015-01-28 01:16 - 2014-05-11 11:32 - 00000000 ____D () C:\AdwCleaner
2015-01-28 01:16 - 2010-08-19 21:35 - 00000000 __RHD () C:\Documents and Settings\All Users.WINDOWS\Data aplikací
2015-01-28 01:13 - 2010-08-22 20:47 - 00001026 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1343024091-343818398-839522115-1003UA.job
2015-01-28 01:07 - 2001-10-25 15:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-01-26 23:02 - 2010-11-08 19:12 - 00000000 ____D () C:\Program Files\trend micro
2015-01-23 12:07 - 2010-08-22 20:47 - 00000974 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1343024091-343818398-839522115-1003Core.job
2015-01-22 12:36 - 2014-05-12 07:21 - 00022521 _____ () C:\WINDOWS\wmsetup.log
2015-01-22 12:22 - 2012-12-14 17:06 - 00000000 ____D () C:\Documents and Settings\pavel\Data aplikací\vlc

==================== Files in the root of some directories =======

2010-12-17 14:33 - 2010-12-17 14:33 - 0002528 ____C () C:\Documents and Settings\pavel\Data aplikací\$_hpcst$.hpc
2010-09-28 18:32 - 2012-08-18 09:18 - 0087608 ____C () C:\Documents and Settings\pavel\Data aplikací\inst.exe
2010-09-28 18:32 - 2012-08-18 09:18 - 0007887 ____C () C:\Documents and Settings\pavel\Data aplikací\pcouffin.cat
2010-09-28 18:32 - 2012-08-18 09:18 - 0001144 ____C () C:\Documents and Settings\pavel\Data aplikací\pcouffin.inf
2010-09-28 18:32 - 2012-08-18 09:18 - 0000033 ____C () C:\Documents and Settings\pavel\Data aplikací\pcouffin.log
2010-09-28 18:32 - 2012-08-18 09:18 - 0047360 ____C (VSO Software) C:\Documents and Settings\pavel\Data aplikací\pcouffin.sys
2011-07-26 11:52 - 2011-07-26 11:52 - 0138056 ____C () C:\Documents and Settings\pavel\Data aplikací\PnkBstrK.sys
2011-03-24 16:56 - 2011-05-24 21:08 - 0046658 ____C () C:\Documents and Settings\pavel\Data aplikací\room.dat
2011-05-28 17:15 - 2014-05-29 14:09 - 0045194 _____ () C:\Documents and Settings\pavel\Data aplikací\room_v3.dat
2010-09-28 18:32 - 2012-06-15 14:52 - 0001057 ____C () C:\Documents and Settings\pavel\Data aplikací\vso_ts_preview.xml
2010-08-21 20:27 - 2014-12-04 20:39 - 0088576 _____ () C:\Documents and Settings\pavel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

Files to move or delete:
====================
C:\Documents and Settings\pavel\tadle mrcha nejde smazat KRENAME.dll


Some content of TEMP:
====================
C:\Documents and Settings\pavel\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\pavel\Local Settings\Temp\setup_wm.exe
C:\Documents and Settings\pavel\Local Settings\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (sata-systemos) (Fixed) (Total:177.6 GB) (Free:53.38 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: (sata-programos) (Fixed) (Total:288.16 GB) (Free:78.4 GB) NTFS
Drive f: (KINGSTON) (Removable) (Total:7.31 GB) (Free:2.93 GB) FAT32

Available physical RAM: 1462.33 MB
Total physical RAM: 2046.42 MB
Percentage of memory in use: 28%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 465.8 GB) (Disk ID: 50675067)
Partition 1: (Active) - (Size=177.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=288.2 GB) - (Type=07 NTFS)
Disk: 1 (MBR Code: Windows XP) (Size: 7.3 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=7.3 GB) - (Type=0C)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => D:\P R O G R A M Y\avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1343024091-343818398-839522115-1003Core.job => C:\Documents and Settings\pavel\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1343024091-343818398-839522115-1003UA.job => C:\Documents and Settings\pavel\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-1343024091-343818398-839522115-1003.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-1343024091-343818398-839522115-1003.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:A1EDB939
AlternateDataStreams: C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:A1EDB939

==================== Security Center ==================

AV: Norton Internet Security (Disabled - Up to date) {E10A9785-9598-4754-B552-92431C1C35F8}
AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: Norton Internet Security (Disabled) {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

  
***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\pavel\Plocha" je 74592 MB.
 
 
***** Startup Programs *****
 
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" 

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}
"C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe" 

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE
C:\WINDOWS\system32\ctfmon.exe  

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSyncService
C:\Program Files\InstallShield Installation Information\{EC6D5F08-1694-431F-8200-3B0A8A61AC5A}\AMBSPISyncService.exe /StartRunKey [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarenaPlus
"C:\Program Files\Garena Plus\GarenaMessenger.exe" -autolaunch [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update
"C:\Documents and Settings\pavel\Local Settings\Data aplikac\Google\Update\GoogleUpdate.exe" /c [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\H/PC Connection Agent
"C:\Program Files\Microsoft ActiveSync\Wcescomm.exe" 

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM
"C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS
"C:\Program Files\Messenger\msmsgs.exe" /background [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe 

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE
D:\P R O G R A M Y\PowerISO\PWRISOVM.EXE 

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam
"C:\Program Files\Steam\steam.exe" -silent [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware
D:\P R O G R A M Y\SuperAntiSpyware\SUPERAntiSpyware.exe 

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe
"C:\program files\real\realplayer\update\realsched.exe"  -osboot [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe
"C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg
C:\WINDOWS\UpdReg.EXE  

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VolPanel
"C:\Program Files\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe" /r [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WiseStubReboot
MSIEXEC /quiet SKIP_PPU_DRIVER_INSTALL=1 /I "C:\Program Files\Common Files\Wise Installation Wizard\WISC5C1C0F0D62F4DBF81D4D7EF397C228B_9_09_0814.MSI" TRANSFORMS="C:\Program Files\Common Files\Wise Installation Wizard\WISC5C1C0F0D62F4DBF81D4D7EF397C228B_9_09_0814.MST" WISE_SETUP_EXE_PATH="e:\driver\2k_xp\191.07\PhysX_9.09.0814_SystemSoftware.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^pavel^Nabdka Start^Programy^Po sputn^hamachi.lnk
D:\PROGRA~1\hamachi.exe  

 
***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    EnableFirewall	REG_DWORD	0x0
    DoNotAllowExceptions	REG_DWORD	0x0
    DisableNotifications	REG_DWORD	0x0


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe"="C:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe"="C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe"="C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\\ikovn programy\\Steam\\Steam.exe"="D:\\ikovn programy\\Steam\\Steam.exe:*:Enabled:Steam"
"C:\\WINDOWS\\system32\\dplaysvr.exe"="C:\\WINDOWS\\system32\\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\\Rage of Mages 2\\rom2.exe"="C:\\Rage of Mages 2\\rom2.exe:*:Enabled:rom2"
"D:\\Rage of Mages 2\\rom2.exe"="D:\\Rage of Mages 2\\rom2.exe:*:Enabled:rom2"
"F:\\CRACK\\STARCRAFT II.EXE"="F:\\CRACK\\STARCRAFT II.EXE:*:Enabled:Blizzard Launcher"
"D:\\Hry\\StarCraft II\\StarCraft II.exe"="D:\\Hry\\StarCraft II\\StarCraft II.exe:*:Enabled:Blizzard Launcher"
"D:\\Hry\\StarCraft II\\Versions\\Base15405\\SC2.exe"="D:\\Hry\\StarCraft II\\Versions\\Base15405\\SC2.exe:*:Enabled:StarCraft II"
"D:\\Hry\\StarCraft II\\Versions\\Base16561\\SC2.exe"="D:\\Hry\\StarCraft II\\Versions\\Base16561\\SC2.exe:*:Enabled:StarCraft II"
"D:\\Hry\\Counter strike 1.6\\hl.exe"="D:\\Hry\\Counter strike 1.6\\hl.exe:*:Enabled:Half-Life Launcher"
"D:\\P R O G R A M Y\\QIP\\qip.exe"="D:\\P R O G R A M Y\\QIP\\qip.exe:*:Enabled:Quiet Internet Pager"
"D:\\P R O G R A M Y\\utorrent\\uTorrent.exe"="D:\\P R O G R A M Y\\utorrent\\uTorrent.exe:*:Enabled:uTorrent"
"C:\\WINDOWS\\system32\\CNAB4RPK.EXE"="C:\\WINDOWS\\system32\\CNAB4RPK.EXE:*:Enabled:Canon LBP2900 RPC Server Process"
"D:\\Hry\\Counter strike Source\\Counter Strike Source 2010\\hl2.exe"="D:\\Hry\\Counter strike Source\\Counter Strike Source 2010\\hl2.exe:*:Enabled:hl2"
"D:\\Hry\\Counter strike 1.6\\hlds.exe"="D:\\Hry\\Counter strike 1.6\\hlds.exe:*:Enabled:HLDS Launcher"
"D:\\Hry\\NFS Hot Pursuit\\Launcher.exe"="D:\\Hry\\NFS Hot Pursuit\\Launcher.exe:*:Enabled:Need for Speed(TM) Hot Pursuit"
"D:\\Hry\\NFS Hot Pursuit\\NFS11.exe"="D:\\Hry\\NFS Hot Pursuit\\NFS11.exe:*:Enabled:Need for Speed(TM) Hot Pursuit Application"
"D:\\P R O G R A M Y\\Garena\\Garena.exe"="D:\\P R O G R A M Y\\Garena\\Garena.exe:*:Enabled:Garena"
"D:\\Hry\\Call of Duty 2\\CoD2MP_s.exe"="D:\\Hry\\Call of Duty 2\\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"D:\\Hry\\Team Fortress 2\\hl2.exe"="D:\\Hry\\Team Fortress 2\\hl2.exe:*:Enabled:hl2"
"D:\\Hry\\TF2\\Team Fortress 2\\hl2.exe"="D:\\Hry\\TF2\\Team Fortress 2\\hl2.exe:*:Enabled:hl2"
"D:\\Hry\\Team Fortress NS\\hl2.exe"="D:\\Hry\\Team Fortress NS\\hl2.exe:*:Enabled:hl2"
"D:\\Hry\\StarCraft II\\Versions\\Base16939\\SC2.exe"="D:\\Hry\\StarCraft II\\Versions\\Base16939\\SC2.exe:*:Enabled:StarCraft II"
"D:\\Hry\\StarCraft II\\Versions\\Base17326\\SC2.exe"="D:\\Hry\\StarCraft II\\Versions\\Base17326\\SC2.exe:*:Enabled:StarCraft II"
"D:\\Hry\\BaboViolent 2\\bv2Dedicated.exe"="D:\\Hry\\BaboViolent 2\\bv2Dedicated.exe:*:Enabled:bv2Dedicated"
"D:\\Hry\\BaboViolent 2\\bv2.exe"="D:\\Hry\\BaboViolent 2\\bv2.exe:*:Enabled:bv2"
"D:\\Hry\\BaboViolent 2\\bv2Dedicated_v2_11fpro.exe"="D:\\Hry\\BaboViolent 2\\bv2Dedicated_v2_11fpro.exe:*:Enabled:bv2Dedicated_v2_11fpro"
"D:\\Hry\\FixKorea\\tacint\\ti.exe"="D:\\Hry\\FixKorea\\tacint\\ti.exe:*:Enabled:ti"
"C:\\Documents and Settings\\pavel\\Plocha\\RGC\\Ranked Gaming Client\\rgc.exe"="C:\\Documents and Settings\\pavel\\Plocha\\RGC\\Ranked Gaming Client\\rgc.exe:*:Enabled:rgc"
"D:\\Hry\\Dead Space 2\\deadspace2.exe"="D:\\Hry\\Dead Space 2\\deadspace2.exe:*:Enabled:Dead Spacet 2"
"C:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe"="C:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe"="C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe"="C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"D:\\Hry\\Diablo II\\Diablo II.exe"="D:\\Hry\\Diablo II\\Diablo II.exe:*:Enabled:Diablo II - Lord of Destruction"
"D:\\Hry\\StarCraft II\\Versions\\Base18092\\SC2.exe"="D:\\Hry\\StarCraft II\\Versions\\Base18092\\SC2.exe:*:Enabled:StarCraft II"
"H:\\WinDVD.exe"="H:\\WinDVD.exe:*:Enabled:WinDVD"
"D:\\Hry\\Warcraft III\\Warcraft III.exe"="D:\\Hry\\Warcraft III\\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\\Program Files\\Common Files\\Ahead\\Nero Web\\SetupX.exe"="C:\\Program Files\\Common Files\\Ahead\\Nero Web\\SetupX.exe:*:Enabled:Nero ProductSetup"
"C:\\Program Files\\Nero\\Nero 7\\Nero Home\\NeroHome.exe"="C:\\Program Files\\Nero\\Nero 7\\Nero Home\\NeroHome.exe:*:Enabled:Nero Home"
"D:\\P R O G R A M Y\\hamachi.exe"="D:\\P R O G R A M Y\\hamachi.exe:*:Enabled:Hamachi Client"
"C:\\Documents and Settings\\pavel\\Local Settings\\Temp\\Rar$EX00.468\\WoW-BurningCrusade-enGBdownloader.exe"="C:\\Documents and Settings\\pavel\\Local Settings\\Temp\\Rar$EX00.468\\WoW-BurningCrusade-enGBdownloader.exe:*:Enabled:Blizzard Downloader"
"D:\\World Of Warcraft Classic\\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe"="D:\\World Of Warcraft Classic\\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe:*:Enabled:Blizzard Downloader"
"D:\\World Of Warcraft Classic\\Launcher.exe"="D:\\World Of Warcraft Classic\\Launcher.exe:*:Enabled:Blizzard Launcher"
"D:\\World Of Warcraft Classic\\Launcher.patch.exe"="D:\\World Of Warcraft Classic\\Launcher.patch.exe:*:Enabled:Blizzard Launcher"
"D:\\Hry\\World of Warcraft\\Launcher.exe"="D:\\Hry\\World of Warcraft\\Launcher.exe:*:Enabled:Blizzard Launcher"
"D:\\Hry\\World of Warcraft\\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe"="D:\\Hry\\World of Warcraft\\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe:*:Enabled:Blizzard Downloader"
"C:\\Documents and Settings\\pavel\\Plocha\\WoW-3.2.0-enGB-downloader.exe"="C:\\Documents and Settings\\pavel\\Plocha\\WoW-3.2.0-enGB-downloader.exe:*:Enabled:Blizzard Downloader"
"D:\\Hry\\Portal 2\\portal2.exe"="D:\\Hry\\Portal 2\\portal2.exe:*:Enabled:portal2"
"D:\\Hry\\GTA IV\\Grand Theft Auto IV\\GTAIV.exe"="D:\\Hry\\GTA IV\\Grand Theft Auto IV\\GTAIV.exe:*:Disabled:Grand Theft Auto IV"
"D:\\Hry\\NHL 09\\nhl2009.exe"="D:\\Hry\\NHL 09\\nhl2009.exe:*:Disabled:nhl2009"
"D:\\Hry\\NHL08\\nhl2008.exe"="D:\\Hry\\NHL08\\nhl2008.exe:*:Enabled:nhl2008"
"D:\\Hry\\nhl04\\nhl2004.exe"="D:\\Hry\\nhl04\\nhl2004.exe:*:Enabled:nhl2004"
"D:\\Hry\\Heroes2\\HEROES2W.EXE"="D:\\Hry\\Heroes2\\HEROES2W.EXE:*:Enabled:HEROES2W"
"D:\\Hry\\StarCraft II\\Versions\\Base18574\\SC2.exe"="D:\\Hry\\StarCraft II\\Versions\\Base18574\\SC2.exe:*:Enabled:StarCraft II"
"D:\\Hry\\Witcher 2\\bin\\witcher2.exe"="D:\\Hry\\Witcher 2\\bin\\witcher2.exe:*:Enabled:The Witcher 2: Assasins of Kings"
"D:\\Hry\\Commandos 2\\comm2.exe"="D:\\Hry\\Commandos 2\\comm2.exe:*:Enabled:comm2"
"D:\\Hry\\Fifa 11\\Game\\fifa.exe"="D:\\Hry\\Fifa 11\\Game\\fifa.exe:*:Enabled:FIFA 11"
"D:\\Hry\\L4D2\\Left 4 Dead 2\\left4dead2.exe"="D:\\Hry\\L4D2\\Left 4 Dead 2\\left4dead2.exe:*:Enabled:left4dead2"
"H:\\L4D2\\Left 4 Dead 2\\left4dead2.exe"="H:\\L4D2\\Left 4 Dead 2\\left4dead2.exe:*:Enabled:left4dead2"
"D:\\Hry\\Left 4 Dead 2\\L4D2\\Left 4 Dead 2\\left4dead2.exe"="D:\\Hry\\Left 4 Dead 2\\L4D2\\Left 4 Dead 2\\left4dead2.exe:*:Enabled:left4dead2"
"D:\\Hry\\FEAR3\\F.E.A.R. 3\\F.E.A.R. 3.exe"="D:\\Hry\\FEAR3\\F.E.A.R. 3\\F.E.A.R. 3.exe:*:Enabled:F.E.A.R. 3"
"D:\\Hry\\BorderLands\\Gearbox Software\\Borderlands\\Binaries\\Borderlands.exe"="D:\\Hry\\BorderLands\\Gearbox Software\\Borderlands\\Binaries\\Borderlands.exe:*:Enabled:Borderlands"
"D:\\P R O G R A M Y\\Steam\\Steam.exe"="D:\\P R O G R A M Y\\Steam\\Steam.exe:*:Enabled:Steam"
"D:\\Hry\\F.E.A.R. 3\\F.E.A.R. 3.exe"="D:\\Hry\\F.E.A.R. 3\\F.E.A.R. 3.exe:*:Enabled:F.E.A.R. 3"
"D:\\Hry\\Titan Quest\\Titan Quest.exe"="D:\\Hry\\Titan Quest\\Titan Quest.exe:*:Enabled:Titan Quest"
"D:\\Hry\\Titan Quest IT\\Tqit.exe"="D:\\Hry\\Titan Quest IT\\Tqit.exe:*:Enabled:Tqit"
"D:\\Hry\\TQ IT\\Tqit.exe"="D:\\Hry\\TQ IT\\Tqit.exe:*:Enabled:Tqit"
"D:\\Hry\\StarCraft II\\Versions\\Base19132\\SC2.exe"="D:\\Hry\\StarCraft II\\Versions\\Base19132\\SC2.exe:*:Enabled:StarCraft II"
"C:\\WINDOWS\\system32\\PnkBstrA.exe"="C:\\WINDOWS\\system32\\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\\WINDOWS\\system32\\PnkBstrB.exe"="C:\\WINDOWS\\system32\\PnkBstrB.exe:*:Enabled:PnkBstrB"
"D:\\Hry\\BF4free\\BFP4f.exe"="D:\\Hry\\BF4free\\BFP4f.exe:*:Enabled:BFP4f"
"D:\\Program Files\\Capcom\\Bionic Commando\\bionic_commando.exe"="D:\\Program Files\\Capcom\\Bionic Commando\\bionic_commando.exe:*:Enabled:Bionic Commando"
"D:\\Hry\\Re-Volt\\revolt.exe"="D:\\Hry\\Re-Volt\\revolt.exe:*:Enabled:revolt"
"D:\\P R O G R A M Y\\Steam\\steamapps\\paulie0001\\team fortress 2\\hl2.exe"="D:\\P R O G R A M Y\\Steam\\steamapps\\paulie0001\\team fortress 2\\hl2.exe:*:Enabled:hl2"
"D:\\Hry\\Dead Island\\Dead Island\\deadislandgame.exe"="D:\\Hry\\Dead Island\\Dead Island\\deadislandgame.exe:*:Enabled:DeadIsland"
"D:\\Hry\\Driver San Francisko\\Driver.exe"="D:\\Hry\\Driver San Francisko\\Driver.exe:*:Enabled:Driver San Francisco"
"D:\\Hry\\Assassins Creed 3\\ACBMP.exe"="D:\\Hry\\Assassins Creed 3\\ACBMP.exe:*:Enabled:Assassin's Creed Brotherhood Multiplayer"
"C:\\Documents and Settings\\All Users.WINDOWS\\Data aplikac\\Battle.net\\Agent\\Agent.439\\Agent.exe"="C:\\Documents and Settings\\All Users.WINDOWS\\Data aplikac\\Battle.net\\Agent\\Agent.439\\Agent.exe:*:Enabled:Blizzard Agent"
"C:\\Documents and Settings\\All Users.WINDOWS\\Data aplikac\\Battle.net\\Agent\\Agent.440\\Agent.exe"="C:\\Documents and Settings\\All Users.WINDOWS\\Data aplikac\\Battle.net\\Agent\\Agent.440\\Agent.exe:*:Enabled:Blizzard Agent"
"C:\\Program Files\\Ubisoft\\Ubisoft Game Launcher\\UbisoftGameLauncher.exe"="C:\\Program Files\\Ubisoft\\Ubisoft Game Launcher\\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher"
"D:\\P R O G R A M Y\\Steam\\SmartSteam\\Steam.exe"="D:\\P R O G R A M Y\\Steam\\SmartSteam\\Steam.exe:*:Enabled:Steam"
"D:\\Hry\\Warcraft III\\gproxy.exe"="D:\\Hry\\Warcraft III\\gproxy.exe:*:Enabled:gproxy Application"
"D:\\Hry\\Warcraft III\\war3.exe"="D:\\Hry\\Warcraft III\\war3.exe:*:Enabled:Warcraft III"
"\\\\ZEM-FC29537D19D\\Jirsoun  (D)\\Age Of Empires 2\\empires2.exe"="\\\\ZEM-FC29537D19D\\Jirsoun  (D)\\Age Of Empires 2\\empires2.exe:*:Enabled:empires2.exe"
"D:\\P R O G R A M Y\\ParadiseCasino\\casino.exe"="D:\\P R O G R A M Y\\ParadiseCasino\\casino.exe:*:Enabled:casino"
"D:\\Hry\\Age of Empires 3\\age3y.exe"="D:\\Hry\\Age of Empires 3\\age3y.exe:*:Enabled:Age of Empires III - The Asian Dynasties"
"D:\\Hry\\Crysis 2\\bin32\\Crysis2.exe"="D:\\Hry\\Crysis 2\\bin32\\Crysis2.exe:*:Enabled:Crysis2"
"\\\\ZEM-FC29537D19D\\JIRSOUN  (D)\\MOHAA\\MOHAA.exe"="\\\\ZEM-FC29537D19D\\JIRSOUN  (D)\\MOHAA\\MOHAA.exe:*:Enabled:MOHAA.exe"
"D:\\Hry\\StarCraft II\\Versions\\Base21029\\SC2.exe"="D:\\Hry\\StarCraft II\\Versions\\Base21029\\SC2.exe:*:Enabled:StarCraft II"
"D:\\Hry\\Age of Empires 3\\age3x.exe"="D:\\Hry\\Age of Empires 3\\age3x.exe:*:Enabled:Age of Empires III - The WarChiefs"
"D:\\Max Payne 3\\MaxPayne3.exe"="D:\\Max Payne 3\\MaxPayne3.exe:*:Enabled:Max Payne 3"
"D:\\Hry\\StarCraft II\\sc2-x.x.x.x-1.5.0.22342-enUS-Downloader.exe"="D:\\Hry\\StarCraft II\\sc2-x.x.x.x-1.5.0.22342-enUS-Downloader.exe:*:Enabled:Blizzard Downloader"
"C:\\Documents and Settings\\All Users.WINDOWS\\Data aplikac\\Battle.net\\Agent\\Agent.1040\\Agent.exe"="C:\\Documents and Settings\\All Users.WINDOWS\\Data aplikac\\Battle.net\\Agent\\Agent.1040\\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\\Documents and Settings\\All Users.WINDOWS\\Data aplikac\\Battle.net\\Agent\\Agent.1199\\Agent.exe"="C:\\Documents and Settings\\All Users.WINDOWS\\Data aplikac\\Battle.net\\Agent\\Agent.1199\\Agent.exe:*:Enabled:Battle.net Update Agent"
"D:\\Hry\\StarCraft II\\StarCraft II Public Test.exe"="D:\\Hry\\StarCraft II\\StarCraft II Public Test.exe:*:Enabled:StarCraft II Public Test"
"C:\\Program Files\\Garena Plus\\Room\\garena_room.exe"="C:\\Program Files\\Garena Plus\\Room\\garena_room.exe:*:Enabled:Garena"
"C:\\Documents and Settings\\All Users.WINDOWS\\Data aplikac\\Battle.net\\Agent\\Agent.1267\\Agent.exe"="C:\\Documents and Settings\\All Users.WINDOWS\\Data aplikac\\Battle.net\\Agent\\Agent.1267\\Agent.exe:*:Enabled:Battle.net Update Agent"
"D:\\P R O G R A M Y\\AutoDesk\\3ds Max Design 2013\\NVIDIA\\raysat_3dsmax2013_32server.exe"="D:\\P R O G R A M Y\\AutoDesk\\3ds Max Design 2013\\NVIDIA\\raysat_3dsmax2013_32server.exe:*:Enabled:mental ray satellite server for Autodesk 3ds Max Design 2013 32-bit"
"D:\\P R O G R A M Y\\AutoDesk\\3ds Max Design 2013\\NVIDIA\\raysat_3dsmax2013_32.exe"="D:\\P R O G R A M Y\\AutoDesk\\3ds Max Design 2013\\NVIDIA\\raysat_3dsmax2013_32.exe:*:Enabled:mental ray satellite for Autodesk 3ds Max Design 2013 32-bit"
"D:\\P R O G R A M Y\\AutoDesk\\3ds Max Design 2013\\3dsmax.exe"="D:\\P R O G R A M Y\\AutoDesk\\3ds Max Design 2013\\3dsmax.exe:*:Enabled:Autodesk 3ds Max Design 2013 32-bit"
"C:\\Documents and Settings\\All Users.WINDOWS\\Data aplikac\\Battle.net\\Agent\\Agent.1363\\Agent.exe"="C:\\Documents and Settings\\All Users.WINDOWS\\Data aplikac\\Battle.net\\Agent\\Agent.1363\\Agent.exe:*:Enabled:Battle.net Update Agent"
"D:\\Hry\\Age of Empires 1\\GAME\\EMPIRES.EXE"="D:\\Hry\\Age of Empires 1\\GAME\\EMPIRES.EXE:*:Enabled:Age of Empires"
"D:\\Hry\\NFS2\\SPEED2.EXE"="D:\\Hry\\NFS2\\SPEED2.EXE:*:Enabled:SPEED2"
"D:\\Hry\\StarCraft II\\Versions\\Base23260\\SC2.exe"="D:\\Hry\\StarCraft II\\Versions\\Base23260\\SC2.exe:*:Enabled:StarCraft II"
"D:\\Hry\\Diablo\\Diablo.exe"="D:\\Hry\\Diablo\\Diablo.exe:*:Enabled:Diablo"
"D:\\Hry\\Diablo\\SIERRA\\HELLFIRE\\hellfire.exe"="D:\\Hry\\Diablo\\SIERRA\\HELLFIRE\\hellfire.exe:*:Enabled:Hellfire"
"C:\\Documents and Settings\\pavel\\Plocha\\Worms-Armageddon\\Worms Armageddon\\Worms\\WA.exe"="C:\\Documents and Settings\\pavel\\Plocha\\Worms-Armageddon\\Worms Armageddon\\Worms\\WA.exe:*:Enabled:Worms Armageddon"
"C:\\Documents and Settings\\pavel\\Plocha\\IPCurve\\ipcurve.exe"="C:\\Documents and Settings\\pavel\\Plocha\\IPCurve\\ipcurve.exe:*:Enabled:ipcurve"
"C:\\Documents and Settings\\All Users.WINDOWS\\Data aplikac\\Battle.net\\Agent\\Agent.1637\\Agent.exe"="C:\\Documents and Settings\\All Users.WINDOWS\\Data aplikac\\Battle.net\\Agent\\Agent.1637\\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\\Program Files\\Steam\\Steam.exe"="C:\\Program Files\\Steam\\Steam.exe:*:Enabled:Steam"
"D:\\Hry\\Age of empires 2\\age2_x1.exe"="D:\\Hry\\Age of empires 2\\age2_x1.exe:*:Enabled:Age of Empires II Expansion"
"D:\\Hry\\Saints Row The Third\\saintsrowthethird.exe"="D:\\Hry\\Saints Row The Third\\saintsrowthethird.exe:*:Enabled:Saints Row: the Third"
"C:\\Program Files\\Garena Plus\\ggdllhost.exe"="C:\\Program Files\\Garena Plus\\ggdllhost.exe:*:Enabled:ggdllhost"
"C:\\Program Files\\Steam\\SteamApps\\common\\dota 2 beta\\dota.exe"="C:\\Program Files\\Steam\\SteamApps\\common\\dota 2 beta\\dota.exe:*:Enabled:Dota 2"
"C:\\Program Files\\Tunngle\\tnglctrl.exe"="C:\\Program Files\\Tunngle\\tnglctrl.exe:*:Enabled:Tunngle Service"
"C:\\Program Files\\Tunngle\\tunngle.exe"="C:\\Program Files\\Tunngle\\tunngle.exe:*:Enabled:Tunngle Client"
"C:\\Program Files\\Java\\jre7\\launch4j-tmp\\frd.exe"="C:\\Program Files\\Java\\jre7\\launch4j-tmp\\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"26675:TCP"="26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service"
"139:TCP"="139:TCP:*:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:*:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:*:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:*:Enabled:@xpsp2res.dll,-22002"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
"26675:TCP"="26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service"
"6112:TCP"="6112:TCP:*:Enabled:D2"
"4000:TCP"="4000:TCP:*:Enabled:D2"
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"
 
 
***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000

 
==================== End Of Log ==============================
