﻿Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:08-08-2015 01
Ran by R (administrator) on R-PC (09-08-2015 15:52:29)
Running from C:\Users\R\Desktop
Loaded Profiles: R & Guest (Available Profiles: R & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\FaceLogon\smartlogon.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\22.5.2.15\n360.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUS) C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\22.5.2.15\n360.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(PC Remote) C:\Program Files (x86)\PC Remote\PC Remote\PCRemote.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
() C:\Program Files (x86)\AVG Secure Search\vprot.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-4129691398-2748993521-2903922347-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-4129691398-2748993521-2903922347-1001\...\Run: [PC Remote Server] => C:\Program Files (x86)\PC Remote\PC Remote\PCRemote.exe [1190648 2014-10-12] (PC Remote)
HKU\S-1-5-21-4129691398-2748993521-2903922347-1001\...\Run: [keyl] => C:\Nová složka\kl.exe
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton 360\Engine64\22.5.2.15\buShell.dll [2015-07-13] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton 360\Engine64\22.5.2.15\buShell.dll [2015-07-13] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton 360\Engine64\22.5.2.15\buShell.dll [2015-07-13] (Symantec Corporation)
ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\ASUSWSShellExt64.dll [2010-09-02] (eCareme Technologies, Inc.)
ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\ASUSWSShellExt64.dll [2010-09-02] (eCareme Technologies, Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://search.ividi.org/?affilt=1&uid=934230ce-485b-11e3-a116-bc7737e3343c
HKU\S-1-5-21-4129691398-2748993521-2903922347-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.trovigo.com/?gd=&ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SPE758D478-24FF-40EF-A10F-0EA8A678CCC0&SSPV=
HKU\S-1-5-21-4129691398-2748993521-2903922347-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
HKU\S-1-5-21-4129691398-2748993521-2903922347-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www2.inbox.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=%tb_id&%language
URLSearchHook: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 - UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
URLSearchHook: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 - (No Name) - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - No File
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
SearchScopes: HKLM-x32 -> {744C74F7-AFD8-4A2C-A13B-02BFEA80951D} URL = ${SEARCH_URL}{searchTerms}
SearchScopes: HKLM-x32 -> {D2271963-09B1-45EE-82A0-6914BADFF239} URL = ${SEARCH_URL}{searchTerms}
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://www.trovigo.com/Results.aspx?gd=&ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SPE758D478-24FF-40EF-A10F-0EA8A678CCC0&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://www.trovigo.com/Results.aspx?gd=&ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SPE758D478-24FF-40EF-A10F-0EA8A678CCC0&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> {17E5D6B5-7943-4E8C-8534-FA8BF50D8460} URL = http://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> {2690E986-5AEB-4B59-9CCC-01C21392333C} URL = http://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> {33960C3F-BE30-4412-B65F-1AF5D7A78297} URL = http://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> {3C5DAF1E-BA7C-4F71-B471-BC14009C094D} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=&apn_dtid=OSJ000&apn_uid=F3B2DE06-A911-4EAD-A193-81D92E015E42&apn_sauid=4134B1B3-848E-422E-9AEA-F9971FB4A7FD
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> {60652334-AEEF-4282-895F-575A83623A74} URL = http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> {744C74F7-AFD8-4A2C-A13B-02BFEA80951D} URL = http://search.ividi.org/?affilt=1&uid=934230ce-485b-11e3-a116-bc7737e3343c&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://isearch.avg.com/search?cid={28A07065-9B6B-4FD6-845B-0763AC343FBE}&mid=2f66edd3003f47d090c36d3e7107ddcf-007abb6f30aa4270e1ae89d9e32c04ee45b012b5&lang=cs&ds=pd011&pr=sa&d=2012-10-04 15:11:38&v=15.2.0.5&pid=avg&sg=0&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> {972EC839-4D48-4A70-BDD6-37F09A5713F2} URL = http://search.ividi.org/?q={searchTerms}&src=tbsp&id=a6f0b0c5000000000000bc7737e33439&affilt=3&r=233
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> {B0CE1339-AE50-4363-BB5F-C7D22099D1DE} URL = http://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> {C04B7D22-5AEC-4561-8F49-27F6269208F6} URL = http://www2.inbox.com/search/dispatcher.aspx?tp=bs&qkw={searchTerms}&tbid=80096&lng=cs
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> {C7F145AC-BB57-4661-BDD6-12F3696E53C7} URL = http://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> {D1C0D0EE-744D-4CD5-8CEA-C9A1B1AB1EFD} URL = http://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> {D2271963-09B1-45EE-82A0-6914BADFF239} URL = http://www.dogpile.com/search/web?fcoid=417&fcop=topnav&fpid=27&ql=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> {DF17AFEE-B682-4EDA-8883-33DB6FC7B77F} URL = http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> {FB6188DC-BB26-4BB0-A38B-F31E872157B3} URL = http://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_16194
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine64\22.5.2.15\coIEPlg.dll [2015-07-10] (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-09-27] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll No File
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-10-09] (Skype Technologies S.A.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2011-04-01] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-09-27] (Oracle Corporation)
BHO-x32: SMSender.E.ToolbarsHelper -> {24BCDA96-8FCB-4D3B-0500-000000000004} -> C:\Windows\SysWOW64\mscoree.dll [2010-11-05] (Microsoft Corporation)
BHO-x32: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2012-09-04] (RealPlayer)
BHO-x32: Video Player -> {5ce9c229-d104-4ee0-973f-75f45e0ada28} -> C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta626\ie\VideoPlayerV3beta626.dll No File
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine\22.5.2.15\coIEPlg.dll [2015-07-10] (Symantec Corporation)
BHO-x32: jZip Webmail plugin -> {647FD14A-C4F1-46F4-8FC3-0B40F54226F7} -> C:\Program Files (x86)\jZip\WebmailPlugin.dll [2008-07-02] (Discordia Limited)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton 360\Engine\21.7.0.11\IPS\IPSBHO.DLL No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-07-05] (Oracle Corporation)
BHO-x32: ividi Helper Object -> {8B8B2E80-1444-451D-AC8E-EB9A847F3887} -> C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\bh\ividi.dll [2013-07-25] (Unitech LLC)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: AVG Security Toolbar -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Secure Search\18.0.5.292\AVG Secure Search_toolbar.dll [2014-03-20] (AVG Secure Search)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll No File
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09] (Skype Technologies S.A.)
BHO-x32: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll No File
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO-x32: Google Dictionary Compression sdch -> {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} -> C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll No File
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-03-02] (Microsoft Corporation.)
BHO-x32: Ask Toolbar -> {D4027C7F-154A-4066-A1AD-4243D8127440} -> C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2012-05-04] (Ask)
BHO-x32: Media Viewer -> {d579b59f-f4e4-4271-9e44-7a7a10d9fbc2} -> C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha631\ie\MediaViewerV1alpha631.dll No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-07-05] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll No File
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\22.5.2.15\coIEPlg.dll [2015-07-10] (Symantec Corporation)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll No File
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-03-02] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2012-05-04] (Ask)
Toolbar: HKLM-x32 - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\18.0.5.292\AVG Secure Search_toolbar.dll [2014-03-20] (AVG Secure Search)
Toolbar: HKLM-x32 - O2 SMSender - {24BCDA96-8FCB-4D3B-0500-000000000003} - C:\Windows\SysWOW64\mscoree.dll [2010-11-05] (Microsoft Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\22.5.2.15\coIEPlg.dll [2015-07-10] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-4129691398-2748993521-2903922347-1001 -> No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-10-09] (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09] (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.0.5\ViProtocol.dll [2014-03-20] (AVG Secure Search)
Tcpip\Parameters: [DhcpNameServer] 192.168.3.254
Tcpip\..\Interfaces\{551241AA-C5B0-49BD-B9FA-272F6317F5FB}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{56C69FBA-0FA2-4F9A-BD94-C0632C4A9395}: [DhcpNameServer] 192.168.3.254
Tcpip\..\Interfaces\{8EA71293-0089-421B-B18A-4D83469B2622}: [DhcpNameServer] 192.168.3.254

FireFox:
========
FF ProfilePath: C:\Users\R\AppData\Roaming\Mozilla\Profiles\5kcrcqpj.NepojmenovanĂ˝
FF Homepage: hxxp://search.ividi.org/?affilt=1&uid=934230ce-485b-11e3-a116-bc7737e3343c
FF DefaultSearchEngine: iVIDI
FF SearchEngineOrder.1: iVIDI
FF SelectedSearchEngine: iVIDI
FF Keyword.URL: hxxp://search.ividi.org/?affilt=1&uid=934230ce-485b-11e3-a116-bc7737e3343c&q=");user_pref("browser.sessionstore.resume_session_once", true);
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-09] ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 -> C:\Windows\system32\npDeployJava1.dll [2013-09-27] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-09-27] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll [2014-02-14] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-09] ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.0.5\\npsitesafety.dll [2014-03-20] (AVG Technologies)
FF Plugin-x32: @java.com/DTPlugin,version=10.10.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2013-01-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.5.1 -> C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll [2012-07-05] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll [2014-02-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=15.0.6.14 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2012-09-04] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprjplug;version=15.0.6.14 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll [2012-09-04] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll [2012-09-04] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprphtml5videoshim;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll [2012-09-04] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=15.0.6.14 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll [2012-09-04] (RealPlayer)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll [2010-01-23] (Zeon Corporation)
FF Plugin HKU\S-1-5-21-4129691398-2748993521-2903922347-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\R\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-03-05] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npffividiplg.dll [2012-11-05] (iVIDI.org)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFFICE.DLL [2003-07-15] (Microsoft Corporation)
FF SearchPlugin: C:\Users\R\AppData\Roaming\Mozilla\Profiles\5kcrcqpj.NepojmenovanĂ˝\searchplugins\iVIDI.xml [2013-11-08]
FF SearchPlugin: C:\Users\R\AppData\Roaming\Mozilla\Profiles\5kcrcqpj.NepojmenovanĂ˝\searchplugins\VideRest.xml [2012-08-20]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\avg-secure-search.xml [2014-03-20]
FF Extension: Ask Toolbar - C:\Users\R\AppData\Roaming\Mozilla\Profiles\5kcrcqpj.NepojmenovanĂ˝\Extensions\toolbar_CME-V7@apn.ask.com.xpi [2014-03-27]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-03-19]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-04-18]
FF HKLM-x32\...\Firefox\Extensions: [{0153E448-190B-4987-BDE1-F256CADA672F}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: RealPlayer Browser Record Plugin - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012-09-04]
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG Secure Search\FireFoxExt\18.0.5.292
FF Extension: AVG Security Toolbar - C:\ProgramData\AVG Secure Search\FireFoxExt\18.0.5.292 [2014-03-20]
FF HKLM-x32\...\Firefox\Extensions: [12x3q@3244516.com] - C:\Program Files (x86)\Better-Surf\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@bettersurfplus.com] - C:\Program Files (x86)\BetterSurf\BetterSurfPlus\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@WebexpEnhancedV1alpha972.net] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha972\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@VideoPlayerV3beta626.net] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta626\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaPlayerV1alpha692.net] - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha692\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewerV1alpha631.net] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha631\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha3700.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3700\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha918.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha918\ff
FF Extension: Media View - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha918\ff [2014-03-16]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaWatchV1home95.net] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home95\ff
FF Extension: Media Watch - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home95\ff [2014-03-22]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaBuzzV1mode3515.net] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode3515\ff
FF Extension: Media Buzz - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode3515\ff [2014-04-25]
FF HKLM-x32\...\Firefox\Extensions: [ext@RichMediaViewV1release4619.net] - C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release4619\ff
FF Extension: Rich Media View - C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release4619\ff [2014-05-14]
FF HKLM-x32\...\Firefox\Extensions: [ext@TrustMediaViewerV1alpha3049.net] - C:\Program Files (x86)\TrustMediaViewerV1\TrustMediaViewerV1alpha3049\ff
FF Extension: Trust Media Viewer - C:\Program Files (x86)\TrustMediaViewerV1\TrustMediaViewerV1alpha3049\ff [2014-06-28]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\coFFPlgn [2015-08-09]
FF HKU\S-1-5-21-4129691398-2748993521-2903922347-1001\...\Firefox\Extensions: [smsender@o2.com] - C:\Program Files (x86)\O2\SMSender\SMSender.FF
FF Extension: O2 SMSender - C:\Program Files (x86)\O2\SMSender\SMSender.FF [2011-11-22]
FF Extension: No Name - C:\Program Files (x86)\BetterSurf\BetterSurfPlus\ff [not found]
FF Extension: No Name - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha972\ff [not found]
FF Extension: No Name - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta626\ff [not found]
FF Extension: No Name - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha692\ff [not found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha631\ff [not found]
FF Extension: No Name - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3700\ff [not found]

Chrome: 
=======
CHR Profile: C:\Users\R\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-13]
CHR Extension: (Google Docs) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-13]
CHR Extension: (Google Drive) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-13]
CHR Extension: (Media Buzz) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\baeogkncofapaolhdoecabebknfhekcc [2014-11-13]
CHR Extension: (Media View) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbnkbjicilkggbdkliakpkejfannccgj [2014-11-13]
CHR Extension: (YouTube) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-13]
CHR Extension: (Norton Security Toolbar) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2015-07-15]
CHR Extension: (Google Search) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-13]
CHR Extension: (Rich Media View) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\diajpngjhcnbphjddomkfgfplgifgdhl [2014-11-13]
CHR Extension: (Google Sheets) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-13]
CHR Extension: (iVIDI.org plugin) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\giacfgjdclhnmkacnfbaljbmpnelflol [2014-11-13]
CHR Extension: (AdBlock) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-11-26]
CHR Extension: (Media Watch) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkhbeomjgnkdkcbjdpkfmgccmgmknfcd [2014-11-13]
CHR Extension: (RealPlayer HTML5Video Downloader Extension) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk [2014-11-13]
CHR Extension: (iVidi Chrome Toolbar) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpdhgpkkloealnjnmepfhanpcleldbef [2014-11-13]
CHR Extension: (Skype Click to Call) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-11-13]
CHR Extension: (AVG Security Toolbar) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-11-13]
CHR Extension: (Google Wallet) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-13]
CHR Extension: (Trust Media Viewer) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonfjfcejdhbjjbbkfnnpgchgnibdifd [2014-11-13]
CHR Extension: (Gmail) - C:\Users\R\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-13]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton 360\Engine\22.5.2.15\Exts\Chrome.crx [2015-07-22]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [abcmpapghfemenckoipegcphkcnbickf] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta626\ch\VideoPlayerV3beta626.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [baeogkncofapaolhdoecabebknfhekcc] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode3515\ch\MediaBuzzV1mode3515.crx [2014-04-24]
CHR HKLM-x32\...\Chrome\Extension: [bbnkbjicilkggbdkliakpkejfannccgj] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha918\ch\MediaViewV1alpha918.crx [2014-02-26]
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton 360\Engine\22.5.2.15\Exts\Chrome.crx [2015-07-22]
CHR HKLM-x32\...\Chrome\Extension: [dbcjgmdijmiaedceenjmgffbjagbgddf] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha631\ch\MediaViewerV1alpha631.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [dedmngkbaffkenlfdcbganndoghblmap] - C:\Program Files (x86)\BetterSurf\ch\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [diajpngjhcnbphjddomkfgfplgifgdhl] - C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release4619\ch\RichMediaViewV1release4619.crx [2014-05-13]
CHR HKLM-x32\...\Chrome\Extension: [fcaiicgcjkjiagjocmccmcmncckndcmh] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3700\ch\MediaViewV1alpha3700.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [giacfgjdclhnmkacnfbaljbmpnelflol] - C:\Program Files (x86)\iVIDI.org plugin\ividiplg.crx [2012-11-05]
CHR HKLM-x32\...\Chrome\Extension: [gkhbeomjgnkdkcbjdpkfmgccmgmknfcd] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home95\ch\MediaWatchV1home95.crx [2014-03-20]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [2012-09-04]
CHR HKLM-x32\...\Chrome\Extension: [kpdhgpkkloealnjnmepfhanpcleldbef] - C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\ividi.crx [2013-07-25]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]
CHR HKLM-x32\...\Chrome\Extension: [mmifolfpllfdhilecpdpmemhelmanajl] - C:\Program Files (x86)\BetterSurf\BetterSurfPlus\ch\BetterSurfPlus.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\18.0.5.292\avg.crx [2014-03-20]
CHR HKLM-x32\...\Chrome\Extension: [nonfjfcejdhbjjbbkfnnpgchgnibdifd] - C:\Program Files (x86)\TrustMediaViewerV1\TrustMediaViewerV1alpha3049\ch\TrustMediaViewerV1alpha3049.crx [2014-06-25]
CHR HKLM-x32\...\Chrome\Extension: [pklhihkgeiclfehfbhhomhfbpbnamfag] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha972\ch\WebexpEnhancedV1alpha972.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [poheodfamflhhhdcmjfeggbgigeefaco] - C:\Program Files (x86)\Better-Surf\ch\Chrome.crx <not found>

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2014-03-19] (APN LLC.)
S4 Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [901184 2010-12-14] (Intel Corporation) [File not signed]
S4 Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [1298496 2010-12-14] (Intel Corporation) [File not signed]
S4 Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [974912 2010-12-14] (Intel Corporation) [File not signed]
S4 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [File not signed]
S4 FileZilla Server; c:\xampp\FileZillaFTP\FileZillaServer.exe [691200 2009-03-03] (FileZilla Project) [File not signed]
S4 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_1\bin\fbguard.exe [81920 2009-07-22] (Firebird Project) [File not signed]
S4 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_1\bin\fbserver.exe [2736128 2009-07-22] (Firebird Project) [File not signed]
R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation)
S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2010-11-02] ()
R2 N360; C:\Program Files (x86)\Norton 360\Engine\22.5.2.15\N360.exe [282016 2015-07-16] (Symantec Corporation)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation)
S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S4 vToolbarUpdater18.0.5; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.5\ToolbarUpdater.exe [1771032 2014-03-20] (AVG Secure Search)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 VMAuthdService; H:\WMWARE\vmware-authd.exe [X]
S2 VMwareHostd; H:\WMWARE\vmware-hostd.exe -u "C:\ProgramData\VMware\hostd\config.xml"
S3 VsEtwService120; "Q:\Visual studio for web\Common7\Packages\Debugger\Services\VsEtwService.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 athrusb; C:\Windows\System32\DRIVERS\athrxusb.sys [1075712 2008-07-29] (Atheros Communications, Inc.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [49952 2014-03-20] (AVG Technologies)
R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\22.5.0.124\Definitions\BASHDefs\20150728.001\BHDrvx64.sys [1650936 2015-07-23] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1605020.00F\ccSetx64.sys [173808 2015-07-11] (Symantec Corporation)
S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [53816 2009-07-13] (Samsung Electronics Co., Ltd.)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [498512 2015-07-28] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153936 2015-07-28] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\22.5.0.124\Definitions\IPSDefs\20150807.001\IDSvia64.sys [692984 2015-07-03] (Symantec Corporation)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\22.5.0.124\Definitions\VirusDefs\20150808.001\ENG64.SYS [138488 2015-05-20] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\22.5.0.124\Definitions\VirusDefs\20150808.001\EX64.SYS [2146040 2015-05-20] (Symantec Corporation)
S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R1 SRTSP; C:\Windows\System32\Drivers\N360x64\1605020.00F\SRTSP64.SYS [926448 2015-07-11] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1605020.00F\SRTSPX64.SYS [50936 2015-07-11] (Symantec Corporation)
R2 SSPORT; C:\Windows\SysWOW64\Drivers\SSPORT.sys [11576 2009-07-12] (Samsung Electronics)
R0 SymEFASI; C:\Windows\System32\drivers\N360x64\1605020.00F\SYMEFASI64.SYS [1620720 2015-07-11] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [111344 2015-07-22] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1605020.00F\Ironx64.SYS [297720 2015-07-11] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1605020.00F\SYMNETS.SYS [576248 2015-07-11] (Symantec Corporation)
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13832 2010-04-17] ()
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [106256 2013-04-12] (Oracle Corporation)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.)
R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [33872 2013-02-22] (VMware, Inc.)
U3 Winsock; no ImagePath
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-09 15:52 - 2015-08-09 15:52 - 00038214 _____ C:\Users\R\Desktop\FRST.txt
2015-08-09 15:52 - 2015-08-09 15:52 - 00000000 ____D C:\FRST
2015-08-09 15:51 - 2015-08-09 15:52 - 02169856 _____ (Farbar) C:\Users\R\Desktop\frst64.exe
2015-08-09 15:50 - 2015-08-09 15:50 - 00015327 _____ C:\Users\R\Desktop\LM.bat
2015-08-09 15:49 - 2015-08-09 15:50 - 00029696 _____ C:\Users\R\AppData\Local\MSGBOX.EXE
2015-08-09 15:25 - 2015-08-09 15:25 - 00000000 ____D C:\NPE
2015-08-09 15:23 - 2015-08-09 15:35 - 00000000 ____D C:\Users\R\AppData\Local\NPE
2015-07-29 14:37 - 2015-07-29 14:37 - 00000000 ____D C:\$WINDOWS.~BT
2015-07-29 14:34 - 2015-07-29 14:34 - 00000000 ___HD C:\$Windows.~WS
2015-07-24 07:57 - 2015-07-24 07:57 - 00000000 ____D C:\Windows\System32\Tasks\Norton 360
2015-07-23 08:20 - 2015-07-23 08:20 - 00000000 ____D C:\Users\R\Desktop\U Krsku
2015-07-15 00:06 - 2015-07-15 00:07 - 00000000 ____D C:\Users\R\AppData\Roaming\Opera Software
2015-07-15 00:06 - 2015-07-15 00:07 - 00000000 ____D C:\Users\R\AppData\Local\Opera Software
2015-07-15 00:04 - 2015-07-15 00:07 - 00000000 ____D C:\Program Files (x86)\Opera
2015-07-13 14:29 - 2015-07-13 14:29 - 460484014 _____ C:\Users\R\Desktop\čepice.zip

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-09 15:45 - 2014-11-13 18:55 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-09 15:35 - 2009-07-14 06:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-09 15:35 - 2009-07-14 06:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-09 15:31 - 2011-07-27 05:28 - 01540373 _____ C:\Windows\WindowsUpdate.log
2015-08-09 15:31 - 2011-02-19 07:36 - 00746700 _____ C:\Windows\system32\perfh005.dat
2015-08-09 15:31 - 2011-02-19 07:36 - 00170758 _____ C:\Windows\system32\perfc005.dat
2015-08-09 15:31 - 2009-07-14 07:13 - 01802040 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-09 15:25 - 2015-01-29 18:15 - 00003324 _____ C:\Windows\System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-4129691398-2748993521-2903922347-1001
2015-08-09 15:25 - 2015-01-29 18:15 - 00003182 _____ C:\Windows\System32\Tasks\RealUpgradeLogonTaskS-1-5-21-4129691398-2748993521-2903922347-1001
2015-08-09 15:25 - 2014-11-13 18:55 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-09 15:25 - 2014-04-26 10:16 - 00062874 _____ C:\Windows\setupact.log
2015-08-09 15:25 - 2013-06-08 10:41 - 00000350 _____ C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job
2015-08-09 15:25 - 2013-06-03 22:17 - 00000350 _____ C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
2015-08-09 15:25 - 2011-11-08 19:02 - 00045056 _____ C:\Windows\system32\acovcnt.exe
2015-08-09 15:25 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-09 15:23 - 2011-11-08 19:36 - 00000000 ____D C:\ProgramData\Norton
2015-08-09 14:03 - 2014-04-28 17:26 - 00671138 _____ C:\Windows\PFRO.log
2015-08-09 14:03 - 2012-11-14 12:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-09 09:19 - 2014-03-19 00:23 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-08 14:38 - 2011-11-08 22:23 - 00000000 ____D C:\Users\R\AppData\Roaming\Skype
2015-08-05 17:47 - 2014-11-13 18:56 - 00002185 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-03 08:36 - 2012-03-12 19:43 - 00000000 ____D C:\Users\R\AppData\Local\CrashDumps
2015-07-29 14:37 - 2009-07-29 08:03 - 00000000 ____D C:\Windows\Panther
2015-07-26 13:31 - 2012-10-22 10:49 - 00022466 _____ C:\Users\R\Desktop\Stravenky,hala.xlsx
2015-07-24 07:52 - 2014-12-16 21:58 - 00000000 ____D C:\Windows\system32\Drivers\N360x64
2015-07-24 07:51 - 2015-07-06 14:23 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360
2015-07-24 07:51 - 2014-12-16 22:01 - 00003206 _____ C:\Windows\System32\Tasks\Norton WSC Integration
2015-07-24 07:51 - 2014-12-16 22:01 - 00002227 _____ C:\Users\Public\Desktop\Norton 360.LNK
2015-07-22 22:43 - 2014-12-16 22:01 - 00111344 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2015-07-22 22:43 - 2014-12-16 22:01 - 00008214 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2015-07-16 14:40 - 2014-11-13 18:55 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-16 14:40 - 2014-11-13 18:55 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-07-15 22:20 - 2011-11-09 18:54 - 00000000 ____D C:\Users\R\Documents\Soubory aplikace Outlook
2015-07-15 00:07 - 2011-11-08 19:02 - 00001399 _____ C:\Users\R\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-07-13 15:01 - 2012-02-14 14:35 - 00000000 ____D C:\Program Files (x86)\jZip
2015-07-11 21:36 - 2009-07-14 07:08 - 00032542 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-07-10 20:15 - 2015-06-02 17:57 - 00000000 ____D C:\Users\123

==================== Files in the root of some directories =======

2013-11-08 12:55 - 2013-11-08 12:55 - 10490744 _____ () C:\Program Files\VectorMagicSetup_pc_1_15.exe
2013-09-01 15:33 - 2014-03-20 19:34 - 0003730 _____ () C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
2014-01-13 19:57 - 2014-03-17 23:03 - 0000132 _____ () C:\Users\R\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
2014-01-16 13:26 - 2014-01-16 13:26 - 0000189 _____ () C:\Users\R\AppData\Roaming\Opusbext.dat
2012-10-26 16:55 - 2012-10-26 17:24 - 0011808 _____ () C:\Users\R\AppData\Roaming\SmarThruOptions.xml
2014-12-10 23:16 - 2014-12-10 23:16 - 0005632 _____ () C:\Users\R\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-09 15:49 - 2015-08-09 15:50 - 0029696 _____ () C:\Users\R\AppData\Local\MSGBOX.EXE
2014-05-13 16:34 - 2014-05-13 16:34 - 0000218 _____ () C:\Users\R\AppData\Local\recently-used.xbel
2013-12-02 22:15 - 2015-05-02 18:07 - 0007593 _____ () C:\Users\R\AppData\Local\Resmon.ResmonCfg
2011-04-01 11:21 - 2010-07-07 01:10 - 0131472 _____ () C:\ProgramData\FullRemove.exe
2011-07-27 05:46 - 2011-07-27 05:47 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2011-07-27 05:46 - 2011-07-27 05:46 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log

Files to move or delete:
====================
C:\Users\R\java.exe
C:\Users\R\lkp.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-08-02 09:33

==================== End of log ============================