Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-10-2016
Ran by VK (administrator) on V4 (03-10-2016 08:45:59)
Running from C:\Documents and Settings\VK\Plocha
Loaded Profiles: VK (Available Profiles: VK & Guest)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\avast software\avast\AvastSvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\scardsvr.exe
() C:\Program Files\Firefox\bin\FirefoxCommand.exe
() C:\Program Files\Firefox\bin\FirefoxUpdate.exe
(AVAST Software) C:\Program Files\avast software\avast\AvastUI.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
() C:\WINDOWS\system32\SecUPDUtilSvc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Transaction Software, D 81829 Munich) F:\TECDOC_CD\3_2014\db\tbmux32.exe
(Monet+, a.s.) C:\WINDOWS\system32\xmesrv.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
(Microsoft Corporation) C:\Program Files\Outlook Express\msimn.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Nick Kalmykov, CHAS Company) C:\Program Files\SCARABAY\scarabay.exe
(Google) C:\Program Files\Google\Drive\googledrivesync.exe
(Google) C:\Program Files\Google\Drive\googledrivesync.exe
(Azureus Software, Inc) C:\Program Files\Vuze\Azureus.exe
Failed to access process -> Pohoda.exe
Failed to access process -> StwPh.exe
(Trend Micro Inc.) C:\Documents and Settings\VK\Plocha\¨Temp\hijackthis.exe
(Mozilla Corporation) C:\Program Files\Firefox\Firefox.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(forum.viry.cz) C:\Documents and Settings\VK\Plocha\FRSTLauncher.exe


==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [StartupDelayer] => C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher.exe [1260616 2014-10-13] (r2 Studios)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9103976 2016-08-24] (AVAST Software)
HKLM\...\Run: [Synchronization Manager] => C:\WINDOWS\system32\mobsync.exe [143872 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [351968 2014-09-08] ()
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2005-04-19] (ATI Technologies Inc.)
HKU\S-1-5-21-725345543-682003330-1180309351-1004\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files\DAEMON Tools Ultra\DTAgent.exe [3128352 2013-06-25] (Disc Soft Ltd)
HKU\S-1-5-21-725345543-682003330-1180309351-1004\...\Run: [STUISpeedLauncher] => C:\Program Files\Samsung\Stylish UI Pack\TouchBasedUI.exe [382976 2015-02-09] ()
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> (None)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2016-07-29] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2016-07-29] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2016-07-29] (Google)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-08-24] (AVAST Software)
Startup: C:\Documents and Settings\VK\Nabídka Start\Programy\Po spuštění\Zástupce - Serverae (Z) [2015-10-30] ()
BootExecute: autocheck autochk * sdnclean.exeaswBoot.exe /A:*  /L:1029 /heur:80 /RA:fix /pup /archives /IA:0 /KBD:2 /dir:C:\Program
GroupPolicyScripts: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{4C6AD134-F32A-4E7D-89EB-B765D8277A2A}: [NameServer] 10.0.0.138

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-725345543-682003330-1180309351-1004\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.mylucky123.com/?type=hp&ts=1474256417&z=8a7160278dd748690e16bd4g8z4mcz7o6weqezcg7m&from=wpm0616&uid=WDCXWD10EALS-00Z8A0_WD-WCATR210769807698
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-725345543-682003330-1180309351-1004\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-725345543-682003330-1180309351-1004\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\S-1-5-21-725345543-682003330-1180309351-1004 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-725345543-682003330-1180309351-1004 -> {0CAF64A7-ACE5-42B6-95EC-5EA84367597A} URL = hxxp://www.heureka.cz/?h[fraze]={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-682003330-1180309351-1004 -> {9293C345-82A0-4022-9EF6-EE7C391702A5} URL = hxxp://www.ulozto.cz/hledej?q={searchTerms}&utm_source=browsersearch&utm_medium=browser&utm_campaign=tools-search
SearchScopes: HKU\S-1-5-21-725345543-682003330-1180309351-1004 -> {977006BD-3329-4020-AEB2-FF93F0418340} URL = hxxp://www.csfd.cz/hledat/?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2016-04-26] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-08-18] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2016-04-26] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-725345543-682003330-1180309351-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\System32\browseui.dll [2008-04-14] (Společnost Microsoft)
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1254613270843
DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} hxxps://www.mojedatovaschranka.cz/static/pages/isds/cab/filleractivex.cab?3,16,13,0
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/products/plugin/autodl/jinstall-170-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/products/plugin/autodl/jinstall-170-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} -  No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2016-07-22] (Skype Technologies)
Handler: vw-wi - {0F3C833F-FB28-40EA-8CB9-6A55B996C3F6} - C:\ElsaWin\bin\wiProt.dll [2009-07-06] (TODO: <Company name>)

FireFox:
========
FF DefaultProfile: k25iz2yz.default
FF ProfilePath: C:\Documents and Settings\VK\Data aplikací\Mozilla\Firefox\Profiles\4ixoz1qh.default [2016-09-30]
FF Homepage: C:\Documents and Settings\VK\Data aplikací\Mozilla\Firefox\Profiles\4ixoz1qh.default -> hxxps://www.google.com/?bcutc=sp-006
FF SelectedSearchEngine: C:\Documents and Settings\VK\Data aplikací\Mozilla\Firefox\Profiles\4ixoz1qh.default -> Google
FF DefaultSearchEngine: C:\Documents and Settings\VK\Data aplikací\Mozilla\Firefox\Profiles\4ixoz1qh.default -> Google
FF DefaultSearchUrl: C:\Documents and Settings\VK\Data aplikací\Mozilla\Firefox\Profiles\4ixoz1qh.default -> hxxps://www.google.com/search?bcutc=sp-006
FF SearchEngineOrder.1: C:\Documents and Settings\VK\Data aplikací\Mozilla\Firefox\Profiles\4ixoz1qh.default -> Google
FF Keyword.URL: C:\Documents and Settings\VK\Data aplikací\Mozilla\Firefox\Profiles\4ixoz1qh.default -> hxxps://www.google.com/search?bcutc=sp-006
FF NewTab: C:\Documents and Settings\VK\Data aplikací\Mozilla\Firefox\Profiles\4ixoz1qh.default -> about:newtab
FF Extension: (Check4Change) - C:\Documents and Settings\VK\Data aplikací\Mozilla\Firefox\Profiles\4ixoz1qh.default\Extensions\check4change-owner@mozdev.org.xpi [2016-03-17]
FF Extension: (To Google Translate) - C:\Documents and Settings\VK\Data aplikací\Mozilla\Firefox\Profiles\4ixoz1qh.default\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2016-04-28]
FF Extension: (ReloadEvery) - C:\Documents and Settings\VK\Data aplikací\Mozilla\Firefox\Profiles\4ixoz1qh.default\Extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi [2016-03-15]
FF Extension: (Adblock Plus) - C:\Documents and Settings\VK\Data aplikací\Mozilla\Firefox\Profiles\4ixoz1qh.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-29]
FF Extension: (QuickJava) - C:\Documents and Settings\VK\Data aplikací\Mozilla\Firefox\Profiles\4ixoz1qh.default\Extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi [2016-03-29]
FF SearchPlugin: C:\Documents and Settings\VK\Data aplikací\Mozilla\Firefox\Profiles\4ixoz1qh.default\searchplugins\google-avast.xml [2016-08-22]
FF SearchPlugin: C:\Documents and Settings\VK\Data aplikací\Mozilla\Firefox\Profiles\4ixoz1qh.default\searchplugins\mylucky123.xml [2016-09-19]
FF ProfilePath: C:\Documents and Settings\VK\Data aplikací\Profiles\k25iz2yz.default [2016-10-03]
FF NewTab: C:\Documents and Settings\VK\Data aplikací\Profiles\k25iz2yz.default -> about:newtab
FF DefaultSearchEngine: C:\Documents and Settings\VK\Data aplikací\Profiles\k25iz2yz.default -> Google
FF DefaultSearchUrl: C:\Documents and Settings\VK\Data aplikací\Profiles\k25iz2yz.default -> hxxps://www.google.com/search?bcutc=sp-006
FF SearchEngineOrder.1: C:\Documents and Settings\VK\Data aplikací\Profiles\k25iz2yz.default -> Google
FF SelectedSearchEngine: C:\Documents and Settings\VK\Data aplikací\Profiles\k25iz2yz.default -> Google
FF Homepage: C:\Documents and Settings\VK\Data aplikací\Profiles\k25iz2yz.default -> hxxp://pravednes.cz/@Gene.news?
hxxp://www.ketry.cz/search.php?search_id=unreadposts&sid=3ed29fa2b80380f1631aaba54df91eef
hxxp://suchen.mobile.de/fahrzeuge/search.html?isSearchRequest=true&scopeId=C&sortOption.sortOrder=DESCENDING&sortOption.sortBy=creationTime&damageUnrepaired=ALSO_DAMAGE_UNREPAIRED&maxMileage=200000&maxPrice=8000&makeModelVariant1.makeId=25200&makeModelVariant1.modelId=4&makeModelVariant2.makeId=25200&makeModelVariant2.modelId=19&fuels=DIESEL&maxPowerAsArray=KW&minPowerAsArray=KW
FF Keyword.URL: C:\Documents and Settings\VK\Data aplikací\Profiles\k25iz2yz.default -> hxxps://www.google.com/search?bcutc=sp-006
FF Extension: (Check4Change) - C:\Documents and Settings\VK\Data aplikací\Profiles\k25iz2yz.default\Extensions\check4change-owner@mozdev.org.xpi [2016-03-17]
FF Extension: (To Google Translate) - C:\Documents and Settings\VK\Data aplikací\Profiles\k25iz2yz.default\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2016-04-28]
FF Extension: (Czech (CZ) Language Pack) - C:\Documents and Settings\VK\Data aplikací\Profiles\k25iz2yz.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2016-09-29] [not signed]
FF Extension: (English (US) Language Pack) - C:\Documents and Settings\VK\Data aplikací\Profiles\k25iz2yz.default\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2016-09-19] [not signed]
FF Extension: (ReloadEvery) - C:\Documents and Settings\VK\Data aplikací\Profiles\k25iz2yz.default\Extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi [2016-03-15]
FF Extension: (Adblock Plus) - C:\Documents and Settings\VK\Data aplikací\Profiles\k25iz2yz.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-29]
FF Extension: (QuickJava) - C:\Documents and Settings\VK\Data aplikací\Profiles\k25iz2yz.default\Extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi [2016-03-29]
FF SearchPlugin: C:\Documents and Settings\VK\Data aplikací\Profiles\k25iz2yz.default\searchplugins\google-avast.xml [2016-08-22]
FF SearchPlugin: C:\Documents and Settings\VK\Data aplikací\Profiles\k25iz2yz.default\searchplugins\searchinme.xml [2016-09-19]
FF ProfilePath: C:\Documents and Settings\VK\Data aplikací\Firefox\Firefox\Profiles\4ixoz1qh.default [2016-09-19]
FF Homepage: C:\Documents and Settings\VK\Data aplikací\Firefox\Firefox\Profiles\4ixoz1qh.default -> hxxps://www.google.com/?bcutc=sp-006
FF SelectedSearchEngine: C:\Documents and Settings\VK\Data aplikací\Firefox\Firefox\Profiles\4ixoz1qh.default -> Google
FF DefaultSearchEngine: C:\Documents and Settings\VK\Data aplikací\Firefox\Firefox\Profiles\4ixoz1qh.default -> Google
FF DefaultSearchUrl: C:\Documents and Settings\VK\Data aplikací\Firefox\Firefox\Profiles\4ixoz1qh.default -> hxxps://www.google.com/search?bcutc=sp-006
FF SearchEngineOrder.1: C:\Documents and Settings\VK\Data aplikací\Firefox\Firefox\Profiles\4ixoz1qh.default -> Google
FF Keyword.URL: C:\Documents and Settings\VK\Data aplikací\Firefox\Firefox\Profiles\4ixoz1qh.default -> hxxps://www.google.com/search?bcutc=sp-006
FF NewTab: C:\Documents and Settings\VK\Data aplikací\Firefox\Firefox\Profiles\4ixoz1qh.default -> about:newtab
FF Extension: (Check4Change) - C:\Documents and Settings\VK\Data aplikací\Firefox\Firefox\Profiles\4ixoz1qh.default\Extensions\check4change-owner@mozdev.org.xpi [2016-03-17]
FF Extension: (To Google Translate) - C:\Documents and Settings\VK\Data aplikací\Firefox\Firefox\Profiles\4ixoz1qh.default\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2016-04-28]
FF Extension: (ReloadEvery) - C:\Documents and Settings\VK\Data aplikací\Firefox\Firefox\Profiles\4ixoz1qh.default\Extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi [2016-03-15]
FF Extension: (Adblock Plus) - C:\Documents and Settings\VK\Data aplikací\Firefox\Firefox\Profiles\4ixoz1qh.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-29]
FF Extension: (QuickJava) - C:\Documents and Settings\VK\Data aplikací\Firefox\Firefox\Profiles\4ixoz1qh.default\Extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi [2016-03-29]
FF SearchPlugin: C:\Documents and Settings\VK\Data aplikací\Firefox\Firefox\Profiles\4ixoz1qh.default\searchplugins\google-avast.xml [2016-08-22]
FF SearchPlugin: C:\Documents and Settings\VK\Data aplikací\Firefox\Firefox\Profiles\4ixoz1qh.default\searchplugins\mylucky123.xml [2016-09-19]
FF Extension: (Java Console) - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2016-09-19] [not signed]
FF Extension: (Java Console) - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2016-09-19] [not signed]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-10-04] [not signed]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-08-24]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-08-24]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-30] ()
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2016-04-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2016-04-26] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @nokia.com/EnablerPlugin -> C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2013-10-02] ( )
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-30] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-30] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-725345543-682003330-1180309351-1004: @servis24.cz/PKIComponent -> C:\Documents and Settings\VK\Data aplikací\CSAS\lib\x86\npPKIComponentNPAPI.dll [2016-03-21] (Česká spořitelna, a.s.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKU\S-1-5-21-725345543-682003330-1180309351-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [84520 2011-03-14] (Software602 a.s.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-08-24] (AVAST Software)
R2 CommandHandler; C:\Program Files\Firefox\bin\FirefoxCommand.exe [275120 2016-09-28] ()
S3 COSIDS_TB; C:\Program Files\cosids\bin\tbmux32.exe [165376 2001-11-20] (TransAction Software, D 81737 Munich) [File not signed]
S3 DataSvr; C:\Program Files\Wave Systems Corp\Common\DataServer.exe [290816 2005-08-30] (Wave Systems Corp.) [File not signed]
S4 Disc Soft Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe [632352 2013-06-25] (Disc Soft Ltd)
R2 FirefoxU; C:\Program Files\Firefox\bin\FirefoxUpdate.exe [613552 2016-09-28] ()
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2016-04-26] (Oracle Corporation)
S3 LcSvrAdm; C:\ElsaWin\bin\LcSvrAdm.exe [147456 2009-07-06] (Volkswagen AG) [File not signed]
S3 LcSvrAuf; C:\ElsaWin\bin\LcSvrAuf.exe [1306624 2009-07-06] (Volkswagen AG) [File not signed]
S3 LcSvrDba; C:\ElsaWin\bin\LcSvrDba.exe [241664 2009-07-06] (Volkswagen AG) [File not signed]
S3 LcSvrHis; C:\ElsaWin\bin\LcSvrHis.exe [217088 2009-07-06] (Volkswagen AG) [File not signed]
S3 LcSvrPAS; C:\ElsaWin\bin\LcSvrPas.exe [368640 2009-07-06] (Volkswagen AG) [File not signed]
S3 LcSvrSaz; C:\ElsaWin\bin\LcSvrSaz.exe [258048 2009-07-06] (Volkswagen AG) [File not signed]
S3 NMSAccess; C:\Program Files\CDBurnerXP\NMSAccessU.exe [71096 2010-03-04] ()
S2 ProQuest Product License Manager; C:\Program Files\BHPS\lic\\bin\lmgrd.exe [630272 2013-05-09] (Macrovision Corporation) [File not signed]
R2 SamsungUPDUtilSvc; C:\WINDOWS\system32\SecUPDUtilSvc.exe [143664 2016-08-25] ()
S4 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
S4 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
S4 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S4 StarWindServiceAE; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [275968 2007-05-28] (Rocket Division Software) [File not signed]
S3 tcsd_win32.exe; C:\Program Files\NTRU Cryptosystems\NTRU Hybrid TSS v1.05\bin\tcsd_win32.exe [180224 2005-03-07] () [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [7534864 2016-08-25] (TeamViewer GmbH)
S3 TIS 2000 Apache Web Server; C:\Program Files\cosids\Apache Group\Apache\ApchT2kW.exe [4096 1999-03-23] () [File not signed]
R2 Transbase TECDOC CD 3_2014 Service; F:\TECDOC_CD\3_2014\db\tbmux32.exe [360448 2014-05-08] (Transaction Software, D 81829 Munich) [File not signed]
S3 VSGate; C:\ElsaWin\bin\VSgate.exe [81920 2009-07-06] (Volkswagen AG) [File not signed]
S3 XCPSPWD; C:\Program Files\Xerox Office Printing\PrintingScout\XCPWDN.EXE [110660 2010-09-27] (Xerox Corporation) [File not signed]
S3 XCPSSDB; C:\Program Files\Xerox Office Printing\PrintingScout\XCSDBN.EXE [221253 2010-09-27] (Xerox Corporation) [File not signed]
R2 xmengine service; C:\WINDOWS\system32\xmesrv.exe [34696 2010-03-23] (Monet+, a.s.)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [34008 2016-08-24] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [35096 2016-08-24] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [92256 2016-08-24] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [64272 2016-08-24] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [60424 2016-08-24] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [735352 2016-08-24] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [434144 2016-08-24] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [184592 2016-08-24] (AVAST Software)
S3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [66688 2016-08-24] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [224616 2016-08-24] (AVAST Software)
R0 BTKRNL; C:\WINDOWS\System32\drivers\btkrnl.sys [1036966 2002-09-17] (WIDCOMM Inc.) [File not signed]
R2 BTSERIAL; C:\WINDOWS\system32\drivers\btserial.sys [22083 2002-09-17] () [File not signed]
R2 BTSLBCSP; C:\WINDOWS\system32\drivers\btslbcsp.sys [222228 2002-09-17] (WIDCOMM Inc.) [File not signed]
S3 BTWDNDIS; C:\WINDOWS\System32\DRIVERS\btwdndis.sys [94608 2002-09-17] (WIDCOMM Inc.) [File not signed]
S3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [60784 2002-09-17] (WIDCOMM Inc.) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 DCamUSBSTK03N; C:\WINDOWS\System32\DRIVERS\STK03NW2.sys [108544 2009-12-18] (Syntek Ltd.)
R2 DgiVecp; C:\WINDOWS\system32\Drivers\DgiVecp.sys [41984 2007-10-22] (Samsung Electronics Co., Ltd.) [File not signed]
S3 dtlitescsibus; C:\WINDOWS\System32\DRIVERS\dtlitescsibus.sys [25016 2015-07-13] (Disc Soft Ltd)
R3 dtscsibus; C:\WINDOWS\System32\DRIVERS\dtscsibus.sys [24704 2016-08-18] (Disc Soft Ltd)
R3 ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [4480 2002-04-09] (Elaborate Bytes) [File not signed]
R2 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [13300 2002-04-04] (Elaborate Bytes AG) [File not signed]
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [13192 2011-07-29] () [File not signed]
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [8456 2011-07-29] () [File not signed]
R3 GemCCID; C:\WINDOWS\System32\Drivers\GemCCID.sys [87424 2010-03-23] (Gemalto)
S3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [26176 2009-09-23] (LogMeIn, Inc.)
R2 Hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [685056 2005-07-28] (Aladdin Knowledge Systems Ltd.)
R2 Haspnt; C:\WINDOWS\system32\drivers\Haspnt.sys [47616 2011-04-26] (Aladdin Knowledge Systems) [File not signed]
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2016-08-18] (REALiX(tm))
S3 IObitUnlocker; C:\Program Files\IObit\IObit Unlocker\IObitUnlocker.sys [26248 2011-03-09] ()
S3 iSafeKrnlBoot; C:\WINDOWS\System32\DRIVERS\iSafeKrnlBoot.sys [50280 2016-05-23] (Elex do Brasil Participações Ltda)
S3 jloyjpht; C:\WINDOWS\system32\Drivers\jloyjpht.sys [403440 2016-07-12] (AVAST Software)
R2 MicroGuard; C:\WINDOWS\system32\drivers\mgnt.sys [40480 1998-03-03] () [File not signed]
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 ootkhrnd; C:\WINDOWS\system32\Drivers\ootkhrnd.sys [403440 2016-07-12] (AVAST Software)
R1 PQNTDrv; C:\WINDOWS\system32\Drivers\PQNTDrv.sys [4228 2003-03-14] (PowerQuest Corporation) [File not signed]
S3 SONYPVU1; C:\WINDOWS\System32\DRIVERS\SONYPVU1.SYS [7552 2001-08-17] (Sony Corporation)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [685816 2010-06-16] () [File not signed]
S3 StarOpen; C:\WINDOWS\system32\Drivers\StarOpen.sys [7168 2009-11-12] () [File not signed]
R3 STHDA; C:\WINDOWS\System32\drivers\sthda.sys [1047816 2005-11-16] (SigmaTel, Inc.)
R0 stmtpm; C:\WINDOWS\System32\DRIVERS\stm_tpm.sys [21664 2005-05-02] (STMicroelectronics, INC)
S3 usbUDisc; C:\WINDOWS\System32\DRIVERS\USBDrv.sys [13824 2016-09-07] (Scott)
S1 aslm75; \??\C:\WINDOWS\system32\drivers\aslm75.sys [X]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
U2 CertPropSvc; no ImagePath
S4 IntelIde; no ImagePath
U3 Partizan; system32\drivers\Partizan.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U3 aatnpjln; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-10-03 08:45 - 2016-10-03 08:46 - 00028177 _____ C:\Documents and Settings\VK\Plocha\FRST.txt
2016-10-03 08:45 - 2016-10-03 08:45 - 00000000 ____D C:\FRST
2016-10-03 08:44 - 2016-10-03 08:44 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\VK\Plocha\FRSTLauncher.exe
2016-10-03 08:43 - 2016-10-03 08:43 - 01754624 _____ (Farbar) C:\Documents and Settings\VK\Plocha\FRST.exe
2016-09-30 19:41 - 2016-10-03 08:46 - 00000000 ____D C:\Documents and Settings\VK\Local Settings\temp
2016-09-30 19:41 - 2016-09-30 19:41 - 00115744 _____ C:\ComboFix.txt
2016-09-30 19:41 - 2016-09-30 19:41 - 00000000 ____D C:\Documents and Settings\TEMP.V4.000\Local Settings\temp
2016-09-30 19:41 - 2016-09-30 19:41 - 00000000 ____D C:\Documents and Settings\NetworkService\Local Settings\temp
2016-09-30 19:41 - 2016-09-30 19:41 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\temp
2016-09-30 19:41 - 2016-09-30 19:41 - 00000000 ____D C:\Documents and Settings\Guest\Local Settings\temp
2016-09-30 19:41 - 2016-09-30 19:41 - 00000000 ____D C:\Documents and Settings\Default User\Local Settings\temp
2016-09-30 17:20 - 2016-09-30 23:32 - 00032430 _____ C:\WINDOWS\SchedLgU.Txt
2016-09-30 16:39 - 2011-06-26 08:45 - 00256000 _____ C:\WINDOWS\PEV.exe
2016-09-30 16:39 - 2010-11-07 19:20 - 00208896 _____ C:\WINDOWS\MBR.exe
2016-09-30 16:39 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe
2016-09-30 16:39 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe
2016-09-30 16:39 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe
2016-09-30 16:39 - 2000-08-31 02:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe
2016-09-30 16:39 - 2000-08-31 02:00 - 00098816 _____ C:\WINDOWS\sed.exe
2016-09-30 16:39 - 2000-08-31 02:00 - 00080412 _____ C:\WINDOWS\grep.exe
2016-09-30 16:39 - 2000-08-31 02:00 - 00068096 _____ C:\WINDOWS\zip.exe
2016-09-30 16:38 - 2016-09-30 19:41 - 00000000 ____D C:\Qoobox
2016-09-30 16:38 - 2016-09-30 18:30 - 00000000 ____D C:\WINDOWS\erdnt
2016-09-30 16:38 - 2016-09-30 16:38 - 00000000 ___RD C:\Documents and Settings\VK\Nabídka Start\Programy\Nástroje pro správu
2016-09-30 16:32 - 2016-09-30 16:32 - 05659993 ____R (Swearware) C:\Documents and Settings\VK\Plocha\ComboFix.exe
2016-09-30 08:32 - 2016-09-30 08:32 - 00000000 _____ C:\WINDOWS\system32\last.dump
2016-09-29 11:39 - 2016-09-29 11:39 - 00000000 ____D C:\Documents and Settings\VK\Data aplikací\Elex-tech
2016-09-29 11:39 - 2016-05-23 04:41 - 00050280 _____ (Elex do Brasil Participações Ltda) C:\WINDOWS\system32\Drivers\iSafeKrnlBoot.sys
2016-09-29 11:39 - 2016-05-19 08:42 - 00067288 _____ (Elex do Brasil Participações Ltda) C:\WINDOWS\system32\Drivers\iSafeNetFilter.sys
2016-09-29 11:13 - 2016-10-03 07:59 - 00000000 ____D C:\Program Files\Firefox
2016-09-29 10:11 - 2016-09-29 11:38 - 00000003 _____ C:\WINDOWS\system32\xaa
2016-09-24 06:38 - 2016-09-24 06:38 - 00000000 ____D C:\Program Files\Common Files\Skype
2016-09-19 09:28 - 2016-10-03 07:40 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-09-19 05:45 - 2016-09-19 05:45 - 00000000 ____D C:\Documents and Settings\VK\Local Settings\Data aplikací\Firefox
2016-09-19 05:45 - 2016-09-19 05:45 - 00000000 ____D C:\Documents and Settings\VK\Data aplikací\Firefox
2016-09-19 05:42 - 2016-09-29 11:13 - 00001594 _____ C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
2016-09-19 05:41 - 2016-09-19 05:42 - 00000000 ____D C:\Program Files\bakepack_57DF5E5A
2016-09-13 15:05 - 2016-09-13 15:05 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\qksee
2016-09-13 15:04 - 2016-09-14 13:05 - 00000000 ____D C:\Documents and Settings\VK\Data aplikací\qksee
2016-09-13 15:04 - 2016-09-13 15:05 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\WinZip
2016-09-13 15:04 - 2016-09-13 15:04 - 00000000 ____D C:\Documents and Settings\VK\Data aplikací\eCyber
2016-09-13 15:02 - 2016-09-13 15:03 - 00000000 ____D C:\Program Files\j3775ymt
2016-09-07 08:51 - 2016-09-07 08:51 - 00000485 _____ C:\Documents and Settings\VK\Plocha\LiveSuit.exe.lnk
2016-09-07 08:49 - 2016-09-07 08:49 - 00013824 _____ (Scott) C:\WINDOWS\system32\Drivers\USBDrv.sys
2016-09-05 09:56 - 2016-09-05 09:56 - 00000000 ____D C:\Documents and Settings\VK\Data aplikací\Aura4You

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-10-03 08:45 - 2014-03-10 12:43 - 00000000 ___HD C:\Documents and Settings\VK\Local Settings\Data aplikací
2016-10-03 08:45 - 2009-10-04 00:45 - 00000000 ____D C:\Documents and Settings\VK\Plocha
2016-10-03 08:44 - 2014-09-15 09:19 - 00000000 ____D C:\Documents and Settings\VK\Data aplikací\Azureus
2016-10-03 07:51 - 2010-04-09 11:00 - 00000000 ____D C:\Documents and Settings\VK\Plocha\¨Temp
2016-10-03 07:44 - 2014-03-10 13:14 - 00000000 ___RD C:\Disc Google
2016-10-03 07:36 - 2003-04-16 14:00 - 00013646 _____ C:\WINDOWS\system32\wpa.dbl
2016-10-03 07:35 - 2011-04-26 15:45 - 08405015 _____ C:\WINDOWS\TempFile
2016-10-01 00:28 - 2011-07-22 11:44 - 00000460 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{B53A1E31-A9BC-49C8-B137-2E65E440D5B4}.job
2016-09-30 23:57 - 2015-07-07 15:07 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-09-30 23:32 - 2013-07-05 17:58 - 00000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-30 23:11 - 2016-07-12 13:59 - 00000316 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2016-09-30 20:57 - 2015-08-12 17:57 - 06502080 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2016-09-30 20:57 - 2012-04-05 12:36 - 00796352 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-09-30 20:57 - 2011-05-26 09:08 - 00142528 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-09-30 20:57 - 2009-10-04 00:37 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-09-30 19:41 - 2009-10-04 00:39 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-09-30 19:35 - 2012-10-01 12:36 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Drive
2016-09-30 19:32 - 2013-11-26 14:34 - 00000000 ____D C:\Program Files\TeamViewer
2016-09-30 19:29 - 2003-04-16 14:00 - 00000227 _____ C:\WINDOWS\system.ini
2016-09-30 19:25 - 2014-03-10 12:43 - 00000178 ___SH C:\Documents and Settings\VK\ntuser.ini
2016-09-30 19:25 - 2010-10-15 03:15 - 00138354 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
2016-09-30 19:25 - 2009-10-05 11:45 - 00000000 ____D C:\WINDOWS\system32\NtmsData
2016-09-30 17:31 - 2014-09-15 09:17 - 00000000 ____D C:\Documents and Settings\VK\Data aplikací
2016-09-30 17:27 - 2013-07-05 17:58 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-30 17:20 - 2016-07-12 14:27 - 00000452 _____ C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1468326428.job
2016-09-30 17:20 - 2009-10-04 01:30 - 00000000 ___HD C:\Documents and Settings\Default User
2016-09-30 17:13 - 2009-10-04 01:25 - 00000000 RSHDC C:\WINDOWS\system32\dllcache
2016-09-30 17:13 - 2009-10-04 00:45 - 00000000 ____D C:\Documents and Settings\VK
2016-09-30 16:38 - 2014-03-10 12:43 - 00000000 ____D C:\Documents and Settings\VK\Nabídka Start\Programy
2016-09-30 16:01 - 2009-10-04 00:36 - 00000000 ____D C:\WINDOWS\Registration
2016-09-30 15:41 - 2010-10-15 03:15 - 02154938 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-725345543-682003330-1180309351-1004-0.dat
2016-09-30 15:31 - 2009-10-04 00:38 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2016-09-29 15:07 - 2009-10-04 01:30 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2016-09-29 15:04 - 2009-10-04 01:30 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy
2016-09-29 14:52 - 2016-04-05 09:40 - 00000712 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2016-09-29 12:13 - 2015-06-15 10:07 - 00000000 ____D C:\Documents and Settings\VK\.dsgui
2016-09-29 11:13 - 2011-11-10 11:17 - 00001632 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Mozilla Firefox.lnk
2016-09-27 18:13 - 2015-04-14 10:44 - 00019968 _____ C:\Documents and Settings\VK\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-09-27 18:02 - 2014-03-17 11:42 - 00000000 ____D C:\Documents and Settings\VK\Plocha\Scan
2016-09-27 12:57 - 2011-09-12 12:21 - 00001009 _____ C:\WINDOWS\esidata.ini
2016-09-27 12:54 - 2014-03-10 11:46 - 00000000 ____D C:\Documents and Settings\VK\Plocha\Camera
2016-09-24 20:55 - 2014-09-15 09:19 - 00000000 ____D C:\Documents and Settings\VK\Data aplikací\Skype
2016-09-24 06:38 - 2013-05-14 08:15 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Skype
2016-09-23 17:49 - 2016-08-18 12:08 - 00000000 ____D C:\Program Files\Plufertnenule
2016-09-23 17:49 - 2016-08-13 17:05 - 00000000 ____D C:\Program Files\qksee
2016-09-20 17:28 - 2016-08-19 07:40 - 00000000 ____D C:\Program Files\WinSaber
2016-09-20 16:36 - 2009-10-04 00:37 - 00000000 ____D C:\Program Files\Outlook Express
2016-09-19 12:33 - 2010-03-26 16:06 - 00000000 ____D C:\Program Files\WinRAR
2016-09-19 05:42 - 2009-10-04 01:30 - 00000000 ___RD C:\Documents and Settings\All Users\Plocha
2016-09-19 05:40 - 2016-07-12 14:27 - 00001180 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast SafeZone Browser.lnk
2016-09-19 05:40 - 2016-06-09 17:53 - 00000997 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Opera.lnk
2016-09-19 05:40 - 2016-04-27 12:17 - 00001180 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast SafeZone 1 Browser.lnk
2016-09-19 05:40 - 2014-03-10 11:46 - 00001137 _____ C:\Documents and Settings\VK\Nabídka Start\Programy\Internet Explorer.lnk
2016-09-19 05:40 - 2009-10-04 01:30 - 00000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2016-09-14 21:41 - 2016-08-18 12:10 - 00000000 ____D C:\Program Files\SoSoEasy
2016-09-14 21:33 - 2016-08-18 12:10 - 00000000 ___HD C:\Program Files\00o5E70
2016-09-14 09:45 - 2014-09-26 15:06 - 00000000 ____D C:\Documents and Settings\VK\Data aplikací\vlc
2016-09-07 09:03 - 2009-10-04 01:25 - 00000000 ___HD C:\WINDOWS\inf
2016-09-05 14:01 - 2014-09-26 09:49 - 00000000 ____D C:\Documents and Settings\VK\Local Settings\Data aplikací\Deployment
2016-09-05 09:59 - 2014-03-17 13:37 - 00000344 _____ C:\Documents and Settings\VK\Plocha\Upload DA.appref-ms
2016-09-05 09:59 - 2014-03-17 13:36 - 00000000 ____D C:\Documents and Settings\VK\Nabídka Start\Programy\Digitální archiv

==================== Files in the root of some directories =======

2016-08-18 18:24 - 2016-08-19 11:51 - 0000843 _____ () C:\Documents and Settings\VK\Data aplikací\burnaware.ini
2015-04-14 10:44 - 2016-09-27 18:13 - 0019968 _____ () C:\Documents and Settings\VK\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-02-23 17:18 - 2016-07-14 17:02 - 16187112 _____ () C:\Documents and Settings\All Users\OfflineCatalogue_3_2014_TECDOC_CD.log
2012-02-02 14:23 - 2012-02-02 14:27 - 3520940 _____ () C:\Documents and Settings\All Users\UninstallOfflineCatalogue.log
2010-08-20 12:27 - 2012-09-24 14:56 - 0000041 ___SH () C:\Documents and Settings\All Users\Data aplikací\.zreglib
2011-02-01 14:26 - 2014-09-11 11:25 - 0004190 _____ () C:\Documents and Settings\All Users\Data aplikací\CheckAcrobatInst.log
2010-03-23 13:52 - 2010-03-23 15:02 - 0001974 _____ () C:\Documents and Settings\All Users\Data aplikací\hpzinstall.log

Some zero byte size files/folders:
==========================
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\VDLL.DLL
C:\Windows\System32\runouce.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================

TreeSize Free V2.4 (HKLM\...\TreeSize Free_is1) (Version: 2.4 - JAM Software)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1468326428.job => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
Task: C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{B53A1E31-A9BC-49C8-B137-2E65E440D5B4}.job => C:\WINDOWS\system32\msfeedssync.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Avast Antivirus (Disabled - Up to date) {7591db91-41f0-48a3-b128-1a293fd8233d}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

  
***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\VK\Plocha" je 27153 MB.
 
 
***** Startup Programs *****
 

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services
    ERSvc	REG_DWORD	0x2
    WebClient	REG_DWORD	0x2
    RemoteRegistry	REG_DWORD	0x2
    HidServ	REG_DWORD	0x2
 
***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    EnableFirewall	REG_DWORD	0x1
    DoNotAllowExceptions	REG_DWORD	0x0
    DisableNotifications	REG_DWORD	0x0


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Samsung\\Samsung Printer Center\\SamsungPrinterCenter.exe"="C:\\Program Files\\Samsung\\Samsung Printer Center\\SamsungPrinterCenter.exe:*:Enabled:Samsung Printer Center"
"C:\\Program Files\\Samsung\\Samsung Universal Scan Driver\\ScanCDLM.exe"="C:\\Program Files\\Samsung\\Samsung Universal Scan Driver\\ScanCDLM.exe:*:Enabled:Samsung Universal Scan Driver Scanner Discovery Module"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Java\\jre6\\launch4j-tmp\\frd.exe"="C:\\Program Files\\Java\\jre6\\launch4j-tmp\\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\totalcmd\\TOTALCMD.EXE"="C:\\totalcmd\\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"C:\\Program Files\\deepinvent\\MailStore Home\\MailStoreLocal.exe"="C:\\Program Files\\deepinvent\\MailStore Home\\MailStoreLocal.exe:*:Enabled:MailStore Home"
"C:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"="C:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe:*:Enabled:Google Earth"
"C:\\Program Files\\Fiat\\ePER\\j2sdk1.4.1\\bin\\javaw.exe"="C:\\Program Files\\Fiat\\ePER\\j2sdk1.4.1\\bin\\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe"="C:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe:*:Enabled:Google Earth"
"C:\\WINDOWS\\system32\\mmc.exe"="C:\\WINDOWS\\system32\\mmc.exe:*:Disabled:Konzola Microsoft Management Console"
"C:\\Program Files\\IvecoPower\\cdi.exe"="C:\\Program Files\\IvecoPower\\cdi.exe:*:Enabled:Iveco Power"
"C:\\Program Files\\IvecoPower\\app\\mysql\\bin\\mysqld.exe"="C:\\Program Files\\IvecoPower\\app\\mysql\\bin\\mysqld.exe:*:Enabled:mysqld"
"C:\\Program Files\\VideoLAN\\VLC\\vlc.exe"="C:\\Program Files\\VideoLAN\\VLC\\vlc.exe:*:Enabled:VLC media player"
"C:\\Program Files\\Java\\jre7\\launch4j-tmp\\frd.exe"="C:\\Program Files\\Java\\jre7\\launch4j-tmp\\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\SCARABAY\\scarabay.exe"="C:\\Program Files\\SCARABAY\\scarabay.exe:LocalSubNet:Enabled:SCARABAY"
"C:\\Program Files\\Foxit Software\\PDF Editor\\PDFEdit.exe"="C:\\Program Files\\Foxit Software\\PDF Editor\\PDFEdit.exe:*:Enabled:Foxit PDF Editor, the first REAL editor for PDF files!"
"C:\\Program Files\\Spybot - Search & Destroy 2\\SDTray.exe"="C:\\Program Files\\Spybot - Search & Destroy 2\\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access"
"C:\\Program Files\\Spybot - Search & Destroy 2\\SDFSSvc.exe"="C:\\Program Files\\Spybot - Search & Destroy 2\\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdate.exe"="C:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdSvc.exe"="C:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"
"C:\\Documents and Settings\\All Users\\Data aplikac\\Texa\\OBDLogData\\OBDSWUpdate\\checkin2.exe"="C:\\Documents and Settings\\All Users\\Data aplikac\\Texa\\OBDLogData\\OBDSWUpdate\\checkin2.exe:*:Enabled:checkin2"
"C:\\Program Files\\Vuze\\Azureus.exe"="C:\\Program Files\\Vuze\\Azureus.exe:*:Enabled:Azureus / Vuze"
"C:\\Program Files\\Common Files\\soft602\\langserv.exe"="C:\\Program Files\\Common Files\\soft602\\langserv.exe:*:Enabled:Software602 Spell Checker"
"C:\\Program Files\\Java\\jre1.8.0_25\\launch4j-tmp\\frd.exe"="C:\\Program Files\\Java\\jre1.8.0_25\\launch4j-tmp\\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\Java\\jre1.8.0_31\\launch4j-tmp\\frd.exe"="C:\\Program Files\\Java\\jre1.8.0_31\\launch4j-tmp\\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\Java\\jre1.8.0_45\\launch4j-tmp\\frd.exe"="C:\\Program Files\\Java\\jre1.8.0_45\\launch4j-tmp\\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\Java\\jre1.8.0_51\\launch4j-tmp\\frd.exe"="C:\\Program Files\\Java\\jre1.8.0_51\\launch4j-tmp\\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\Samsung\\Samsung Printer Center\\SamsungPrinterCenter.exe"="C:\\Program Files\\Samsung\\Samsung Printer Center\\SamsungPrinterCenter.exe:*:Enabled:Samsung Printer Center"
"C:\\Program Files\\Samsung\\Samsung Universal Scan Driver\\ScanCDLM.exe"="C:\\Program Files\\Samsung\\Samsung Universal Scan Driver\\ScanCDLM.exe:*:Enabled:Samsung Universal Scan Driver Scanner Discovery Module"
"C:\\Program Files\\Samsung\\Easy Printer Manager\\EasyPrinterManagerV2.exe"="C:\\Program Files\\Samsung\\Easy Printer Manager\\EasyPrinterManagerV2.exe:*:Enabled:EasyPrinterManagerV2"
"C:\\Program Files\\Samsung\\Easy Printer Manager\\OrderSupplies.exe"="C:\\Program Files\\Samsung\\Easy Printer Manager\\OrderSupplies.exe:*:Enabled:EPM2OrderSupply"
"C:\\Program Files\\Samsung\\Easy Printer Manager\\EPM2AlertList.exe"="C:\\Program Files\\Samsung\\Easy Printer Manager\\EPM2AlertList.exe:*:Enabled:EPM2AlertList"
"C:\\Program Files\\Samsung\\Easy Printer Manager\\EPM2Migrator.exe"="C:\\Program Files\\Samsung\\Easy Printer Manager\\EPM2Migrator.exe:*:Enabled:EPM2Migrator"
"C:\\Program Files\\Samsung\\Easy Document Creator\\EDCApp.exe"="C:\\Program Files\\Samsung\\Easy Document Creator\\EDCApp.exe:*:Enabled:Samsung Easy Document Creator"
"C:\\Program Files\\Samsung\\Easy Document Creator\\EDC.exe"="C:\\Program Files\\Samsung\\Easy Document Creator\\EDC.exe:*:Enabled:Samsung Easy Document Creator"
"C:\\Program Files\\TeamViewer\\TeamViewer.exe"="C:\\Program Files\\TeamViewer\\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\\Program Files\\TeamViewer\\TeamViewer_Service.exe"="C:\\Program Files\\TeamViewer\\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Program Files\\Firefox\\bin\\FirefoxUpdate.exe"="C:\\Program Files\\Firefox\\bin\\FirefoxUpdate.exe:*:Enabled:Update service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP"="139:TCP:*:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:*:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:*:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:*:Enabled:@xpsp2res.dll,-22002"
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
"3389:TCP"="3389:TCP:*:Disabled:@xpsp2res.dll,-22009"
 
 
***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000

 
==================== End Of Log ==============================
