Kontrola logu

Zpráva

xrobat · #1 Příspěvek od **xrobat** » 17 bře 2018 14:24

Dobrý den,
prosím o kontrolu logu, zpomalení odezvy, zamrzání
Díky Táborský

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14.03.2018
Ran by taborsky (administrator) on JIRKA (17-03-2018 14:16:09)
Running from C:\Documents and Settings\taborsky\Plocha
Loaded Profiles: taborsky (Available Profiles: ilona & taborsky & help)
Platform: SystĂ©m Microsoft Windows XP Professional Service Pack 3 (X86) Language: ÄŚeĹˇtina
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\RegSvr.exe
(SafeNet Inc.) C:\WINDOWS\system32\hasplms.exe
(HP) C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
(Hummingbird Ltd.) C:\WINDOWS\system32\Hummingbird\Connectivity\7.10\Jconfig\jconfigdnt.exe
(Hummingbird Ltd.) C:\WINDOWS\system32\Hummingbird\Connectivity\7.10\Jconfig\hjavaw.exe
(LogMeIn, Inc.) C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
(Oracle Corporation) C:\Program Files\Java\jre1.8.0_31\bin\javaw.exe
(Prolific Technology Inc.) C:\WINDOWS\system32\IoctlSvc.exe
() C:\WINDOWS\system32\PSIService.exe
(Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(Pinnacle Systems GmbH) C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
(HP) C:\Program Files\HP\HP LaserJet Professional CP1020 Series\HPCP1020STRAY.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
(MyHeritage) C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(forum.viry.cz) C:\Documents and Settings\taborsky\Plocha\FRSTLauncher.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16270848 2006-11-14] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [69632 2005-05-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [JMB36X IDE Setup] => C:\WINDOWS\JM\JMInsIDE.exe [36864 2006-10-31] ()
HKLM\...\Run: [36X Raid Configurer] => C:\WINDOWS\system32\JMRaidSetup.exe [1953792 2006-11-17] (Gigabyte Technology Corp.)
HKLM\...\Run: [USBToolTip] => C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe [199752 2007-02-20] (Pinnacle Systems GmbH)
HKLM\...\Run: [HP CP1020 System Tray] => C:\Program Files\HP\HP LaserJet Professional CP1020 Series\HPCP1020STRAY.EXE [2627384 2010-05-12] (HP)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [245608 2018-03-17] (AVAST Software)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [5883912 2017-03-02] (LogMeIn Inc.)
HKLM\...\Run: [UserFaultCheck] => %systemroot%\system32\dumprep 0 -u
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Family Tree Builder Update] => C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe [17526448 2018-01-30] (MyHeritage)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2009-09-09] (ATI Technologies Inc.)
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [cz.seznam.software.autoupdate] => C:\Documents and Settings\taborsky\Data aplikacĂ\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [cz.seznam.software.szndesktop] => C:\Documents and Settings\taborsky\Data aplikacĂ\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [Chromium] => c:\documents and settings\taborsky\local settings\data aplikacĂ\chromium\application\chrome.exe [666624 2018-03-04] ()
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [GoogleChromeAutoLaunch_1C26074332C9A89230F9FEE175C742F6] => C:\documents and settings\taborsky\local settings\data aplikacĂ\chromium\application\chrome.exe [666624 2018-03-04] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{48686280-E9EC-451A-B781-FAE5189670D2}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-1409082233-573735546-725345543-1010\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKLM -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1409082233-573735546-725345543-1010 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL =
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-02-07] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2018-03-17] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-07] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-1409082233-573735546-725345543-1010 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Program Files\VVD CAD Systems\urlmon.dll [1999-05-05] (Microsoft Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-09-02] [Legacy] [not signed]
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2009-11-14] (DivX,Inc.)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll [2009-11-14] (DivX, Inc)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-07] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-07] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.12.69 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll [2008-09-10] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.69 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll [2008-09-10] (RealNetworks, Inc.)
FF Plugin: @thrixxx.com/WebLaunch -> C:\Program Files\thriXXX\WebLaunch\Binaries\npWebLaunch.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1409082233-573735546-725345543-1010: @thrixxx.com/WebLaunch -> C:\Program Files\thriXXX\WebLaunch\Binaries\npWebLaunch.dll [No File]
FF Plugin HKU\S-1-5-21-1409082233-573735546-725345543-1010: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Unity\WebPlayer\loader\npUnity3D32.dll [2015-12-04] (Unity Technologies ApS)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR HomePage: Profile 1 -> hxxp://www.idnes.cz/
CHR StartupUrls: Profile 1 -> "hxxp://www.idnes.cz/"
CHR NewTab: Profile 1 -> Not-active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR Profile: C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default [2018-03-17]
CHR Extension: (Seznam LiĹˇtiÄŤka - Email) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-11-03]
CHR Extension: (Seznam LiĹˇtiÄŤka - SlovnĂk) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-11-03]
CHR Extension: (Seznam LiĹˇtiÄŤka - RychlĂˇ volba) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-11-03]
CHR Profile: C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1 [2018-03-17]
CHR Extension: (VolĂˇnĂ pĹ™es Skype) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2018-02-04]
CHR Extension: (Java API Search) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\dphfngjamcomlehblpblaacingmaojnm [2016-07-02]
CHR Extension: (FormApps Extension) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2017-08-28]
CHR Extension: (Cisco WebEx Extension) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2017-08-28]
CHR Extension: (Platby InternetovĂ©ho obchodu Chrome) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-28]
CHR Extension: (Seznam pro Chrome - Esko) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-02-02]
CHR Profile: C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\System Profile [2016-12-19]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1409082233-573735546-725345543-1010\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lomkcaancjhmeojfiekilnciafkhloih] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: chrome.exe - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\Application\chrome.exe
StartMenuInternet: Google Chrome.4OIX2A7UUQBUZQHGOIWKQWPX5U - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2018-02-07] (Adobe Systems Incorporated) [File not signed]
S4 ANSYS, Inc. License Manager; C:\Program Files\ANSYS Inc\Shared Files\Licensing\win32\ansysli_server.exe [3747840 2014-01-07] (ANSYS, Inc.) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5909888 2018-03-17] (AVAST Software)
R2 Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [602112 2009-09-09] (ATI Technologies Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [303728 2018-03-17] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [357760 2018-03-17] (AVAST Software)
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2008-11-29] (Macrovision Europe Ltd.) [File not signed]
R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2282504 2017-03-02] (LogMeIn Inc.)
R2 hasplms; C:\WINDOWS\system32\hasplms.exe [4683144 2014-07-17] (SafeNet Inc.)
S4 HCLInetd; C:\WINDOWS\system32\Hummingbird\Connectivity\7.10\Inetd\inetd32.exe [32768 2001-07-26] (Hummingbird Ltd.) [File not signed]
R2 HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [142336 2010-04-12] (HP) [File not signed]
R2 Jconfigd; C:\WINDOWS\system32\Hummingbird\Connectivity\7.10\Jconfig\jconfigdnt.exe [28672 2001-07-23] (Hummingbird Ltd.) [File not signed]
S2 JobManagerService110; C:\Program Files\ANSYS Inc\v110\RSM\bin\JobManagerService.exe [20480 2007-09-20] (Ansys, Inc) [File not signed]
R2 LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [405424 2017-02-27] (LogMeIn, Inc.)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [16384 2006-10-01] () [File not signed]
S2 PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [File not signed]
R2 PLFlash DeviceIoControl Service; C:\WINDOWS\system32\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed]
R2 ProtexisLicensing; C:\WINDOWS\system32\PSIService.exe [174656 2006-11-02] () [File not signed]
S2 ScriptHostService110; C:\Program Files\ANSYS Inc\v110\RSM\bin\ScriptHostService.exe [20480 2007-09-20] (Ansys, Inc.) [File not signed]
S3 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [430592 2008-04-07] (Nokia.) [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [10803440 2017-12-18] (TeamViewer GmbH)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 61883; C:\WINDOWS\System32\DRIVERS\61883.sys [48128 2008-04-13] (Microsoft Corporation)
R2 aksfridge; C:\WINDOWS\System32\DRIVERS\aksfridge.sys [425304 2014-07-17] (SafeNet Inc.)
S3 akshasp; C:\WINDOWS\System32\DRIVERS\akshasp.sys [244040 2014-07-17] (SafeNet Inc.)
S3 akshhl; C:\WINDOWS\System32\DRIVERS\akshhl.sys [53192 2014-07-17] (SafeNet Inc.)
S3 aksusb; C:\WINDOWS\System32\DRIVERS\aksusb.sys [296200 2014-07-17] (SafeNet Inc.)
R1 as6eio; C:\WINDOWS\System32\drivers\as6eio.SYS [3616 1997-12-08] () [File not signed]
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [167040 2018-03-17] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriverx.sys [185432 2018-03-17] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidshx.sys [157368 2018-03-17] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblogx.sys [276688 2018-03-17] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbunivx.sys [50336 2018-03-17] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [42808 2018-03-17] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [39784 2017-09-02] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [124392 2018-03-17] (AVAST Software)
R0 aswNdis; C:\WINDOWS\System32\DRIVERS\aswNdis.sys [12112 2013-11-18] (ALWIL Software)
R0 aswNdis2; C:\WINDOWS\System32\drivers\aswNdis2.sys [392424 2018-03-17] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr.sys [70576 2018-03-17] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [70816 2018-03-17] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [783608 2018-03-17] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [391856 2018-03-17] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\System32\drivers\aswStmXP.sys [205344 2018-03-17] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [310784 2018-03-17] (AVAST Software)
R3 ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [4476416 2009-09-09] (ATI Technologies Inc.) [File not signed]
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [37664 2013-05-20] (AVG Technologies)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R1 Cinemsup; C:\WINDOWS\system32\Drivers\Cinemsup.sys [6656 2002-07-19] (Sonic Solutions) [File not signed]
R3 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2015-02-08] (Disc Soft Ltd)
S3 FsUsbExDisk; C:\WINDOWS\system32\FsUsbExDisk.SYS [36608 2009-03-31] () [File not signed]
S3 gdrv; C:\WINDOWS\gdrv.sys [14656 2008-10-09] (Windows (R) Codename Longhorn DDK provider)
R3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R2 Hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [609624 2014-07-17] (SafeNet Inc.)
R2 Haspnt; C:\WINDOWS\system32\drivers\Haspnt.sys [47616 2008-10-24] (Aladdin Knowledge Systems) [File not signed]
R0 JGOGO; C:\WINDOWS\System32\DRIVERS\JGOGO.sys [6912 2006-02-08] (JMicron )
R0 JRAID; C:\WINDOWS\System32\DRIVERS\jraid.sys [43648 2006-11-21] (JMicron Technology Corp.)
R3 MarvinBus; C:\WINDOWS\System32\DRIVERS\MarvinBus.sys [171520 2007-01-04] (Pinnacle Systems GmbH) [File not signed]
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [47360 2012-03-31] (VSO Software) [File not signed]
R2 ppsio2; C:\WINDOWS\system32\Drivers\ppsio2.sys [22400 1999-04-02] () [File not signed]
R0 sfdrv01; C:\WINDOWS\System32\drivers\sfdrv01.sys [50688 2005-08-10] (Protection Technology) [File not signed]
R0 sfhlp02; C:\WINDOWS\System32\drivers\sfhlp02.sys [6656 2005-05-16] (Protection Technology) [File not signed]
R0 sfvfs02; C:\WINDOWS\System32\drivers\sfvfs02.sys [63488 2005-11-03] (Protection Technology) [File not signed]
R3 SKYNET; C:\WINDOWS\System32\DRIVERS\SkyNET.SYS [507408 2009-09-11] (TechniSat Digital, S.A.)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [320120 2015-02-08] (Duplex Secure Ltd.)
S3 ss_bbus; C:\WINDOWS\System32\DRIVERS\ss_bbus.sys [90112 2009-03-20] (MCCI)
S3 ss_bmdfl; C:\WINDOWS\System32\DRIVERS\ss_bmdfl.sys [14976 2009-03-20] (MCCI Corporation)
S3 ss_bmdm; C:\WINDOWS\System32\DRIVERS\ss_bmdm.sys [121856 2009-03-20] (MCCI Corporation)
R3 tap0801; C:\WINDOWS\System32\DRIVERS\tap0801.sys [26624 2006-10-01] (The OpenVPN Project) [File not signed]
S3 XXLHASP; c:\windows\system32\drivers\XXLHASP.sys [821248 2010-03-01] () [File not signed]
R3 yukonwxp; C:\WINDOWS\System32\DRIVERS\yk51x86.sys [250496 2006-11-22] (Marvell)
S3 CrystalSysInfo; \??\c:\Program Files\MediaCoder Mobile Phone Edition\SysInfo.sys [X]
S4 IntelIde; no ImagePath
S3 NAVENG; \??\C:\Program Files\Norton Security\NortonData\22.9.1.12\Definitions\SDSDefs\20170204.002\NAVENG.SYS [X]
S3 NAVEX15; \??\C:\Program Files\Norton Security\NortonData\22.9.1.12\Definitions\SDSDefs\20170204.002\NAVEX15.SYS [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U1 WS2IFSL; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

Error(1) reading file: "C:\WINDOWS\system32\Drivers\mshdmd.sys."
Error(1) reading file: "C:\EDIT "
2018-03-17 14:16 - 2018-03-17 14:16 - 000023611 _____ C:\Documents and Settings\taborsky\Plocha\FRST.txt
2018-03-17 14:15 - 2018-03-17 14:16 - 000000000 ____D C:\FRST
2018-03-17 14:13 - 2018-03-17 14:13 - 000112640 _____ (forum.viry.cz) C:\Documents and Settings\taborsky\Plocha\FRSTLauncher.exe
2018-03-17 14:09 - 2018-03-17 14:09 - 001764352 _____ (Farbar) C:\Documents and Settings\taborsky\Plocha\FRST.exe
2018-03-17 13:50 - 2018-03-17 13:50 - 000087868 ____H C:\WINDOWS\system32\mlfcache.dat
2018-03-17 12:44 - 2018-03-17 12:44 - 000319392 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2018-03-17 12:13 - 2018-03-17 12:55 - 000007958 _____ C:\WINDOWS\SchedLgU.Txt
2018-03-17 12:03 - 2018-03-17 12:03 - 000008130 _____ C:\WINDOWS\ntbtlog.txt
2018-03-03 21:13 - 2018-03-03 21:58 - 000000000 ____D C:\Documents and Settings\taborsky\NabĂdka Start\Programy\FormatFactory
2018-03-03 21:01 - 2018-03-03 21:01 - 000000000 _____ C:\WINDOWS\system32\00000041.tmp
2018-03-03 19:22 - 2018-03-03 21:13 - 000065536 _____ C:\WINDOWS\system32\config\Reason.evt
2018-03-03 18:25 - 2018-03-17 12:13 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared
2018-03-03 18:22 - 2018-03-17 13:52 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikacĂ\Norton
2018-03-03 18:21 - 2018-03-17 13:52 - 000000000 ____D C:\Program Files\NortonInstaller
2018-03-03 18:21 - 2018-03-17 12:12 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikacĂ\NortonInstaller
2018-03-03 18:21 - 2018-03-03 18:25 - 000000000 ____D C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\chromium
2018-03-03 18:18 - 2018-03-03 18:18 - 000000000 ____D C:\Documents and Settings\taborsky\Local Settings\Data aplikac
2018-03-03 09:56 - 2018-03-03 09:56 - 000001242 _____ C:\Documents and Settings\taborsky\NabĂdka Start\Seznam PoĹˇĹĄĂˇk.lnk
2018-02-26 20:47 - 2018-02-26 20:47 - 000000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikacĂ\Temp

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-03-17 14:17 - 2010-12-20 01:26 - 000000000 ____D C:\Documents and Settings\taborsky\Local Settings\Temp
2018-03-17 14:16 - 2010-12-20 01:26 - 000000000 ____D C:\Documents and Settings\taborsky\Plocha
2018-03-17 14:14 - 2010-12-20 01:26 - 000000000 ___HD C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ
2018-03-17 14:10 - 2014-04-25 19:31 - 000000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2018-03-17 13:57 - 2008-10-10 19:12 - 000009056 _____ C:\WINDOWS\WINCMD.INI
2018-03-17 13:55 - 2010-12-20 01:26 - 000000000 ___RD C:\Documents and Settings\taborsky\NabĂdka Start\Programy
2018-03-17 13:52 - 2008-10-09 23:47 - 000000000 ___RD C:\Documents and Settings\All Users\NabĂdka Start\Programy
2018-03-17 13:52 - 2008-10-09 23:47 - 000000000 ____D C:\Documents and Settings\All Users\Plocha
2018-03-17 13:31 - 2015-05-19 17:19 - 000000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2018-03-17 13:18 - 2015-06-21 10:45 - 000000000 ____D C:\Documents and Settings\taborsky\Data aplikacĂ\Seznam.cz
2018-03-17 13:13 - 2013-08-07 12:53 - 000000000 ____D C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\LogMeIn Hamachi
2018-03-17 13:13 - 2013-08-07 12:53 - 000000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikacĂ\LogMeIn Hamachi
2018-03-17 13:12 - 2016-06-30 20:05 - 000000460 _____ C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1467313513.job
2018-03-17 13:12 - 2015-05-19 17:19 - 000000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2018-03-17 13:12 - 2010-04-19 00:31 - 000001984 _____ C:\WINDOWS\system32\d3d9caps.dat
2018-03-17 13:12 - 2004-08-18 13:00 - 000013678 _____ C:\WINDOWS\system32\wpa.dbl
2018-03-17 12:58 - 2008-10-17 00:15 - 000000435 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2018-03-17 12:56 - 2017-08-28 21:25 - 000000310 ____H C:\WINDOWS\Tasks\Avast Emergency Update.job
2018-03-17 12:56 - 2008-10-09 22:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-03-17 12:55 - 2010-12-20 01:26 - 000000178 ___SH C:\Documents and Settings\taborsky\ntuser.ini
2018-03-17 12:55 - 2010-12-20 01:26 - 000000000 ____D C:\Documents and Settings\taborsky
2018-03-17 12:46 - 2008-10-09 23:40 - 000000000 ___HD C:\WINDOWS\inf
2018-03-17 12:44 - 2017-11-09 21:58 - 000167040 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2018-03-17 12:44 - 2017-08-28 21:25 - 000276688 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblogx.sys
2018-03-17 12:44 - 2017-08-28 21:25 - 000185432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
2018-03-17 12:44 - 2017-08-28 21:25 - 000157368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidshx.sys
2018-03-17 12:44 - 2017-08-28 21:25 - 000050336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbunivx.sys
2018-03-17 12:44 - 2016-06-30 08:48 - 000205344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStmXP.sys
2018-03-17 12:44 - 2014-08-02 06:40 - 000042808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2018-03-17 12:44 - 2013-11-18 21:57 - 000392424 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdis2.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000783608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000391856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000310784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000124392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000070816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000070576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2018-03-17 12:38 - 2014-11-14 23:01 - 000000000 ____D C:\Program Files\TeamViewer
2018-03-17 10:28 - 2010-12-24 14:44 - 000000000 ____D C:\Documents and Settings\taborsky\Data aplikacĂ\Media Player Classic
2018-03-03 23:13 - 2008-10-09 23:47 - 000000000 __RHD C:\Documents and Settings\All Users\Data aplikacĂ
2018-03-03 18:17 - 2010-12-20 01:26 - 000000000 __RHD C:\Documents and Settings\taborsky\Data aplikacĂ
2018-03-03 18:10 - 2010-12-26 21:40 - 000000000 ____D C:\Documents and Settings\taborsky\Data aplikacĂ\Skype
2018-03-03 18:10 - 2008-10-10 19:31 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikacĂ\Skype
2018-03-03 12:57 - 2010-12-20 01:27 - 000000000 ___RD C:\Documents and Settings\taborsky\Dokumenty\ObrĂˇzky
2018-03-03 09:56 - 2015-06-21 10:46 - 000001824 _____ C:\Documents and Settings\Default User\Plocha\Google Chrome.lnk
2018-03-03 09:56 - 2010-12-20 01:26 - 000000000 ___RD C:\Documents and Settings\taborsky\NabĂdka Start
2018-02-26 20:47 - 2008-10-09 22:01 - 000000000 ___HD C:\Documents and Settings\LocalService\Local Settings\Data aplikacĂ
2018-02-17 23:33 - 2010-12-26 21:51 - 000000000 ____D C:\Documents and Settings\taborsky\Data aplikacĂ\ICQ
2018-02-17 20:13 - 2008-12-13 13:15 - 000000000 ____D C:\WINDOWS\network diagnostic

==================== Files in the root of some directories =======

2011-01-02 22:28 - 2015-11-28 15:14 - 000000098 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\default.pls
2010-12-24 13:23 - 2016-07-01 11:19 - 000005196 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\froggy_scorebox
2012-03-31 14:18 - 2012-03-31 14:18 - 000087608 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\inst.exe
2012-03-31 14:18 - 2012-03-31 14:18 - 000007887 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\pcouffin.cat
2012-03-31 14:18 - 2012-03-31 14:18 - 000001144 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\pcouffin.inf
2012-03-31 14:18 - 2012-03-31 14:18 - 000000034 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\pcouffin.log
2012-03-31 14:18 - 2012-03-31 14:18 - 000047360 _____ (VSO Software) C:\Documents and Settings\taborsky\Data aplikacĂ\pcouffin.sys
2010-12-24 13:23 - 2016-07-01 11:19 - 000001595 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\pl_accounts.pl_acc
2011-06-06 22:14 - 2014-06-18 23:49 - 000000033 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\PV_ACAD.bin
2010-12-24 13:23 - 2016-07-01 11:19 - 000000556 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\Troll.options
2012-03-31 14:19 - 2012-04-10 11:03 - 000000668 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\vso_ts_preview.xml
2012-11-06 00:42 - 2017-11-30 22:53 - 000028672 _____ () C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-11-07 00:32 - 2011-11-07 00:32 - 000000128 _____ () C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\fusioncache.dat
2014-12-21 20:33 - 2014-12-21 20:33 - 000000001 _____ () C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\llftool.4.40.agreement
2017-09-28 11:23 - 2017-09-28 11:36 - 000000096 _____ () C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\rbxcsettings.rbx
2009-12-25 10:19 - 2009-12-25 10:19 - 000000008 __RSH () C:\Documents and Settings\All Users\Data aplikacĂ\E255105B2D.sys
2008-10-10 19:34 - 2008-10-10 19:34 - 000000032 ____N () C:\Documents and Settings\All Users\Data aplikacĂ\ezsid.dat
2009-12-25 10:19 - 2012-12-01 02:02 - 000003192 ___SH () C:\Documents and Settings\All Users\Data aplikacĂ\KGyGaAvL.sys
2008-10-20 17:34 - 2016-08-14 22:40 - 000000024 _____ () C:\Documents and Settings\All Users\Data aplikacĂ\__FileUploader.log
2010-08-28 11:03 - 2010-08-29 15:27 - 001492126 _____ () C:\Documents and Settings\All Users\Data aplikacĂ\__wdump.txt

Some files in TEMP:
====================
2018-03-17 12:03 - 2018-03-17 12:03 - 000008728 _____ () C:\Documents and Settings\taborsky\Local Settings\Temp\BullseyeCoverage-2-x86.dll
2018-03-17 13:52 - 2018-03-17 12:44 - 001516216 _____ (Symantec Corporation) C:\Documents and Settings\taborsky\Local Settings\Temp\{397E31AA-0D78-4649-A01C-339D73A2ED35}_NSS__{9BB9D415-FF06-4481-AD5D-3E0EE2B4FB4E}.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Avast Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1467313513.job => C:\Program Files\AVAST Software\SZBrowser\launcher.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Norton Security (Enabled - Up to date) {E10A9785-9598-4754-B552-92431C1C35F8}
AV: Avast Antivirus (Enabled - Up to date) {7591db91-41f0-48a3-b128-1a293fd8233d}
FW: Avast Antivirus (Disabled) {7591db91-41f0-48a3-b128-1a293fd8233d}
FW: Norton Security (Disabled) {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\taborsky\Plocha" je 3 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JobManagerService.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JobManagerService.exe:*:Enabled:JobManagerService.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMAdmin.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMAdmin.exe:*:Enabled:JMAdmin.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMPassword.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMPassword.exe:*:Enabled:JMPassword.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\ScriptHostService.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\ScriptHostService.exe:*:Enabled:ScriptHostService.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CommonFiles\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CommonFiles\\intel\\AnsysWBU.exe:*:Enabled:AnsysWBU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\ANSYS\\bin\\intel\\ANSYS.exe"="C:\\Program Files\\ANSYS Inc\\v110\\ANSYS\\bin\\intel\\ANSYS.exe:*:Enabled:ANSYS.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ActivePIMgrU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ActivePIMgrU.exe:*:Enabled:ActivePIMgrU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ReaderHostU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ReaderHostU.exe:*:Enabled:ReaderHostU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\tclsh.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\tclsh.exe:*:Enabled:AWP tclsh.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\wish.exe:*:Enabled:AWP wish.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\CATIAV5\\intel\\code\\bin\\ReaderHostCAT5U.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\CATIAV5\\intel\\code\\bin\\ReaderHostCAT5U.exe:*:Enabled:ReaderHostCAT5U.exe"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\ICQ7.4\\ICQ.exe"="C:\\Program Files\\ICQ7.4\\ICQ.exe:*:Enabled:ICQ7.4"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\DVBViewerTE\\ts_winlirc.exe"="C:\\Program Files\\DVBViewerTE\\ts_winlirc.exe:*:Enabled:ts_winlirc"
"C:\\Program Files\\ICQ6\\ICQ.exe"="C:\\Program Files\\ICQ6\\ICQ.exe:*:Enabled:ICQ6"
"C:\\Program Files\\Hummingbird\\Connectivity\\7.10\\Exceed\\exceed.exe"="C:\\Program Files\\Hummingbird\\Connectivity\\7.10\\Exceed\\exceed.exe:*:Enabled:X server for Win32"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JobManagerService.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JobManagerService.exe:*:Enabled:JobManagerService.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMAdmin.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMAdmin.exe:*:Enabled:JMAdmin.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMPassword.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMPassword.exe:*:Enabled:JMPassword.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\ScriptHostService.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\ScriptHostService.exe:*:Enabled:ScriptHostService.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CommonFiles\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CommonFiles\\intel\\AnsysWBU.exe:*:Enabled:AnsysWBU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\ANSYS\\bin\\intel\\ANSYS.exe"="C:\\Program Files\\ANSYS Inc\\v110\\ANSYS\\bin\\intel\\ANSYS.exe:*:Enabled:ANSYS.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ActivePIMgrU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ActivePIMgrU.exe:*:Enabled:ActivePIMgrU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ReaderHostU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ReaderHostU.exe:*:Enabled:ReaderHostU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\tclsh.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\tclsh.exe:*:Enabled:AWP tclsh.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\wish.exe:*:Enabled:AWP wish.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\CATIAV5\\intel\\code\\bin\\ReaderHostCAT5U.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\CATIAV5\\intel\\code\\bin\\ReaderHostCAT5U.exe:*:Enabled:ReaderHostCAT5U.exe"
"C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\intel\\lmgrd.exe"="C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\intel\\lmgrd.exe:*:Enabled:lmgrd"
"C:\\Program Files\\Pinnacle\\Studio 11\\programs\\RM.exe"="C:\\Program Files\\Pinnacle\\Studio 11\\programs\\RM.exe:*:Enabled:Render Manager"
"C:\\Program Files\\Pinnacle\\Studio 11\\programs\\Studio.exe"="C:\\Program Files\\Pinnacle\\Studio 11\\programs\\Studio.exe:*:Enabled:Studio"
"C:\\Program Files\\Pinnacle\\Studio 11\\programs\\PMSRegisterFile.exe"="C:\\Program Files\\Pinnacle\\Studio 11\\programs\\PMSRegisterFile.exe:*:Enabled:PMSRegisterFile"
"C:\\Program Files\\Pinnacle\\Studio 11\\programs\\umi.exe"="C:\\Program Files\\Pinnacle\\Studio 11\\programs\\umi.exe:*:Enabled:umi"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\TrackMania Nations ESWC\\TmNationsESWC.exe"="C:\\Program Files\\TrackMania Nations ESWC\\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"C:\\Program Files\\ANSYS Inc\\v120\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v120\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled: "
"C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansysli_client.exe"="C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansysli_client.exe:*:Enabled:ANSYS Licensing Interconnect Application"
"C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\Ansys.SolverManager.exe"="C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\Ansys.SolverManager.exe:*:Enabled:Ansys.SolverManager"
"C:\\Program Files\\ANSYS Inc\\v120\\commonfiles\\TCL\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v120\\commonfiles\\TCL\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"C:\\Program Files\\ICQ6.5\\ICQ.exe"="C:\\Program Files\\ICQ6.5\\ICQ.exe:*:Enabled:ICQ6"
"C:\\Program Files\\Java\\jre6\\bin\\javaw.exe"="C:\\Program Files\\Java\\jre6\\bin\\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\Java\\jre6\\bin\\java.exe"="C:\\Program Files\\Java\\jre6\\bin\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v120\\commonfiles\\jre\\intel\\bin\\java.exe"="C:\\Program Files\\ANSYS Inc\\v120\\commonfiles\\jre\\intel\\bin\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\Order Of War\\oow_final_dx9.exe"="C:\\Program Files\\Order Of War\\oow_final_dx9.exe:*:Enabled:ORDER OF WAR"
"C:\\Program Files\\ANSYS Inc\\v121\\commonfiles\\Tcl\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v121\\commonfiles\\Tcl\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v121\\commonfiles\\jre\\intel\\bin\\java.exe"="C:\\Program Files\\ANSYS Inc\\v121\\commonfiles\\jre\\intel\\bin\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v121\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v121\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled:ANSYS Workbench"
"C:\\Program Files\\ANSYS Inc\\v121\\aisol\\bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v121\\aisol\\bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"C:\\Program Files\\Nero\\Nero8\\Nero ShowTime\\ShowTime.exe"="C:\\Program Files\\Nero\\Nero8\\Nero ShowTime\\ShowTime.exe:*:Enabled:Nero ShowTime"
"C:\\Program Files\\ANSYS Inc\\v121\\aisol\\bin\\intel\\AnsMeshingServer.exe"="C:\\Program Files\\ANSYS Inc\\v121\\aisol\\bin\\intel\\AnsMeshingServer.exe:*:Enabled:AnsMeshingServer"
"C:\\Program Files\\DVBViewer TE2\\ts_winlirc.exe"="C:\\Program Files\\DVBViewer TE2\\ts_winlirc.exe:*:Disabled:ts_winlirc"
"C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\AnsMeshingServer.exe"="C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\AnsMeshingServer.exe:*:Enabled:AnsMeshingServer"
"C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\RM.exe"="C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\RM.exe:*:Enabled:Render Manager"
"C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\Studio.exe"="C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\Studio.exe:*:Enabled:Studio"
"C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\umi.exe"="C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\umi.exe:*:Enabled:umi"
"C:\\Program Files\\ANSYS Inc\\v130\\commonfiles\\Tcl\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v130\\commonfiles\\Tcl\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v130\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v130\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled:ANSYS Workbench"
"C:\\Program Files\\ANSYS Inc\\v130\\aisol\\bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v130\\aisol\\bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"E:\\INSTALLER\\HPBCSIINSTALLER.EXE"="E:\\INSTALLER\\HPBCSIINSTALLER.EXE:*:Enabled:HP Networked Printer Installer"
"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\\Program Files\\ICQ7.4\\ICQ.exe"="C:\\Program Files\\ICQ7.4\\ICQ.exe:*:Enabled:ICQ7.4"
"C:\\Program Files\\ANSYS Inc\\v130\\commonfiles\\jre\\intel\\bin\\java.exe"="C:\\Program Files\\ANSYS Inc\\v130\\commonfiles\\jre\\intel\\bin\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v140\\commonfiles\\Tcl\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v140\\commonfiles\\Tcl\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v140\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v140\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled:ANSYS Workbench"
"C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"C:\\Program Files\\ANSYS Inc\\v140\\commonfiles\\jre\\intel\\bin\\java.exe"="C:\\Program Files\\ANSYS Inc\\v140\\commonfiles\\jre\\intel\\bin\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\ReaderHostU.exe"="C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\ReaderHostU.exe:*:Enabled:ReaderHost Module"
"C:\\Program Files\\ANSYS Inc\\v140\\RSM\\bin\\Ans.Rsm.JMHost.exe"="C:\\Program Files\\ANSYS Inc\\v140\\RSM\\bin\\Ans.Rsm.JMHost.exe:*:Enabled: "
"C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\AnsMeshingServer.exe"="C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\AnsMeshingServer.exe:*:Enabled:AnsMeshingServer"
"C:\\Program Files\\Java\\jre7\\bin\\javaw.exe"="C:\\Program Files\\Java\\jre7\\bin\\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v145\\commonfiles\\Tcl\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v145\\commonfiles\\Tcl\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v145\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v145\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled:ANSYS Workbench"
"C:\\Program Files\\ANSYS Inc\\v145\\aisol\\bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v145\\aisol\\bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"C:\\Program Files\\ANSYS Inc\\v145\\RSM\\bin\\Ans.Rsm.JMHost.exe"="C:\\Program Files\\ANSYS Inc\\v145\\RSM\\bin\\Ans.Rsm.JMHost.exe:*:Enabled:ANSYS RSM Job Manager Service"
"C:\\WINDOWS\\system32\\javaw.exe"="C:\\WINDOWS\\system32\\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v145\\RSM\\bin\\Ans.Rsm.Admin.exe"="C:\\Program Files\\ANSYS Inc\\v145\\RSM\\bin\\Ans.Rsm.Admin.exe:*:Enabled:ANSYS RSM Admin 2"
"C:\\Program Files\\ANSYS Inc\\v150\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v150\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled:ANSYS Workbench"
"C:\\Program Files\\ANSYS Inc\\v150\\commonfiles\\Tcl\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v150\\commonfiles\\Tcl\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v150\\RSM\\bin\\Ans.Rsm.JMHost.exe"="C:\\Program Files\\ANSYS Inc\\v150\\RSM\\bin\\Ans.Rsm.JMHost.exe:*:Enabled:ANSYS RSM Job Manager Service"
"C:\\Program Files\\ANSYS Inc\\v150\\aisol\\bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v150\\aisol\\bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"C:\\Program Files\\ANSYS Inc\\v150\\RSM\\bin\\Ans.Rsm.Admin.exe"="C:\\Program Files\\ANSYS Inc\\v150\\RSM\\bin\\Ans.Rsm.Admin.exe:*:Enabled:ANSYS RSM Admin 2"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"
"C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansysli_server.exe"="C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansysli_server.exe:*:Enabled:ANSYS Licensing Interconnect Application. Modified for ANSYS Release 15.0."
"C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansyslmd.exe"="C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansyslmd.exe:*:Enabled:ansyslmd daemon. Modified for ANSYS Release 15.0."
"C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\lmgrd.exe"="C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\lmgrd.exe:*:Enabled:Flexera Software LLC"
"C:\\Program Files\\ANSYS Inc\\v150\\aisol\\bin\\intel\\AnsMeshingServer.exe"="C:\\Program Files\\ANSYS Inc\\v150\\aisol\\bin\\intel\\AnsMeshingServer.exe:*:Enabled:AnsMeshingServer"
"C:\\Program Files\\Java\\jre1.8.0_31\\bin\\javaw.exe"="C:\\Program Files\\Java\\jre1.8.0_31\\bin\\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\World_of_Tanks\\WoTLauncher.exe"="C:\\Program Files\\World_of_Tanks\\WoTLauncher.exe:*:Enabled:World of Tanks Launcher"
"C:\\Program Files\\World_of_Tanks\\WorldOfTanks.exe"="C:\\Program Files\\World_of_Tanks\\WorldOfTanks.exe:*:Enabled:World of Tanks"
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\\WINDOWS\\system32\\hasplms.exe"="C:\\WINDOWS\\system32\\hasplms.exe:*:Enabled:Sentinel License Manager"
"C:\\Program Files\\TeamViewer\\TeamViewer.exe"="C:\\Program Files\\TeamViewer\\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\\Program Files\\TeamViewer\\TeamViewer_Service.exe"="C:\\Program Files\\TeamViewer\\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\\Documents and Settings\\taborsky\\Local Settings\\Data aplikacˇ\\chromium\\Application\\chrome.exe"="C:\\Documents and Settings\\taborsky\\Local Settings\\Data aplikacˇ\\chromium\\Application\\chrome.exe:*:Enabled:Chromium"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:*:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:*:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:*:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:*:Enabled:@xpsp2res.dll,-22002"
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1947:TCP"="1947:TCP:*:Enabled:HASP SRM "
"1947:UDP"="1947:UDP:*:Enabled:HASP SRM "
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000

==================== End Of Log ==============================

#2 Příspěvek od **Rudy** » 17 bře 2018 15:47

Zdravím!
Spustte tuto utilitu:

Stáhněte AdwCleaner https://adwcleaner.en.uptodown.com/wind ... oad/283819
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

Na případnou hlášku na stažení novější verze nereagujte, na XP nefunguje.

xrobat · #3 Příspěvek od **xrobat** » 17 bře 2018 16:26

# AdwCleaner v5.009 - Logfile created 17/03/2018 at 16:14:54
# Updated 27/09/2015 by Xplode
# Database : 2015-09-27.1 [Local]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : taborsky - JIRKA
# Running from : C:\Documents and Settings\taborsky\Plocha\adwcleaner-5-009-multi-win.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

[-] Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\Trymedia
[-] Folder Deleted : C:\Documents and Settings\taborsky\Data aplikací\OpenCandy
[-] Folder Deleted : C:\Documents and Settings\taborsky\Data aplikací\IHlpr
[-] Folder Deleted : C:\Program Files\FlvPlayer

***** [ Files ] *****

[-] File Deleted : C:\Documents and Settings\taborsky\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Local Extension Settings\mhkaekfpcppmmioggniknbnbdbcigpkk
[-] File Deleted : C:\Documents and Settings\taborsky\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Local Storage\chrome-extension_niapdbllcanepiiimjjndipklodoedlc_0.localstorage
[-] File Deleted : C:\Documents and Settings\taborsky\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Local Storage\hxxp_free-pdf-editor.en.softonic.com_0.localstorage-journal
[-] File Deleted : C:\Documents and Settings\taborsky\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
[-] File Deleted : C:\Documents and Settings\taborsky\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
[-] File Deleted : C:\Documents and Settings\taborsky\Local Settings\Data aplikací\Chromium\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
[-] File Deleted : C:\Documents and Settings\taborsky\Local Settings\Data aplikací\Chromium\User Data\Default\Local Storage\hxxps_en.softonic.com_0.localstorage
[-] File Deleted : C:\Documents and Settings\taborsky\Local Settings\Data aplikací\Chromium\User Data\Default\Local Storage\hxxps_en.softonic.com_0.localstorage-journal
[-] File Deleted : C:\Documents and Settings\taborsky\Local Settings\Data aplikací\Chromium\User Data\Default\Local Storage\hxxps_internet-explorer-8.en.softonic.com_0.localstorage
[-] File Deleted : C:\Documents and Settings\taborsky\Local Settings\Data aplikací\Chromium\User Data\Default\Local Storage\hxxps_internet-explorer-8.en.softonic.com_0.localstorage-journal
[-] File Deleted : C:\Documents and Settings\taborsky\Local Settings\Data aplikací\Chromium\User Data\Default\Local Storage\hxxps_skype-for-internet-explorer.en.softonic.com_0.localstorage
[-] File Deleted : C:\Documents and Settings\taborsky\Local Settings\Data aplikací\Chromium\User Data\Default\Local Storage\hxxps_skype-for-internet-explorer.en.softonic.com_0.localstorage-journal
[-] File Deleted : C:\Documents and Settings\taborsky\Local Settings\Data aplikací\Chromium\User Data\Default\Local Storage\hxxp_allinonedocs.dl.tb.ask.com_0.localstorage-journal
[-] File Deleted : C:\Documents and Settings\taborsky\Local Settings\Data aplikací\Chromium\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\pc-mechanic
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
[-] Key Deleted : HKCU\Software\Classes\CLSID\{A2DF06F9-A21A-44A8-8A99-8B9C84F29160}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E716F183-5AD7-11DC-9670-00508DC0D496}
[-] Key Deleted : HKU\.DEFAULT\Software\AVG Secure Search
[-] Key Deleted : HKU\.DEFAULT\Software\AVG Security Toolbar
[-] Key Deleted : HKU\.DEFAULT\Software\IGearSettings
[-] Key Deleted : HKCU\Software\PRODUCTSETUP
[-] Key Deleted : HKCU\Software\Yahoo\Companion
[-] Key Deleted : HKLM\SOFTWARE\FlvPlayer
[-] Key Deleted : HKLM\SOFTWARE\Yahoo\Companion
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FlvPlayer

***** [ Web browsers ] *****

[-] [C:\Documents and Settings\taborsky\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : search.icq.com
[-] [C:\Documents and Settings\help\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : search.sweetim.com

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [4768 bytes] ##########

#4 Příspěvek od **Rudy** » 17 bře 2018 17:01

Dejte nový log FRST.

xrobat · #5 Příspěvek od **xrobat** » 17 bře 2018 17:37

1. FRST3 soubor se na závěr neotevřel v okně, pouze prázdný pozn.blok + hláška: odepřen přístup ?!
2. Soubor FRST3 je příliš velký, posílám na 2x¨
jt

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14.03.2018
Ran by taborsky (administrator) on JIRKA (17-03-2018 17:08:20)
Running from C:\Documents and Settings\taborsky\Plocha
Loaded Profiles: taborsky (Available Profiles: ilona & taborsky & help)
Platform: SystĂ©m Microsoft Windows XP Professional Service Pack 3 (X86) Language: ÄŚeĹˇtina
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(SafeNet Inc.) C:\WINDOWS\system32\hasplms.exe
(HP) C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
(Hummingbird Ltd.) C:\WINDOWS\system32\Hummingbird\Connectivity\7.10\Jconfig\jconfigdnt.exe
(Hummingbird Ltd.) C:\WINDOWS\system32\Hummingbird\Connectivity\7.10\Jconfig\hjavaw.exe
(LogMeIn, Inc.) C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
(Oracle Corporation) C:\Program Files\Java\jre1.8.0_31\bin\javaw.exe
(Prolific Technology Inc.) C:\WINDOWS\system32\IoctlSvc.exe
() C:\WINDOWS\system32\PSIService.exe
(Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(Pinnacle Systems GmbH) C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
(HP) C:\Program Files\HP\HP LaserJet Professional CP1020 Series\HPCP1020STRAY.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
(MyHeritage) C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Documents and Settings\taborsky\Plocha\FRSTLauncher.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16270848 2006-11-14] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [69632 2005-05-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [JMB36X IDE Setup] => C:\WINDOWS\JM\JMInsIDE.exe [36864 2006-10-31] ()
HKLM\...\Run: [36X Raid Configurer] => C:\WINDOWS\system32\JMRaidSetup.exe [1953792 2006-11-17] (Gigabyte Technology Corp.)
HKLM\...\Run: [USBToolTip] => C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe [199752 2007-02-20] (Pinnacle Systems GmbH)
HKLM\...\Run: [HP CP1020 System Tray] => C:\Program Files\HP\HP LaserJet Professional CP1020 Series\HPCP1020STRAY.EXE [2627384 2010-05-12] (HP)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [245608 2018-03-17] (AVAST Software)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [5883912 2017-03-02] (LogMeIn Inc.)
HKLM\...\Run: [UserFaultCheck] => %systemroot%\system32\dumprep 0 -u
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Family Tree Builder Update] => C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe [17526448 2018-01-30] (MyHeritage)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2009-09-09] (ATI Technologies Inc.)
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [cz.seznam.software.autoupdate] => C:\Documents and Settings\taborsky\Data aplikacĂ\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [cz.seznam.software.szndesktop] => C:\Documents and Settings\taborsky\Data aplikacĂ\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [Chromium] => c:\documents and settings\taborsky\local settings\data aplikacĂ\chromium\application\chrome.exe [666624 2018-03-04] ()
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [GoogleChromeAutoLaunch_1C26074332C9A89230F9FEE175C742F6] => C:\documents and settings\taborsky\local settings\data aplikacĂ\chromium\application\chrome.exe [666624 2018-03-04] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{48686280-E9EC-451A-B781-FAE5189670D2}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-1409082233-573735546-725345543-1010\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKLM -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1409082233-573735546-725345543-1010 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL =
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-02-07] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2018-03-17] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-07] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-1409082233-573735546-725345543-1010 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Program Files\VVD CAD Systems\urlmon.dll [1999-05-05] (Microsoft Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-09-02] [Legacy] [not signed]
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2009-11-14] (DivX,Inc.)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll [2009-11-14] (DivX, Inc)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-07] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-07] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.12.69 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll [2008-09-10] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.69 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll [2008-09-10] (RealNetworks, Inc.)
FF Plugin: @thrixxx.com/WebLaunch -> C:\Program Files\thriXXX\WebLaunch\Binaries\npWebLaunch.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1409082233-573735546-725345543-1010: @thrixxx.com/WebLaunch -> C:\Program Files\thriXXX\WebLaunch\Binaries\npWebLaunch.dll [No File]
FF Plugin HKU\S-1-5-21-1409082233-573735546-725345543-1010: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Unity\WebPlayer\loader\npUnity3D32.dll [2015-12-04] (Unity Technologies ApS)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR HomePage: Profile 1 -> hxxp://www.idnes.cz/
CHR StartupUrls: Profile 1 -> "hxxp://www.idnes.cz/"
CHR NewTab: Profile 1 -> Not-active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR Profile: C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default [2018-03-17]
CHR Extension: (Seznam LiĹˇtiÄŤka - Email) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-11-03]
CHR Extension: (Seznam LiĹˇtiÄŤka - SlovnĂk) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-11-03]
CHR Extension: (Seznam LiĹˇtiÄŤka - RychlĂˇ volba) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-11-03]
CHR Profile: C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1 [2018-03-17]
CHR Extension: (VolĂˇnĂ pĹ™es Skype) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2018-02-04]
CHR Extension: (Java API Search) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\dphfngjamcomlehblpblaacingmaojnm [2016-07-02]
CHR Extension: (FormApps Extension) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2017-08-28]
CHR Extension: (Cisco WebEx Extension) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2017-08-28]
CHR Extension: (Platby InternetovĂ©ho obchodu Chrome) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-28]
CHR Extension: (Seznam pro Chrome - Esko) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-02-02]
CHR Profile: C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\System Profile [2016-12-19]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1409082233-573735546-725345543-1010\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lomkcaancjhmeojfiekilnciafkhloih] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: chrome.exe - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\Application\chrome.exe
StartMenuInternet: Google Chrome.4OIX2A7UUQBUZQHGOIWKQWPX5U - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2018-02-07] (Adobe Systems Incorporated) [File not signed]
S4 ANSYS, Inc. License Manager; C:\Program Files\ANSYS Inc\Shared Files\Licensing\win32\ansysli_server.exe [3747840 2014-01-07] (ANSYS, Inc.) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5909888 2018-03-17] (AVAST Software)
R2 Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [602112 2009-09-09] (ATI Technologies Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [303728 2018-03-17] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [357760 2018-03-17] (AVAST Software)
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2008-11-29] (Macrovision Europe Ltd.) [File not signed]
R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2282504 2017-03-02] (LogMeIn Inc.)
R2 hasplms; C:\WINDOWS\system32\hasplms.exe [4683144 2014-07-17] (SafeNet Inc.)
S4 HCLInetd; C:\WINDOWS\system32\Hummingbird\Connectivity\7.10\Inetd\inetd32.exe [32768 2001-07-26] (Hummingbird Ltd.) [File not signed]
R2 HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [142336 2010-04-12] (HP) [File not signed]
R2 Jconfigd; C:\WINDOWS\system32\Hummingbird\Connectivity\7.10\Jconfig\jconfigdnt.exe [28672 2001-07-23] (Hummingbird Ltd.) [File not signed]
S2 JobManagerService110; C:\Program Files\ANSYS Inc\v110\RSM\bin\JobManagerService.exe [20480 2007-09-20] (Ansys, Inc) [File not signed]
R2 LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [405424 2017-02-27] (LogMeIn, Inc.)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [16384 2006-10-01] () [File not signed]
S2 PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [File not signed]
R2 PLFlash DeviceIoControl Service; C:\WINDOWS\system32\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed]
R2 ProtexisLicensing; C:\WINDOWS\system32\PSIService.exe [174656 2006-11-02] () [File not signed]
S2 ScriptHostService110; C:\Program Files\ANSYS Inc\v110\RSM\bin\ScriptHostService.exe [20480 2007-09-20] (Ansys, Inc.) [File not signed]
S3 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [430592 2008-04-07] (Nokia.) [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [10803440 2017-12-18] (TeamViewer GmbH)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 61883; C:\WINDOWS\System32\DRIVERS\61883.sys [48128 2008-04-13] (Microsoft Corporation)
R2 aksfridge; C:\WINDOWS\System32\DRIVERS\aksfridge.sys [425304 2014-07-17] (SafeNet Inc.)
S3 akshasp; C:\WINDOWS\System32\DRIVERS\akshasp.sys [244040 2014-07-17] (SafeNet Inc.)
S3 akshhl; C:\WINDOWS\System32\DRIVERS\akshhl.sys [53192 2014-07-17] (SafeNet Inc.)
S3 aksusb; C:\WINDOWS\System32\DRIVERS\aksusb.sys [296200 2014-07-17] (SafeNet Inc.)
R1 as6eio; C:\WINDOWS\System32\drivers\as6eio.SYS [3616 1997-12-08] () [File not signed]
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [167040 2018-03-17] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriverx.sys [185432 2018-03-17] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidshx.sys [157368 2018-03-17] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblogx.sys [276688 2018-03-17] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbunivx.sys [50336 2018-03-17] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [42808 2018-03-17] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [39784 2017-09-02] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [124392 2018-03-17] (AVAST Software)
R0 aswNdis; C:\WINDOWS\System32\DRIVERS\aswNdis.sys [12112 2013-11-18] (ALWIL Software)
R0 aswNdis2; C:\WINDOWS\System32\drivers\aswNdis2.sys [392424 2018-03-17] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr.sys [70576 2018-03-17] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [70816 2018-03-17] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [783608 2018-03-17] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [391856 2018-03-17] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\System32\drivers\aswStmXP.sys [205344 2018-03-17] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [310784 2018-03-17] (AVAST Software)
R3 ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [4476416 2009-09-09] (ATI Technologies Inc.) [File not signed]
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [37664 2013-05-20] (AVG Technologies)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R1 Cinemsup; C:\WINDOWS\system32\Drivers\Cinemsup.sys [6656 2002-07-19] (Sonic Solutions) [File not signed]
R3 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2015-02-08] (Disc Soft Ltd)
S3 FsUsbExDisk; C:\WINDOWS\system32\FsUsbExDisk.SYS [36608 2009-03-31] () [File not signed]
S3 gdrv; C:\WINDOWS\gdrv.sys [14656 2008-10-09] (Windows (R) Codename Longhorn DDK provider)
R3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R2 Hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [609624 2014-07-17] (SafeNet Inc.)
R2 Haspnt; C:\WINDOWS\system32\drivers\Haspnt.sys [47616 2008-10-24] (Aladdin Knowledge Systems) [File not signed]
R0 JGOGO; C:\WINDOWS\System32\DRIVERS\JGOGO.sys [6912 2006-02-08] (JMicron )
R0 JRAID; C:\WINDOWS\System32\DRIVERS\jraid.sys [43648 2006-11-21] (JMicron Technology Corp.)
R3 MarvinBus; C:\WINDOWS\System32\DRIVERS\MarvinBus.sys [171520 2007-01-04] (Pinnacle Systems GmbH) [File not signed]
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [47360 2012-03-31] (VSO Software) [File not signed]
R2 ppsio2; C:\WINDOWS\system32\Drivers\ppsio2.sys [22400 1999-04-02] () [File not signed]
R0 sfdrv01; C:\WINDOWS\System32\drivers\sfdrv01.sys [50688 2005-08-10] (Protection Technology) [File not signed]
R0 sfhlp02; C:\WINDOWS\System32\drivers\sfhlp02.sys [6656 2005-05-16] (Protection Technology) [File not signed]
R0 sfvfs02; C:\WINDOWS\System32\drivers\sfvfs02.sys [63488 2005-11-03] (Protection Technology) [File not signed]
R3 SKYNET; C:\WINDOWS\System32\DRIVERS\SkyNET.SYS [507408 2009-09-11] (TechniSat Digital, S.A.)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [320120 2015-02-08] (Duplex Secure Ltd.)
S3 ss_bbus; C:\WINDOWS\System32\DRIVERS\ss_bbus.sys [90112 2009-03-20] (MCCI)
S3 ss_bmdfl; C:\WINDOWS\System32\DRIVERS\ss_bmdfl.sys [14976 2009-03-20] (MCCI Corporation)
S3 ss_bmdm; C:\WINDOWS\System32\DRIVERS\ss_bmdm.sys [121856 2009-03-20] (MCCI Corporation)
R3 tap0801; C:\WINDOWS\System32\DRIVERS\tap0801.sys [26624 2006-10-01] (The OpenVPN Project) [File not signed]
S3 XXLHASP; c:\windows\system32\drivers\XXLHASP.sys [821248 2010-03-01] () [File not signed]
R3 yukonwxp; C:\WINDOWS\System32\DRIVERS\yk51x86.sys [250496 2006-11-22] (Marvell)
S3 CrystalSysInfo; \??\c:\Program Files\MediaCoder Mobile Phone Edition\SysInfo.sys [X]
S4 IntelIde; no ImagePath
S3 NAVENG; \??\C:\Program Files\Norton Security\NortonData\22.9.1.12\Definitions\SDSDefs\20170204.002\NAVENG.SYS [X]
S3 NAVEX15; \??\C:\Program Files\Norton Security\NortonData\22.9.1.12\Definitions\SDSDefs\20170204.002\NAVEX15.SYS [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U1 WS2IFSL; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

Error(1) reading file: "C:\WINDOWS\system32\Drivers\mshdmd.sys."
Error(1) reading file: "C:\EDIT "
2018-03-17 17:08 - 2018-03-17 17:09 - 000023123 _____ C:\Documents and Settings\taborsky\Plocha\FRST.txt
2018-03-17 16:11 - 2018-03-17 16:11 - 001670656 _____ C:\Documents and Settings\taborsky\Plocha\adwcleaner-5-009-multi-win.exe
2018-03-17 14:23 - 2018-03-17 14:23 - 000008538 _____ C:\Documents and Settings\taborsky\Plocha\Addition.rar
2018-03-17 14:15 - 2018-03-17 14:16 - 000000000 ____D C:\FRST
2018-03-17 14:13 - 2018-03-17 14:13 - 000112640 _____ (forum.viry.cz) C:\Documents and Settings\taborsky\Plocha\FRSTLauncher.exe
2018-03-17 14:09 - 2018-03-17 14:09 - 001764352 _____ (Farbar) C:\Documents and Settings\taborsky\Plocha\FRST.exe
2018-03-17 13:50 - 2018-03-17 13:50 - 000087868 ____H C:\WINDOWS\system32\mlfcache.dat
2018-03-17 12:44 - 2018-03-17 12:44 - 000319392 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2018-03-17 12:13 - 2018-03-17 16:16 - 000012142 _____ C:\WINDOWS\SchedLgU.Txt
2018-03-17 12:03 - 2018-03-17 12:03 - 000008130 _____ C:\WINDOWS\ntbtlog.txt
2018-03-03 21:13 - 2018-03-03 21:58 - 000000000 ____D C:\Documents and Settings\taborsky\NabĂdka Start\Programy\FormatFactory
2018-03-03 21:01 - 2018-03-03 21:01 - 000000000 _____ C:\WINDOWS\system32\00000041.tmp
2018-03-03 19:22 - 2018-03-03 21:13 - 000065536 _____ C:\WINDOWS\system32\config\Reason.evt
2018-03-03 18:25 - 2018-03-17 12:13 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared
2018-03-03 18:22 - 2018-03-17 13:52 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikacĂ\Norton
2018-03-03 18:21 - 2018-03-17 13:52 - 000000000 ____D C:\Program Files\NortonInstaller
2018-03-03 18:21 - 2018-03-17 12:12 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikacĂ\NortonInstaller
2018-03-03 18:21 - 2018-03-03 18:25 - 000000000 ____D C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\chromium
2018-03-03 18:18 - 2018-03-03 18:18 - 000000000 ____D C:\Documents and Settings\taborsky\Local Settings\Data aplikac
2018-03-03 09:56 - 2018-03-03 09:56 - 000001242 _____ C:\Documents and Settings\taborsky\NabĂdka Start\Seznam PoĹˇĹĄĂˇk.lnk
2018-02-26 20:47 - 2018-02-26 20:47 - 000000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikacĂ\Temp

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-03-17 17:09 - 2010-12-20 01:26 - 000000000 ____D C:\Documents and Settings\taborsky\Local Settings\Temp
2018-03-17 17:08 - 2010-12-20 01:26 - 000000000 ____D C:\Documents and Settings\taborsky\Plocha
2018-03-17 17:07 - 2010-12-20 01:26 - 000000000 ___HD C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ
2018-03-17 16:45 - 2017-08-28 21:25 - 000000310 ____H C:\WINDOWS\Tasks\Avast Emergency Update.job
2018-03-17 16:31 - 2015-05-19 17:19 - 000000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2018-03-17 16:27 - 2015-06-21 10:45 - 000000000 ____D C:\Documents and Settings\taborsky\Data aplikacĂ\Seznam.cz
2018-03-17 16:27 - 2014-03-22 08:51 - 000000000 ____D C:\AdwCleaner
2018-03-17 16:27 - 2008-10-10 19:12 - 000009151 _____ C:\WINDOWS\WINCMD.INI
2018-03-17 16:22 - 2013-08-07 12:53 - 000000000 ____D C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\LogMeIn Hamachi
2018-03-17 16:22 - 2013-08-07 12:53 - 000000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikacĂ\LogMeIn Hamachi
2018-03-17 16:21 - 2016-06-30 20:05 - 000000460 _____ C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1467313513.job
2018-03-17 16:21 - 2015-05-19 17:19 - 000000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2018-03-17 16:21 - 2010-04-19 00:31 - 000001984 _____ C:\WINDOWS\system32\d3d9caps.dat
2018-03-17 16:21 - 2004-08-18 13:00 - 000013678 _____ C:\WINDOWS\system32\wpa.dbl
2018-03-17 16:19 - 2008-10-17 00:15 - 000000435 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2018-03-17 16:17 - 2008-10-09 22:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-03-17 16:15 - 2010-12-20 01:26 - 000000178 ___SH C:\Documents and Settings\taborsky\ntuser.ini
2018-03-17 16:15 - 2010-12-20 01:26 - 000000000 ____D C:\Documents and Settings\taborsky
2018-03-17 16:14 - 2010-12-20 01:26 - 000000000 __RHD C:\Documents and Settings\taborsky\Data aplikacĂ
2018-03-17 16:14 - 2008-10-09 23:47 - 000000000 __RHD C:\Documents and Settings\All Users\Data aplikacĂ
2018-03-17 16:10 - 2014-04-25 19:31 - 000000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2018-03-17 13:55 - 2010-12-20 01:26 - 000000000 ___RD C:\Documents and Settings\taborsky\NabĂdka Start\Programy
2018-03-17 13:52 - 2008-10-09 23:47 - 000000000 ___RD C:\Documents and Settings\All Users\NabĂdka Start\Programy
2018-03-17 13:52 - 2008-10-09 23:47 - 000000000 ____D C:\Documents and Settings\All Users\Plocha
2018-03-17 12:46 - 2008-10-09 23:40 - 000000000 ___HD C:\WINDOWS\inf
2018-03-17 12:44 - 2017-11-09 21:58 - 000167040 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2018-03-17 12:44 - 2017-08-28 21:25 - 000276688 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblogx.sys
2018-03-17 12:44 - 2017-08-28 21:25 - 000185432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
2018-03-17 12:44 - 2017-08-28 21:25 - 000157368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidshx.sys
2018-03-17 12:44 - 2017-08-28 21:25 - 000050336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbunivx.sys
2018-03-17 12:44 - 2016-06-30 08:48 - 000205344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStmXP.sys
2018-03-17 12:44 - 2014-08-02 06:40 - 000042808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2018-03-17 12:44 - 2013-11-18 21:57 - 000392424 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdis2.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000783608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000391856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000310784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000124392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000070816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000070576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2018-03-17 12:38 - 2014-11-14 23:01 - 000000000 ____D C:\Program Files\TeamViewer
2018-03-17 10:28 - 2010-12-24 14:44 - 000000000 ____D C:\Documents and Settings\taborsky\Data aplikacĂ\Media Player Classic
2018-03-03 18:11 - 2008-10-10 19:31 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikacĂ\Skype
2018-03-03 18:10 - 2010-12-26 21:40 - 000000000 ____D C:\Documents and Settings\taborsky\Data aplikacĂ\Skype
2018-03-03 12:57 - 2010-12-20 01:27 - 000000000 ___RD C:\Documents and Settings\taborsky\Dokumenty\ObrĂˇzky
2018-03-03 09:56 - 2015-06-21 10:46 - 000001824 _____ C:\Documents and Settings\Default User\Plocha\Google Chrome.lnk
2018-03-03 09:56 - 2010-12-20 01:26 - 000000000 ___RD C:\Documents and Settings\taborsky\NabĂdka Start
2018-02-26 20:47 - 2008-10-09 22:01 - 000000000 ___HD C:\Documents and Settings\LocalService\Local Settings\Data aplikacĂ
2018-02-17 23:33 - 2010-12-26 21:51 - 000000000 ____D C:\Documents and Settings\taborsky\Data aplikacĂ\ICQ
2018-02-17 20:13 - 2008-12-13 13:15 - 000000000 ____D C:\WINDOWS\network diagnostic

==================== Files in the root of some directories =======

2011-01-02 22:28 - 2015-11-28 15:14 - 000000098 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\default.pls
2010-12-24 13:23 - 2016-07-01 11:19 - 000005196 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\froggy_scorebox
2012-03-31 14:18 - 2012-03-31 14:18 - 000087608 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\inst.exe
2012-03-31 14:18 - 2012-03-31 14:18 - 000007887 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\pcouffin.cat
2012-03-31 14:18 - 2012-03-31 14:18 - 000001144 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\pcouffin.inf
2012-03-31 14:18 - 2012-03-31 14:18 - 000000034 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\pcouffin.log
2012-03-31 14:18 - 2012-03-31 14:18 - 000047360 _____ (VSO Software) C:\Documents and Settings\taborsky\Data aplikacĂ\pcouffin.sys
2010-12-24 13:23 - 2016-07-01 11:19 - 000001595 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\pl_accounts.pl_acc
2011-06-06 22:14 - 2014-06-18 23:49 - 000000033 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\PV_ACAD.bin
2010-12-24 13:23 - 2016-07-01 11:19 - 000000556 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\Troll.options
2012-03-31 14:19 - 2012-04-10 11:03 - 000000668 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\vso_ts_preview.xml
2012-11-06 00:42 - 2017-11-30 22:53 - 000028672 _____ () C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-11-07 00:32 - 2011-11-07 00:32 - 000000128 _____ () C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\fusioncache.dat
2014-12-21 20:33 - 2014-12-21 20:33 - 000000001 _____ () C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\llftool.4.40.agreement
2017-09-28 11:23 - 2017-09-28 11:36 - 000000096 _____ () C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\rbxcsettings.rbx
2009-12-25 10:19 - 2009-12-25 10:19 - 000000008 __RSH () C:\Documents and Settings\All Users\Data aplikacĂ\E255105B2D.sys
2008-10-10 19:34 - 2008-10-10 19:34 - 000000032 ____N () C:\Documents and Settings\All Users\Data aplikacĂ\ezsid.dat
2009-12-25 10:19 - 2012-12-01 02:02 - 000003192 ___SH () C:\Documents and Settings\All Users\Data aplikacĂ\KGyGaAvL.sys
2008-10-20 17:34 - 2016-08-14 22:40 - 000000024 _____ () C:\Documents and Settings\All Users\Data aplikacĂ\__FileUploader.log
2010-08-28 11:03 - 2010-08-29 15:27 - 001492126 _____ () C:\Documents and Settings\All Users\Data aplikacĂ\__wdump.txt

Some files in TEMP:
====================
2018-03-17 12:03 - 2018-03-17 12:03 - 000008728 _____ () C:\Documents and Settings\taborsky\Local Settings\Temp\BullseyeCoverage-2-x86.dll
2015-08-14 13:29 - 2015-07-29 21:08 - 000681097 _____ (SQLite Development Team) C:\Documents and Settings\taborsky\Local Settings\Temp\sqlite3.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Avast Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1467313513.job => C:\Program Files\AVAST Software\SZBrowser\launcher.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Norton Security (Enabled - Up to date) {E10A9785-9598-4754-B552-92431C1C35F8}
AV: Avast Antivirus (Enabled - Up to date) {7591db91-41f0-48a3-b128-1a293fd8233d}
FW: Avast Antivirus (Disabled) {7591db91-41f0-48a3-b128-1a293fd8233d}
FW: Norton Security (Disabled) {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\taborsky\Plocha" je 5 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JobManagerService.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JobManagerService.exe:*:Enabled:JobManagerService.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMAdmin.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMAdmin.exe:*:Enabled:JMAdmin.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMPassword.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMPassword.exe:*:Enabled:JMPassword.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\ScriptHostService.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\ScriptHostService.exe:*:Enabled:ScriptHostService.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CommonFiles\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CommonFiles\\intel\\AnsysWBU.exe:*:Enabled:AnsysWBU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\ANSYS\\bin\\intel\\ANSYS.exe"="C:\\Program Files\\ANSYS Inc\\v110\\ANSYS\\bin\\intel\\ANSYS.exe:*:Enabled:ANSYS.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ActivePIMgrU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ActivePIMgrU.exe:*:Enabled:ActivePIMgrU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ReaderHostU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ReaderHostU.exe:*:Enabled:ReaderHostU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\tclsh.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\tclsh.exe:*:Enabled:AWP tclsh.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\wish.exe:*:Enabled:AWP wish.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\CATIAV5\\intel\\code\\bin\\ReaderHostCAT5U.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\CATIAV5\\intel\\code\\bin\\ReaderHostCAT5U.exe:*:Enabled:ReaderHostCAT5U.exe"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\ICQ7.4\\ICQ.exe"="C:\\Program Files\\ICQ7.4\\ICQ.exe:*:Enabled:ICQ7.4"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\DVBViewerTE\\ts_winlirc.exe"="C:\\Program Files\\DVBViewerTE\\ts_winlirc.exe:*:Enabled:ts_winlirc"
"C:\\Program Files\\ICQ6\\ICQ.exe"="C:\\Program Files\\ICQ6\\ICQ.exe:*:Enabled:ICQ6"
"C:\\Program Files\\Hummingbird\\Connectivity\\7.10\\Exceed\\exceed.exe"="C:\\Program Files\\Hummingbird\\Connectivity\\7.10\\Exceed\\exceed.exe:*:Enabled:X server for Win32"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JobManagerService.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JobManagerService.exe:*:Enabled:JobManagerService.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMAdmin.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMAdmin.exe:*:Enabled:JMAdmin.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMPassword.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMPassword.exe:*:Enabled:JMPassword.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\ScriptHostService.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\ScriptHostService.exe:*:Enabled:ScriptHostService.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CommonFiles\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CommonFiles\\intel\\AnsysWBU.exe:*:Enabled:AnsysWBU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\ANSYS\\bin\\intel\\ANSYS.exe"="C:\\Program Files\\ANSYS Inc\\v110\\ANSYS\\bin\\intel\\ANSYS.exe:*:Enabled:ANSYS.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ActivePIMgrU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ActivePIMgrU.exe:*:Enabled:ActivePIMgrU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ReaderHostU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ReaderHostU.exe:*:Enabled:ReaderHostU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\tclsh.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\tclsh.exe:*:Enabled:AWP tclsh.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\wish.exe:*:Enabled:AWP wish.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\CATIAV5\\intel\\code\\bin\\ReaderHostCAT5U.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\CATIAV5\\intel\\code\\bin\\ReaderHostCAT5U.exe:*:Enabled:ReaderHostCAT5U.exe"
"C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\intel\\lmgrd.exe"="C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\intel\\lmgrd.exe:*:Enabled:lmgrd"
"C:\\Program Files\\Pinnacle\\Studio 11\\programs\\RM.exe"="C:\\Program Files\\Pinnacle\\Studio 11\\programs\\RM.exe:*:Enabled:Render Manager"
"C:\\Program Files\\Pinnacle\\Studio 11\\programs\\Studio.exe"="C:\\Program Files\\Pinnacle\\Studio 11\\programs\\Studio.exe:*:Enabled:Studio"
"C:\\Program Files\\Pinnacle\\Studio 11\\programs\\PMSRegisterFile.exe"="C:\\Program Files\\Pinnacle\\Studio 11\\programs\\PMSRegisterFile.exe:*:Enabled:PMSRegisterFile"
"C:\\Program Files\\Pinnacle\\Studio 11\\programs\\umi.exe"="C:\\Program Files\\Pinnacle\\Studio 11\\programs\\umi.exe:*:Enabled:umi"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\TrackMania Nations ESWC\\TmNationsESWC.exe"="C:\\Program Files\\TrackMania Nations ESWC\\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"C:\\Program Files\\ANSYS Inc\\v120\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v120\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled: "
"C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansysli_client.exe"="C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansysli_client.exe:*:Enabled:ANSYS Licensing Interconnect Application"
"C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\Ansys.SolverManager.exe"="C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\Ansys.SolverManager.exe:*:Enabled:Ansys.SolverManager"
"C:\\Program Files\\ANSYS Inc\\v120\\commonfiles\\TCL\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v120\\commonfiles\\TCL\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"C:\\Program Files\\ICQ6.5\\ICQ.exe"="C:\\Program Files\\ICQ6.5\\ICQ.exe:*:Enabled:ICQ6"
"C:\\Program Files\\Java\\jre6\\bin\\javaw.exe"="C:\\Program Files\\Java\\jre6\\bin\\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\Java\\jre6\\bin\\java.exe"="C:\\Program Files\\Java\\jre6\\bin\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v120\\commonfiles\\jre\\intel\\bin\\java.exe"="C:\\Program Files\\ANSYS Inc\\v120\\commonfiles\\jre\\intel\\bin\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\Order Of War\\oow_final_dx9.exe"="C:\\Program Files\\Order Of War\\oow_final_dx9.exe:*:Enabled:ORDER OF WAR"
"C:\\Program Files\\ANSYS Inc\\v121\\commonfiles\\Tcl\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v121\\commonfiles\\Tcl\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v121\\commonfiles\\jre\\intel\\bin\\java.exe"="C:\\Program Files\\ANSYS Inc\\v121\\commonfiles\\jre\\intel\\bin\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v121\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v121\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled:ANSYS Workbench"
"C:\\Program Files\\ANSYS Inc\\v121\\aisol\\bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v121\\aisol\\bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"C:\\Program Files\\Nero\\Nero8\\Nero ShowTime\\ShowTime.exe"="C:\\Program Files\\Nero\\Nero8\\Nero ShowTime\\ShowTime.exe:*:Enabled:Nero ShowTime"
"C:\\Program Files\\ANSYS Inc\\v121\\aisol\\bin\\intel\\AnsMeshingServer.exe"="C:\\Program Files\\ANSYS Inc\\v121\\aisol\\bin\\intel\\AnsMeshingServer.exe:*:Enabled:AnsMeshingServer"
"C:\\Program Files\\DVBViewer TE2\\ts_winlirc.exe"="C:\\Program Files\\DVBViewer TE2\\ts_winlirc.exe:*:Disabled:ts_winlirc"
"C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\AnsMeshingServer.exe"="C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\AnsMeshingServer.exe:*:Enabled:AnsMeshingServer"
"C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\RM.exe"="C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\RM.exe:*:Enabled:Render Manager"
"C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\Studio.exe"="C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\Studio.exe:*:Enabled:Studio"
"C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\umi.exe"="C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\umi.exe:*:Enabled:umi"
"C:\\Program Files\\ANSYS Inc\\v130\\commonfiles\\Tcl\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v130\\commonfiles\\Tcl\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v130\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v130\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled:ANSYS Workbench"
"C:\\Program Files\\ANSYS Inc\\v130\\aisol\\bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v130\\aisol\\bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"E:\\INSTALLER\\HPBCSIINSTALLER.EXE"="E:\\INSTALLER\\HPBCSIINSTALLER.EXE:*:Enabled:HP Networked Printer Installer"
"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\\Program Files\\ICQ7.4\\ICQ.exe"="C:\\Program Files\\ICQ7.4\\ICQ.exe:*:Enabled:ICQ7.4"
"C:\\Program Files\\ANSYS Inc\\v130\\commonfiles\\jre\\intel\\bin\\java.exe"="C:\\Program Files\\ANSYS Inc\\v130\\commonfiles\\jre\\intel\\bin\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v140\\commonfiles\\Tcl\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v140\\commonfiles\\Tcl\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v140\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v140\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled:ANSYS Workbench"
"C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"C:\\Program Files\\ANSYS Inc\\v140\\commonfiles\\jre\\intel\\bin\\java.exe"="C:\\Program Files\\ANSYS Inc\\v140\\commonfiles\\jre\\intel\\bin\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\ReaderHostU.exe"="C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\ReaderHostU.exe:*:Enabled:ReaderHost Module"
"C:\\Program Files\\ANSYS Inc\\v140\\RSM\\bin\\Ans.Rsm.JMHost.exe"="C:\\Program Files\\ANSYS Inc\\v140\\RSM\\bin\\Ans.Rsm.JMHost.exe:*:Enabled: "
"C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\AnsMeshingServer.exe"="C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\AnsMeshingServer.exe:*:Enabled:AnsMeshingServer"
"C:\\Program Files\\Java\\jre7\\bin\\javaw.exe"="C:\\Program Files\\Java\\jre7\\bin\\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v145\\commonfiles\\Tcl\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v145\\commonfiles\\Tcl\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v145\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v145\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled:ANSYS Workbench"
"C:\\Program Files\\ANSYS Inc\\v145\\aisol\\bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v145\\aisol\\bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"C:\\Program Files\\ANSYS Inc\\v145\\RSM\\bin\\Ans.Rsm.JMHost.exe"="C:\\Program Files\\ANSYS Inc\\v145\\RSM\\bin\\Ans.Rsm.JMHost.exe:*:Enabled:ANSYS RSM Job Manager Service"
"C:\\WINDOWS\\system32\\javaw.exe"="C:\\WINDOWS\\system32\\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v145\\RSM\\bin\\Ans.Rsm.Admin.exe"="C:\\Program Files\\ANSYS Inc\\v145\\RSM\\bin\\Ans.Rsm.Admin.exe:*:Enabled:ANSYS RSM Admin 2"
"C:\\Program Files\\ANSYS Inc\\v150\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v150\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled:ANSYS Workbench"
"C:\\Program Files\\ANSYS Inc\\v150\\commonfiles\\Tcl\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v150\\commonfiles\\Tcl\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v150\\RSM\\bin\\Ans.Rsm.JMHost.exe"="C:\\Program Files\\ANSYS Inc\\v150\\RSM\\bin\\Ans.Rsm.JMHost.exe:*:Enabled:ANSYS RSM Job Manager Service"
"C:\\Program Files\\ANSYS Inc\\v150\\aisol\\bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v150\\aisol\\bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"C:\\Program Files\\ANSYS Inc\\v150\\RSM\\bin\\Ans.Rsm.Admin.exe"="C:\\Program Files\\ANSYS Inc\\v150\\RSM\\bin\\Ans.Rsm.Admin.exe:*:Enabled:ANSYS RSM Admin 2"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"
"C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansysli_server.exe"="C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansysli_server.exe:*:Enabled:ANSYS Licensing Interconnect Application. Modified for ANSYS Release 15.0."
"C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansyslmd.exe"="C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansyslmd.exe:*:Enabled:ansyslmd daemon. Modified for ANSYS Release 15.0."
"C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\lmgrd.exe"="C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\lmgrd.exe:*:Enabled:Flexera Software LLC"
"C:\\Program Files\\ANSYS Inc\\v150\\aisol\\bin\\intel\\AnsMeshingServer.exe"="C:\\Program Files\\ANSYS Inc\\v150\\aisol\\bin\\intel\\AnsMeshingServer.exe:*:Enabled:AnsMeshingServer"
"C:\\Program Files\\Java\\jre1.8.0_31\\bin\\javaw.exe"="C:\\Program Files\\Java\\jre1.8.0_31\\bin\\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\World_of_Tanks\\WoTLauncher.exe"="C:\\Program Files\\World_of_Tanks\\WoTLauncher.exe:*:Enabled:World of Tanks Launcher"
"C:\\Program Files\\World_of_Tanks\\WorldOfTanks.exe"="C:\\Program Files\\World_of_Tanks\\WorldOfTanks.exe:*:Enabled:World of Tanks"
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\\WINDOWS\\system32\\hasplms.exe"="C:\\WINDOWS\\system32\\hasplms.exe:*:Enabled:Sentinel License Manager"
"C:\\Program Files\\TeamViewer\\TeamViewer.exe"="C:\\Program Files\\TeamViewer\\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\\Program Files\\TeamViewer\\TeamViewer_Service.exe"="C:\\Program Files\\TeamViewer\\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\\Documents and Settings\\taborsky\\Local Settings\\Data aplikacˇ\\chromium\\Application\\chrome.exe"="C:\\Documents and Settings\\taborsky\\Local Settings\\Data aplikacˇ\\chromium\\Application\\chrome.exe:*:Enabled:Chromium"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:*:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:*:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:*:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:*:Enabled:@xpsp2res.dll,-22002"
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1947:TCP"="1947:TCP:*:Enabled:HASP SRM "
"1947:UDP"="1947:UDP:*:Enabled:HASP SRM "
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"

xrobat · #6 Příspěvek od **xrobat** » 17 bře 2018 17:38

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000

==================== End Of Log ==============================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14.03.2018
Ran by taborsky (administrator) on JIRKA (17-03-2018 17:12:23)
Running from C:\Documents and Settings\taborsky\Plocha
Loaded Profiles: taborsky (Available Profiles: ilona & taborsky & help)
Platform: SystĂ©m Microsoft Windows XP Professional Service Pack 3 (X86) Language: ÄŚeĹˇtina
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(SafeNet Inc.) C:\WINDOWS\system32\hasplms.exe
(HP) C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
(Hummingbird Ltd.) C:\WINDOWS\system32\Hummingbird\Connectivity\7.10\Jconfig\jconfigdnt.exe
(Hummingbird Ltd.) C:\WINDOWS\system32\Hummingbird\Connectivity\7.10\Jconfig\hjavaw.exe
(LogMeIn, Inc.) C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
(Oracle Corporation) C:\Program Files\Java\jre1.8.0_31\bin\javaw.exe
(Prolific Technology Inc.) C:\WINDOWS\system32\IoctlSvc.exe
() C:\WINDOWS\system32\PSIService.exe
(Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(Pinnacle Systems GmbH) C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
(HP) C:\Program Files\HP\HP LaserJet Professional CP1020 Series\HPCP1020STRAY.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
(MyHeritage) C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Documents and Settings\taborsky\Plocha\FRSTLauncher.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16270848 2006-11-14] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [69632 2005-05-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [JMB36X IDE Setup] => C:\WINDOWS\JM\JMInsIDE.exe [36864 2006-10-31] ()
HKLM\...\Run: [36X Raid Configurer] => C:\WINDOWS\system32\JMRaidSetup.exe [1953792 2006-11-17] (Gigabyte Technology Corp.)
HKLM\...\Run: [USBToolTip] => C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe [199752 2007-02-20] (Pinnacle Systems GmbH)
HKLM\...\Run: [HP CP1020 System Tray] => C:\Program Files\HP\HP LaserJet Professional CP1020 Series\HPCP1020STRAY.EXE [2627384 2010-05-12] (HP)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [245608 2018-03-17] (AVAST Software)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [5883912 2017-03-02] (LogMeIn Inc.)
HKLM\...\Run: [UserFaultCheck] => %systemroot%\system32\dumprep 0 -u
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Family Tree Builder Update] => C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe [17526448 2018-01-30] (MyHeritage)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2009-09-09] (ATI Technologies Inc.)
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [cz.seznam.software.autoupdate] => C:\Documents and Settings\taborsky\Data aplikacĂ\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [cz.seznam.software.szndesktop] => C:\Documents and Settings\taborsky\Data aplikacĂ\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [Chromium] => c:\documents and settings\taborsky\local settings\data aplikacĂ\chromium\application\chrome.exe [666624 2018-03-04] ()
HKU\S-1-5-21-1409082233-573735546-725345543-1010\...\Run: [GoogleChromeAutoLaunch_1C26074332C9A89230F9FEE175C742F6] => C:\documents and settings\taborsky\local settings\data aplikacĂ\chromium\application\chrome.exe [666624 2018-03-04] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{48686280-E9EC-451A-B781-FAE5189670D2}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-1409082233-573735546-725345543-1010\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKLM -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1409082233-573735546-725345543-1010 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL =
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-02-07] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2018-03-17] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-07] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-1409082233-573735546-725345543-1010 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Program Files\VVD CAD Systems\urlmon.dll [1999-05-05] (Microsoft Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-09-02] [Legacy] [not signed]
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2009-11-14] (DivX,Inc.)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll [2009-11-14] (DivX, Inc)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-07] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-07] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.12.69 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll [2008-09-10] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.69 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll [2008-09-10] (RealNetworks, Inc.)
FF Plugin: @thrixxx.com/WebLaunch -> C:\Program Files\thriXXX\WebLaunch\Binaries\npWebLaunch.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1409082233-573735546-725345543-1010: @thrixxx.com/WebLaunch -> C:\Program Files\thriXXX\WebLaunch\Binaries\npWebLaunch.dll [No File]
FF Plugin HKU\S-1-5-21-1409082233-573735546-725345543-1010: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Unity\WebPlayer\loader\npUnity3D32.dll [2015-12-04] (Unity Technologies ApS)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR HomePage: Profile 1 -> hxxp://www.idnes.cz/
CHR StartupUrls: Profile 1 -> "hxxp://www.idnes.cz/"
CHR NewTab: Profile 1 -> Not-active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR Profile: C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default [2018-03-17]
CHR Extension: (Seznam LiĹˇtiÄŤka - Email) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-11-03]
CHR Extension: (Seznam LiĹˇtiÄŤka - SlovnĂk) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-11-03]
CHR Extension: (Seznam LiĹˇtiÄŤka - RychlĂˇ volba) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-11-03]
CHR Profile: C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1 [2018-03-17]
CHR Extension: (VolĂˇnĂ pĹ™es Skype) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2018-02-04]
CHR Extension: (Java API Search) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\dphfngjamcomlehblpblaacingmaojnm [2016-07-02]
CHR Extension: (FormApps Extension) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2017-08-28]
CHR Extension: (Cisco WebEx Extension) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2017-08-28]
CHR Extension: (Platby InternetovĂ©ho obchodu Chrome) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-28]
CHR Extension: (Seznam pro Chrome - Esko) - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\Profile 1\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-02-02]
CHR Profile: C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\User Data\System Profile [2016-12-19]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1409082233-573735546-725345543-1010\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lomkcaancjhmeojfiekilnciafkhloih] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: chrome.exe - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\Application\chrome.exe
StartMenuInternet: Google Chrome.4OIX2A7UUQBUZQHGOIWKQWPX5U - C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2018-02-07] (Adobe Systems Incorporated) [File not signed]
S4 ANSYS, Inc. License Manager; C:\Program Files\ANSYS Inc\Shared Files\Licensing\win32\ansysli_server.exe [3747840 2014-01-07] (ANSYS, Inc.) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5909888 2018-03-17] (AVAST Software)
R2 Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [602112 2009-09-09] (ATI Technologies Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [303728 2018-03-17] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [357760 2018-03-17] (AVAST Software)
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2008-11-29] (Macrovision Europe Ltd.) [File not signed]
R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2282504 2017-03-02] (LogMeIn Inc.)
R2 hasplms; C:\WINDOWS\system32\hasplms.exe [4683144 2014-07-17] (SafeNet Inc.)
S4 HCLInetd; C:\WINDOWS\system32\Hummingbird\Connectivity\7.10\Inetd\inetd32.exe [32768 2001-07-26] (Hummingbird Ltd.) [File not signed]
R2 HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [142336 2010-04-12] (HP) [File not signed]
R2 Jconfigd; C:\WINDOWS\system32\Hummingbird\Connectivity\7.10\Jconfig\jconfigdnt.exe [28672 2001-07-23] (Hummingbird Ltd.) [File not signed]
S2 JobManagerService110; C:\Program Files\ANSYS Inc\v110\RSM\bin\JobManagerService.exe [20480 2007-09-20] (Ansys, Inc) [File not signed]
R2 LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [405424 2017-02-27] (LogMeIn, Inc.)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [16384 2006-10-01] () [File not signed]
S2 PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [File not signed]
R2 PLFlash DeviceIoControl Service; C:\WINDOWS\system32\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed]
R2 ProtexisLicensing; C:\WINDOWS\system32\PSIService.exe [174656 2006-11-02] () [File not signed]
S2 ScriptHostService110; C:\Program Files\ANSYS Inc\v110\RSM\bin\ScriptHostService.exe [20480 2007-09-20] (Ansys, Inc.) [File not signed]
S3 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [430592 2008-04-07] (Nokia.) [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [10803440 2017-12-18] (TeamViewer GmbH)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 61883; C:\WINDOWS\System32\DRIVERS\61883.sys [48128 2008-04-13] (Microsoft Corporation)
R2 aksfridge; C:\WINDOWS\System32\DRIVERS\aksfridge.sys [425304 2014-07-17] (SafeNet Inc.)
S3 akshasp; C:\WINDOWS\System32\DRIVERS\akshasp.sys [244040 2014-07-17] (SafeNet Inc.)
S3 akshhl; C:\WINDOWS\System32\DRIVERS\akshhl.sys [53192 2014-07-17] (SafeNet Inc.)
S3 aksusb; C:\WINDOWS\System32\DRIVERS\aksusb.sys [296200 2014-07-17] (SafeNet Inc.)
R1 as6eio; C:\WINDOWS\System32\drivers\as6eio.SYS [3616 1997-12-08] () [File not signed]
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [167040 2018-03-17] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriverx.sys [185432 2018-03-17] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidshx.sys [157368 2018-03-17] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblogx.sys [276688 2018-03-17] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbunivx.sys [50336 2018-03-17] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [42808 2018-03-17] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [39784 2017-09-02] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [124392 2018-03-17] (AVAST Software)
R0 aswNdis; C:\WINDOWS\System32\DRIVERS\aswNdis.sys [12112 2013-11-18] (ALWIL Software)
R0 aswNdis2; C:\WINDOWS\System32\drivers\aswNdis2.sys [392424 2018-03-17] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr.sys [70576 2018-03-17] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [70816 2018-03-17] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [783608 2018-03-17] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [391856 2018-03-17] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\System32\drivers\aswStmXP.sys [205344 2018-03-17] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [310784 2018-03-17] (AVAST Software)
R3 ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [4476416 2009-09-09] (ATI Technologies Inc.) [File not signed]
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [37664 2013-05-20] (AVG Technologies)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R1 Cinemsup; C:\WINDOWS\system32\Drivers\Cinemsup.sys [6656 2002-07-19] (Sonic Solutions) [File not signed]
R3 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2015-02-08] (Disc Soft Ltd)
S3 FsUsbExDisk; C:\WINDOWS\system32\FsUsbExDisk.SYS [36608 2009-03-31] () [File not signed]
S3 gdrv; C:\WINDOWS\gdrv.sys [14656 2008-10-09] (Windows (R) Codename Longhorn DDK provider)
R3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R2 Hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [609624 2014-07-17] (SafeNet Inc.)
R2 Haspnt; C:\WINDOWS\system32\drivers\Haspnt.sys [47616 2008-10-24] (Aladdin Knowledge Systems) [File not signed]
R0 JGOGO; C:\WINDOWS\System32\DRIVERS\JGOGO.sys [6912 2006-02-08] (JMicron )
R0 JRAID; C:\WINDOWS\System32\DRIVERS\jraid.sys [43648 2006-11-21] (JMicron Technology Corp.)
R3 MarvinBus; C:\WINDOWS\System32\DRIVERS\MarvinBus.sys [171520 2007-01-04] (Pinnacle Systems GmbH) [File not signed]
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [47360 2012-03-31] (VSO Software) [File not signed]
R2 ppsio2; C:\WINDOWS\system32\Drivers\ppsio2.sys [22400 1999-04-02] () [File not signed]
R0 sfdrv01; C:\WINDOWS\System32\drivers\sfdrv01.sys [50688 2005-08-10] (Protection Technology) [File not signed]
R0 sfhlp02; C:\WINDOWS\System32\drivers\sfhlp02.sys [6656 2005-05-16] (Protection Technology) [File not signed]
R0 sfvfs02; C:\WINDOWS\System32\drivers\sfvfs02.sys [63488 2005-11-03] (Protection Technology) [File not signed]
R3 SKYNET; C:\WINDOWS\System32\DRIVERS\SkyNET.SYS [507408 2009-09-11] (TechniSat Digital, S.A.)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [320120 2015-02-08] (Duplex Secure Ltd.)
S3 ss_bbus; C:\WINDOWS\System32\DRIVERS\ss_bbus.sys [90112 2009-03-20] (MCCI)
S3 ss_bmdfl; C:\WINDOWS\System32\DRIVERS\ss_bmdfl.sys [14976 2009-03-20] (MCCI Corporation)
S3 ss_bmdm; C:\WINDOWS\System32\DRIVERS\ss_bmdm.sys [121856 2009-03-20] (MCCI Corporation)
R3 tap0801; C:\WINDOWS\System32\DRIVERS\tap0801.sys [26624 2006-10-01] (The OpenVPN Project) [File not signed]
S3 XXLHASP; c:\windows\system32\drivers\XXLHASP.sys [821248 2010-03-01] () [File not signed]
R3 yukonwxp; C:\WINDOWS\System32\DRIVERS\yk51x86.sys [250496 2006-11-22] (Marvell)
S3 CrystalSysInfo; \??\c:\Program Files\MediaCoder Mobile Phone Edition\SysInfo.sys [X]
S4 IntelIde; no ImagePath
S3 NAVENG; \??\C:\Program Files\Norton Security\NortonData\22.9.1.12\Definitions\SDSDefs\20170204.002\NAVENG.SYS [X]
S3 NAVEX15; \??\C:\Program Files\Norton Security\NortonData\22.9.1.12\Definitions\SDSDefs\20170204.002\NAVEX15.SYS [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U1 WS2IFSL; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

Error(1) reading file: "C:\WINDOWS\system32\Drivers\mshdmd.sys."
Error(1) reading file: "C:\EDIT "
2018-03-17 17:12 - 2018-03-17 17:12 - 000023123 _____ C:\Documents and Settings\taborsky\Plocha\FRST.txt
2018-03-17 17:10 - 2018-03-17 17:10 - 000054285 _____ C:\Documents and Settings\taborsky\Plocha\FRST3.txt
2018-03-17 16:11 - 2018-03-17 16:11 - 001670656 _____ C:\Documents and Settings\taborsky\Plocha\adwcleaner-5-009-multi-win.exe
2018-03-17 14:23 - 2018-03-17 14:23 - 000008538 _____ C:\Documents and Settings\taborsky\Plocha\Addition.rar
2018-03-17 14:15 - 2018-03-17 14:16 - 000000000 ____D C:\FRST
2018-03-17 14:13 - 2018-03-17 14:13 - 000112640 _____ (forum.viry.cz) C:\Documents and Settings\taborsky\Plocha\FRSTLauncher.exe
2018-03-17 14:09 - 2018-03-17 14:09 - 001764352 _____ (Farbar) C:\Documents and Settings\taborsky\Plocha\FRST.exe
2018-03-17 13:50 - 2018-03-17 13:50 - 000087868 ____H C:\WINDOWS\system32\mlfcache.dat
2018-03-17 12:44 - 2018-03-17 12:44 - 000319392 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2018-03-17 12:13 - 2018-03-17 16:16 - 000012622 _____ C:\WINDOWS\SchedLgU.Txt
2018-03-17 12:03 - 2018-03-17 12:03 - 000008130 _____ C:\WINDOWS\ntbtlog.txt
2018-03-03 21:13 - 2018-03-03 21:58 - 000000000 ____D C:\Documents and Settings\taborsky\NabĂdka Start\Programy\FormatFactory
2018-03-03 21:01 - 2018-03-03 21:01 - 000000000 _____ C:\WINDOWS\system32\00000041.tmp
2018-03-03 19:22 - 2018-03-03 21:13 - 000065536 _____ C:\WINDOWS\system32\config\Reason.evt
2018-03-03 18:25 - 2018-03-17 12:13 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared
2018-03-03 18:22 - 2018-03-17 13:52 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikacĂ\Norton
2018-03-03 18:21 - 2018-03-17 13:52 - 000000000 ____D C:\Program Files\NortonInstaller
2018-03-03 18:21 - 2018-03-17 12:12 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikacĂ\NortonInstaller
2018-03-03 18:21 - 2018-03-03 18:25 - 000000000 ____D C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\chromium
2018-03-03 18:18 - 2018-03-03 18:18 - 000000000 ____D C:\Documents and Settings\taborsky\Local Settings\Data aplikac
2018-03-03 09:56 - 2018-03-03 09:56 - 000001242 _____ C:\Documents and Settings\taborsky\NabĂdka Start\Seznam PoĹˇĹĄĂˇk.lnk
2018-02-26 20:47 - 2018-02-26 20:47 - 000000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikacĂ\Temp

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-03-17 17:12 - 2010-12-20 01:26 - 000000000 ___HD C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ
2018-03-17 17:12 - 2010-12-20 01:26 - 000000000 ____D C:\Documents and Settings\taborsky\Plocha
2018-03-17 17:12 - 2010-12-20 01:26 - 000000000 ____D C:\Documents and Settings\taborsky\Local Settings\Temp
2018-03-17 17:10 - 2014-04-25 19:31 - 000000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2018-03-17 16:45 - 2017-08-28 21:25 - 000000310 ____H C:\WINDOWS\Tasks\Avast Emergency Update.job
2018-03-17 16:31 - 2015-05-19 17:19 - 000000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2018-03-17 16:27 - 2015-06-21 10:45 - 000000000 ____D C:\Documents and Settings\taborsky\Data aplikacĂ\Seznam.cz
2018-03-17 16:27 - 2014-03-22 08:51 - 000000000 ____D C:\AdwCleaner
2018-03-17 16:27 - 2008-10-10 19:12 - 000009151 _____ C:\WINDOWS\WINCMD.INI
2018-03-17 16:22 - 2013-08-07 12:53 - 000000000 ____D C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\LogMeIn Hamachi
2018-03-17 16:22 - 2013-08-07 12:53 - 000000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikacĂ\LogMeIn Hamachi
2018-03-17 16:21 - 2016-06-30 20:05 - 000000460 _____ C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1467313513.job
2018-03-17 16:21 - 2015-05-19 17:19 - 000000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2018-03-17 16:21 - 2010-04-19 00:31 - 000001984 _____ C:\WINDOWS\system32\d3d9caps.dat
2018-03-17 16:21 - 2004-08-18 13:00 - 000013678 _____ C:\WINDOWS\system32\wpa.dbl
2018-03-17 16:19 - 2008-10-17 00:15 - 000000435 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2018-03-17 16:17 - 2008-10-09 22:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-03-17 16:15 - 2010-12-20 01:26 - 000000178 ___SH C:\Documents and Settings\taborsky\ntuser.ini
2018-03-17 16:15 - 2010-12-20 01:26 - 000000000 ____D C:\Documents and Settings\taborsky
2018-03-17 16:14 - 2010-12-20 01:26 - 000000000 __RHD C:\Documents and Settings\taborsky\Data aplikacĂ
2018-03-17 16:14 - 2008-10-09 23:47 - 000000000 __RHD C:\Documents and Settings\All Users\Data aplikacĂ
2018-03-17 13:55 - 2010-12-20 01:26 - 000000000 ___RD C:\Documents and Settings\taborsky\NabĂdka Start\Programy
2018-03-17 13:52 - 2008-10-09 23:47 - 000000000 ___RD C:\Documents and Settings\All Users\NabĂdka Start\Programy
2018-03-17 13:52 - 2008-10-09 23:47 - 000000000 ____D C:\Documents and Settings\All Users\Plocha
2018-03-17 12:46 - 2008-10-09 23:40 - 000000000 ___HD C:\WINDOWS\inf
2018-03-17 12:44 - 2017-11-09 21:58 - 000167040 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2018-03-17 12:44 - 2017-08-28 21:25 - 000276688 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblogx.sys
2018-03-17 12:44 - 2017-08-28 21:25 - 000185432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
2018-03-17 12:44 - 2017-08-28 21:25 - 000157368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidshx.sys
2018-03-17 12:44 - 2017-08-28 21:25 - 000050336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbunivx.sys
2018-03-17 12:44 - 2016-06-30 08:48 - 000205344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStmXP.sys
2018-03-17 12:44 - 2014-08-02 06:40 - 000042808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2018-03-17 12:44 - 2013-11-18 21:57 - 000392424 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdis2.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000783608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000391856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000310784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000124392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000070816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2018-03-17 12:44 - 2013-10-17 21:14 - 000070576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2018-03-17 12:38 - 2014-11-14 23:01 - 000000000 ____D C:\Program Files\TeamViewer
2018-03-17 10:28 - 2010-12-24 14:44 - 000000000 ____D C:\Documents and Settings\taborsky\Data aplikacĂ\Media Player Classic
2018-03-03 18:11 - 2008-10-10 19:31 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikacĂ\Skype
2018-03-03 18:10 - 2010-12-26 21:40 - 000000000 ____D C:\Documents and Settings\taborsky\Data aplikacĂ\Skype
2018-03-03 12:57 - 2010-12-20 01:27 - 000000000 ___RD C:\Documents and Settings\taborsky\Dokumenty\ObrĂˇzky
2018-03-03 09:56 - 2015-06-21 10:46 - 000001824 _____ C:\Documents and Settings\Default User\Plocha\Google Chrome.lnk
2018-03-03 09:56 - 2010-12-20 01:26 - 000000000 ___RD C:\Documents and Settings\taborsky\NabĂdka Start
2018-02-26 20:47 - 2008-10-09 22:01 - 000000000 ___HD C:\Documents and Settings\LocalService\Local Settings\Data aplikacĂ
2018-02-17 23:33 - 2010-12-26 21:51 - 000000000 ____D C:\Documents and Settings\taborsky\Data aplikacĂ\ICQ
2018-02-17 20:13 - 2008-12-13 13:15 - 000000000 ____D C:\WINDOWS\network diagnostic

==================== Files in the root of some directories =======

2011-01-02 22:28 - 2015-11-28 15:14 - 000000098 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\default.pls
2010-12-24 13:23 - 2016-07-01 11:19 - 000005196 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\froggy_scorebox
2012-03-31 14:18 - 2012-03-31 14:18 - 000087608 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\inst.exe
2012-03-31 14:18 - 2012-03-31 14:18 - 000007887 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\pcouffin.cat
2012-03-31 14:18 - 2012-03-31 14:18 - 000001144 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\pcouffin.inf
2012-03-31 14:18 - 2012-03-31 14:18 - 000000034 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\pcouffin.log
2012-03-31 14:18 - 2012-03-31 14:18 - 000047360 _____ (VSO Software) C:\Documents and Settings\taborsky\Data aplikacĂ\pcouffin.sys
2010-12-24 13:23 - 2016-07-01 11:19 - 000001595 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\pl_accounts.pl_acc
2011-06-06 22:14 - 2014-06-18 23:49 - 000000033 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\PV_ACAD.bin
2010-12-24 13:23 - 2016-07-01 11:19 - 000000556 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\Troll.options
2012-03-31 14:19 - 2012-04-10 11:03 - 000000668 _____ () C:\Documents and Settings\taborsky\Data aplikacĂ\vso_ts_preview.xml
2012-11-06 00:42 - 2017-11-30 22:53 - 000028672 _____ () C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-11-07 00:32 - 2011-11-07 00:32 - 000000128 _____ () C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\fusioncache.dat
2014-12-21 20:33 - 2014-12-21 20:33 - 000000001 _____ () C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\llftool.4.40.agreement
2017-09-28 11:23 - 2017-09-28 11:36 - 000000096 _____ () C:\Documents and Settings\taborsky\Local Settings\Data aplikacĂ\rbxcsettings.rbx
2009-12-25 10:19 - 2009-12-25 10:19 - 000000008 __RSH () C:\Documents and Settings\All Users\Data aplikacĂ\E255105B2D.sys
2008-10-10 19:34 - 2008-10-10 19:34 - 000000032 ____N () C:\Documents and Settings\All Users\Data aplikacĂ\ezsid.dat
2009-12-25 10:19 - 2012-12-01 02:02 - 000003192 ___SH () C:\Documents and Settings\All Users\Data aplikacĂ\KGyGaAvL.sys
2008-10-20 17:34 - 2016-08-14 22:40 - 000000024 _____ () C:\Documents and Settings\All Users\Data aplikacĂ\__FileUploader.log
2010-08-28 11:03 - 2010-08-29 15:27 - 001492126 _____ () C:\Documents and Settings\All Users\Data aplikacĂ\__wdump.txt

Some files in TEMP:
====================
2018-03-17 12:03 - 2018-03-17 12:03 - 000008728 _____ () C:\Documents and Settings\taborsky\Local Settings\Temp\BullseyeCoverage-2-x86.dll
2015-08-14 13:29 - 2015-07-29 21:08 - 000681097 _____ (SQLite Development Team) C:\Documents and Settings\taborsky\Local Settings\Temp\sqlite3.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Avast Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1467313513.job => C:\Program Files\AVAST Software\SZBrowser\launcher.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Norton Security (Enabled - Up to date) {E10A9785-9598-4754-B552-92431C1C35F8}
AV: Avast Antivirus (Enabled - Up to date) {7591db91-41f0-48a3-b128-1a293fd8233d}
FW: Avast Antivirus (Disabled) {7591db91-41f0-48a3-b128-1a293fd8233d}
FW: Norton Security (Disabled) {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\taborsky\Plocha" je 5 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JobManagerService.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JobManagerService.exe:*:Enabled:JobManagerService.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMAdmin.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMAdmin.exe:*:Enabled:JMAdmin.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMPassword.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMPassword.exe:*:Enabled:JMPassword.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\ScriptHostService.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\ScriptHostService.exe:*:Enabled:ScriptHostService.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CommonFiles\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CommonFiles\\intel\\AnsysWBU.exe:*:Enabled:AnsysWBU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\ANSYS\\bin\\intel\\ANSYS.exe"="C:\\Program Files\\ANSYS Inc\\v110\\ANSYS\\bin\\intel\\ANSYS.exe:*:Enabled:ANSYS.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ActivePIMgrU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ActivePIMgrU.exe:*:Enabled:ActivePIMgrU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ReaderHostU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ReaderHostU.exe:*:Enabled:ReaderHostU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\tclsh.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\tclsh.exe:*:Enabled:AWP tclsh.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\wish.exe:*:Enabled:AWP wish.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\CATIAV5\\intel\\code\\bin\\ReaderHostCAT5U.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\CATIAV5\\intel\\code\\bin\\ReaderHostCAT5U.exe:*:Enabled:ReaderHostCAT5U.exe"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\ICQ7.4\\ICQ.exe"="C:\\Program Files\\ICQ7.4\\ICQ.exe:*:Enabled:ICQ7.4"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\DVBViewerTE\\ts_winlirc.exe"="C:\\Program Files\\DVBViewerTE\\ts_winlirc.exe:*:Enabled:ts_winlirc"
"C:\\Program Files\\ICQ6\\ICQ.exe"="C:\\Program Files\\ICQ6\\ICQ.exe:*:Enabled:ICQ6"
"C:\\Program Files\\Hummingbird\\Connectivity\\7.10\\Exceed\\exceed.exe"="C:\\Program Files\\Hummingbird\\Connectivity\\7.10\\Exceed\\exceed.exe:*:Enabled:X server for Win32"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JobManagerService.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JobManagerService.exe:*:Enabled:JobManagerService.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMAdmin.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMAdmin.exe:*:Enabled:JMAdmin.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMPassword.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\JMPassword.exe:*:Enabled:JMPassword.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\ScriptHostService.exe"="C:\\Program Files\\ANSYS Inc\\v110\\RSM\\bin\\ScriptHostService.exe:*:Enabled:ScriptHostService.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CommonFiles\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CommonFiles\\intel\\AnsysWBU.exe:*:Enabled:AnsysWBU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\ANSYS\\bin\\intel\\ANSYS.exe"="C:\\Program Files\\ANSYS Inc\\v110\\ANSYS\\bin\\intel\\ANSYS.exe:*:Enabled:ANSYS.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ActivePIMgrU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ActivePIMgrU.exe:*:Enabled:ActivePIMgrU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ReaderHostU.exe"="C:\\Program Files\\ANSYS Inc\\v110\\AISOL\\CAD Integration\\intel\\ReaderHostU.exe:*:Enabled:ReaderHostU.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\tclsh.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\tclsh.exe:*:Enabled:AWP tclsh.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\TCL\\bin\\intel\\wish.exe:*:Enabled:AWP wish.exe"
"C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\CATIAV5\\intel\\code\\bin\\ReaderHostCAT5U.exe"="C:\\Program Files\\ANSYS Inc\\v110\\CommonFiles\\CATIAV5\\intel\\code\\bin\\ReaderHostCAT5U.exe:*:Enabled:ReaderHostCAT5U.exe"
"C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\intel\\lmgrd.exe"="C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\intel\\lmgrd.exe:*:Enabled:lmgrd"
"C:\\Program Files\\Pinnacle\\Studio 11\\programs\\RM.exe"="C:\\Program Files\\Pinnacle\\Studio 11\\programs\\RM.exe:*:Enabled:Render Manager"
"C:\\Program Files\\Pinnacle\\Studio 11\\programs\\Studio.exe"="C:\\Program Files\\Pinnacle\\Studio 11\\programs\\Studio.exe:*:Enabled:Studio"
"C:\\Program Files\\Pinnacle\\Studio 11\\programs\\PMSRegisterFile.exe"="C:\\Program Files\\Pinnacle\\Studio 11\\programs\\PMSRegisterFile.exe:*:Enabled:PMSRegisterFile"
"C:\\Program Files\\Pinnacle\\Studio 11\\programs\\umi.exe"="C:\\Program Files\\Pinnacle\\Studio 11\\programs\\umi.exe:*:Enabled:umi"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\TrackMania Nations ESWC\\TmNationsESWC.exe"="C:\\Program Files\\TrackMania Nations ESWC\\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"C:\\Program Files\\ANSYS Inc\\v120\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v120\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled: "
"C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansysli_client.exe"="C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansysli_client.exe:*:Enabled:ANSYS Licensing Interconnect Application"
"C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\Ansys.SolverManager.exe"="C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\Ansys.SolverManager.exe:*:Enabled:Ansys.SolverManager"
"C:\\Program Files\\ANSYS Inc\\v120\\commonfiles\\TCL\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v120\\commonfiles\\TCL\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"C:\\Program Files\\ICQ6.5\\ICQ.exe"="C:\\Program Files\\ICQ6.5\\ICQ.exe:*:Enabled:ICQ6"
"C:\\Program Files\\Java\\jre6\\bin\\javaw.exe"="C:\\Program Files\\Java\\jre6\\bin\\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\Java\\jre6\\bin\\java.exe"="C:\\Program Files\\Java\\jre6\\bin\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v120\\commonfiles\\jre\\intel\\bin\\java.exe"="C:\\Program Files\\ANSYS Inc\\v120\\commonfiles\\jre\\intel\\bin\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\Order Of War\\oow_final_dx9.exe"="C:\\Program Files\\Order Of War\\oow_final_dx9.exe:*:Enabled:ORDER OF WAR"
"C:\\Program Files\\ANSYS Inc\\v121\\commonfiles\\Tcl\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v121\\commonfiles\\Tcl\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v121\\commonfiles\\jre\\intel\\bin\\java.exe"="C:\\Program Files\\ANSYS Inc\\v121\\commonfiles\\jre\\intel\\bin\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v121\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v121\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled:ANSYS Workbench"
"C:\\Program Files\\ANSYS Inc\\v121\\aisol\\bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v121\\aisol\\bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"C:\\Program Files\\Nero\\Nero8\\Nero ShowTime\\ShowTime.exe"="C:\\Program Files\\Nero\\Nero8\\Nero ShowTime\\ShowTime.exe:*:Enabled:Nero ShowTime"
"C:\\Program Files\\ANSYS Inc\\v121\\aisol\\bin\\intel\\AnsMeshingServer.exe"="C:\\Program Files\\ANSYS Inc\\v121\\aisol\\bin\\intel\\AnsMeshingServer.exe:*:Enabled:AnsMeshingServer"
"C:\\Program Files\\DVBViewer TE2\\ts_winlirc.exe"="C:\\Program Files\\DVBViewer TE2\\ts_winlirc.exe:*:Disabled:ts_winlirc"
"C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\AnsMeshingServer.exe"="C:\\Program Files\\ANSYS Inc\\v120\\AISOL\\Bin\\intel\\AnsMeshingServer.exe:*:Enabled:AnsMeshingServer"
"C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\RM.exe"="C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\RM.exe:*:Enabled:Render Manager"
"C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\Studio.exe"="C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\Studio.exe:*:Enabled:Studio"
"C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\umi.exe"="C:\\Program Files\\Pinnacle\\Studio 14\\Programs\\umi.exe:*:Enabled:umi"
"C:\\Program Files\\ANSYS Inc\\v130\\commonfiles\\Tcl\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v130\\commonfiles\\Tcl\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v130\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v130\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled:ANSYS Workbench"
"C:\\Program Files\\ANSYS Inc\\v130\\aisol\\bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v130\\aisol\\bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"E:\\INSTALLER\\HPBCSIINSTALLER.EXE"="E:\\INSTALLER\\HPBCSIINSTALLER.EXE:*:Enabled:HP Networked Printer Installer"
"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\\Program Files\\ICQ7.4\\ICQ.exe"="C:\\Program Files\\ICQ7.4\\ICQ.exe:*:Enabled:ICQ7.4"
"C:\\Program Files\\ANSYS Inc\\v130\\commonfiles\\jre\\intel\\bin\\java.exe"="C:\\Program Files\\ANSYS Inc\\v130\\commonfiles\\jre\\intel\\bin\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v140\\commonfiles\\Tcl\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v140\\commonfiles\\Tcl\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v140\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v140\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled:ANSYS Workbench"
"C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"C:\\Program Files\\ANSYS Inc\\v140\\commonfiles\\jre\\intel\\bin\\java.exe"="C:\\Program Files\\ANSYS Inc\\v140\\commonfiles\\jre\\intel\\bin\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\ReaderHostU.exe"="C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\ReaderHostU.exe:*:Enabled:ReaderHost Module"
"C:\\Program Files\\ANSYS Inc\\v140\\RSM\\bin\\Ans.Rsm.JMHost.exe"="C:\\Program Files\\ANSYS Inc\\v140\\RSM\\bin\\Ans.Rsm.JMHost.exe:*:Enabled: "
"C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\AnsMeshingServer.exe"="C:\\Program Files\\ANSYS Inc\\v140\\aisol\\bin\\intel\\AnsMeshingServer.exe:*:Enabled:AnsMeshingServer"
"C:\\Program Files\\Java\\jre7\\bin\\javaw.exe"="C:\\Program Files\\Java\\jre7\\bin\\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v145\\commonfiles\\Tcl\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v145\\commonfiles\\Tcl\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v145\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v145\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled:ANSYS Workbench"
"C:\\Program Files\\ANSYS Inc\\v145\\aisol\\bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v145\\aisol\\bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"C:\\Program Files\\ANSYS Inc\\v145\\RSM\\bin\\Ans.Rsm.JMHost.exe"="C:\\Program Files\\ANSYS Inc\\v145\\RSM\\bin\\Ans.Rsm.JMHost.exe:*:Enabled:ANSYS RSM Job Manager Service"
"C:\\WINDOWS\\system32\\javaw.exe"="C:\\WINDOWS\\system32\\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\ANSYS Inc\\v145\\RSM\\bin\\Ans.Rsm.Admin.exe"="C:\\Program Files\\ANSYS Inc\\v145\\RSM\\bin\\Ans.Rsm.Admin.exe:*:Enabled:ANSYS RSM Admin 2"
"C:\\Program Files\\ANSYS Inc\\v150\\Framework\\bin\\Win32\\AnsysFWW.exe"="C:\\Program Files\\ANSYS Inc\\v150\\Framework\\bin\\Win32\\AnsysFWW.exe:*:Enabled:ANSYS Workbench"
"C:\\Program Files\\ANSYS Inc\\v150\\commonfiles\\Tcl\\bin\\intel\\wish.exe"="C:\\Program Files\\ANSYS Inc\\v150\\commonfiles\\Tcl\\bin\\intel\\wish.exe:*:Enabled:Wish Application"
"C:\\Program Files\\ANSYS Inc\\v150\\RSM\\bin\\Ans.Rsm.JMHost.exe"="C:\\Program Files\\ANSYS Inc\\v150\\RSM\\bin\\Ans.Rsm.JMHost.exe:*:Enabled:ANSYS RSM Job Manager Service"
"C:\\Program Files\\ANSYS Inc\\v150\\aisol\\bin\\intel\\AnsysWBU.exe"="C:\\Program Files\\ANSYS Inc\\v150\\aisol\\bin\\intel\\AnsysWBU.exe:*:Enabled:AnsysWB Module"
"C:\\Program Files\\ANSYS Inc\\v150\\RSM\\bin\\Ans.Rsm.Admin.exe"="C:\\Program Files\\ANSYS Inc\\v150\\RSM\\bin\\Ans.Rsm.Admin.exe:*:Enabled:ANSYS RSM Admin 2"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"
"C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansysli_server.exe"="C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansysli_server.exe:*:Enabled:ANSYS Licensing Interconnect Application. Modified for ANSYS Release 15.0."
"C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansyslmd.exe"="C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\ansyslmd.exe:*:Enabled:ansyslmd daemon. Modified for ANSYS Release 15.0."
"C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\lmgrd.exe"="C:\\Program Files\\ANSYS Inc\\Shared Files\\Licensing\\win32\\lmgrd.exe:*:Enabled:Flexera Software LLC"
"C:\\Program Files\\ANSYS Inc\\v150\\aisol\\bin\\intel\\AnsMeshingServer.exe"="C:\\Program Files\\ANSYS Inc\\v150\\aisol\\bin\\intel\\AnsMeshingServer.exe:*:Enabled:AnsMeshingServer"
"C:\\Program Files\\Java\\jre1.8.0_31\\bin\\javaw.exe"="C:\\Program Files\\Java\\jre1.8.0_31\\bin\\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\World_of_Tanks\\WoTLauncher.exe"="C:\\Program Files\\World_of_Tanks\\WoTLauncher.exe:*:Enabled:World of Tanks Launcher"
"C:\\Program Files\\World_of_Tanks\\WorldOfTanks.exe"="C:\\Program Files\\World_of_Tanks\\WorldOfTanks.exe:*:Enabled:World of Tanks"
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\\WINDOWS\\system32\\hasplms.exe"="C:\\WINDOWS\\system32\\hasplms.exe:*:Enabled:Sentinel License Manager"
"C:\\Program Files\\TeamViewer\\TeamViewer.exe"="C:\\Program Files\\TeamViewer\\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\\Program Files\\TeamViewer\\TeamViewer_Service.exe"="C:\\Program Files\\TeamViewer\\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\\Documents and Settings\\taborsky\\Local Settings\\Data aplikacˇ\\chromium\\Application\\chrome.exe"="C:\\Documents and Settings\\taborsky\\Local Settings\\Data aplikacˇ\\chromium\\Application\\chrome.exe:*:Enabled:Chromium"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:*:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:*:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:*:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:*:Enabled:@xpsp2res.dll,-22002"
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1947:TCP"="1947:TCP:*:Enabled:HASP SRM "
"1947:UDP"="1947:UDP:*:Enabled:HASP SRM "
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"
"3389:TCP"="3389:TCP:*:Enabled:@xpsp2res.dll,-22009"

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000

==================== End Of Log ==============================

#7 Příspěvek od **Rudy** » 17 bře 2018 18:13

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [UserFaultCheck] => %systemroot%\system32\dumprep 0 -u
SearchScopes: HKU\S-1-5-21-1409082233-573735546-725345543-1010 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL =
Toolbar: HKU\S-1-5-21-1409082233-573735546-725345543-1010 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
FF Plugin: @thrixxx.com/WebLaunch -> C:\Program Files\thriXXX\WebLaunch\Binaries\npWebLaunch.dll [No File]
FF Plugin HKU\S-1-5-21-1409082233-573735546-725345543-1010: @thrixxx.com/WebLaunch -> C:\Program Files\thriXXX\WebLaunch\Binaries\npWebLaunch.dll [No File]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
S4 IntelIde; no ImagePath
U1 WS2IFSL; no ImagePath
C:\Documents and Settings\taborsky\Local Settings\Temp
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

xrobat · #8 Příspěvek od **xrobat** » 17 bře 2018 18:34

Fix result of Farbar Recovery Scan Tool (x86) Version: 14.03.2018
Ran by taborsky (17-03-2018 18:24:05) Run:1
Running from C:\Documents and Settings\taborsky\Plocha
Loaded Profiles: taborsky (Available Profiles: ilona & taborsky & help)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [UserFaultCheck] => %systemroot%\system32\dumprep 0 -u
SearchScopes: HKU\S-1-5-21-1409082233-573735546-725345543-1010 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL =
Toolbar: HKU\S-1-5-21-1409082233-573735546-725345543-1010 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
FF Plugin: @thrixxx.com/WebLaunch -> C:\Program Files\thriXXX\WebLaunch\Binaries\npWebLaunch.dll [No File]
FF Plugin HKU\S-1-5-21-1409082233-573735546-725345543-1010: @thrixxx.com/WebLaunch -> C:\Program Files\thriXXX\WebLaunch\Binaries\npWebLaunch.dll [No File]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
S4 IntelIde; no ImagePath
U1 WS2IFSL; no ImagePath
C:\Documents and Settings\taborsky\Local Settings\Temp
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck" => removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\UserFaultCheck" => removed successfully.
"HKU\S-1-5-21-1409082233-573735546-725345543-1010\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{15C4DF55-4B67-495A-A3D3-A497C4A49EE0}" => removed successfully.
HKLM\Software\Classes\CLSID\{15C4DF55-4B67-495A-A3D3-A497C4A49EE0} => not found
"HKU\S-1-5-21-1409082233-573735546-725345543-1010\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => removed successfully.
HKLM\Software\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => not found
"HKLM\Software\MozillaPlugins\@thrixxx.com/WebLaunch" => removed successfully.
"HKU\S-1-5-21-1409082233-573735546-725345543-1010\Software\MozillaPlugins\@thrixxx.com/WebLaunch" => removed successfully.
"C:\Program Files\thriXXX\WebLaunch\Binaries\npWebLaunch.dll" => not found
"HKLM\SOFTWARE\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki" => removed successfully.
"HKLM\System\CurrentControlSet\Services\IntelIde" => removed successfully.
IntelIde => service removed successfully.
"HKLM\System\CurrentControlSet\Services\WS2IFSL" => removed successfully.
WS2IFSL => service removed successfully.

"C:\Documents and Settings\taborsky\Local Settings\Temp" folder move:

Could not move "C:\Documents and Settings\taborsky\Local Settings\Temp" => Scheduled to move on reboot.

C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 17947 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache => 82979 B
Java, Flash, Steam htmlcache => 5730925 B
Windows/system/dllcache/drivers => 35704599 B
Edge => 0 B
Chrome => 1009612406 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Documents and Settings => 0 B
Default User => 66164 B
All Users => 0 B
systemprofile => 115370506 B
LocalService => 1108 B
NetworkService => 66164 B
ilona => 897773 B
taborsky => 4144278 B
help => 104860681 B

RecycleBin => 1912484 B
EmptyTemp: => 1.2 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 17-03-2018 18:28:59)

C:\Documents and Settings\taborsky\Local Settings\Temp => moved successfully

==== End of Fixlog 18:29:11 ====

#9 Příspěvek od **Rudy** » 17 bře 2018 18:59

Smazáno. Nastala nějaká změna?

xrobat · #10 Příspěvek od **xrobat** » 17 bře 2018 19:21

Vypadá to dobře ... díky.
Dá se říct co tam bylo za havěť?
jt

#11 Příspěvek od **Rudy** » 17 bře 2018 20:12

Různé AdWary a plno zbytečností.

VIRY.CZ

Kontrola logu

Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu

Re: Kontrola logu