Prosím o preventivku

[backpase]

Chcel by som poprosiť o preventívnu kontrolu PC, od istého času mám takmer plnú pamäť a ani po vymazaní niekoľko súborov sa na tom nič nezmenilo a chcem tento pc ešte istý čas udržať

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01
Ran by Admistrimator (administrator) on 821CF8C318FE415 (08-03-2016 22:32:39)
Running from C:\Documents and Settings\Admistrimator\Desktop
Loaded Profiles: Admistrimator (Available Profiles: Admistrimator & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: English (United States)
Internet Explorer Version 8 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\WINDOWS.0\System32\SMSS.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\AVGRSX.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\AVGCSRVX.EXE
(Microsoft Corporation) C:\WINDOWS.0\System32\CSRSS.EXE
(Microsoft Corporation) C:\WINDOWS.0\System32\WINLOGON.EXE
(Microsoft Corporation) C:\WINDOWS.0\System32\SERVICES.EXE
(Microsoft Corporation) C:\WINDOWS.0\System32\LSASS.EXE
(Microsoft Corporation) C:\WINDOWS.0\System32\SVCHOST.EXE
(Microsoft Corporation) C:\WINDOWS.0\System32\SVCHOST.EXE
(Microsoft Corporation) C:\WINDOWS.0\System32\SVCHOST.EXE
(Microsoft Corporation) C:\WINDOWS.0\System32\SVCHOST.EXE
(Microsoft Corporation) C:\WINDOWS.0\System32\SVCHOST.EXE
(Microsoft Corporation) C:\WINDOWS.0\System32\SPOOLSV.EXE
(Microsoft Corporation) C:\WINDOWS.0\EXPLORER.EXE
(Google Inc.) C:\Program Files\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\SVCHOST.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\ctfmon.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\RUNDLL32.EXE
(SecureMedia Inc.) C:\Program Files\SecureMedia\Encryptonite ONE System\Client\smdaemon.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgwdsvcx.exe
(NVIDIA Corporation) C:\WINDOWS.0\System32\nvsvc32.exe
() C:\WINDOWS.0\System32\PnkBstrA.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\SVCHOST.EXE
(Microsoft Corporation) C:\WINDOWS.0\System32\wdfmgr.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\alg.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgemcx.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\wscntfy.exe
(Opera Software) C:\Program Files\Opera\35.0.2066.82\OPERA.EXE
(Opera Software) C:\Program Files\Opera\35.0.2066.82\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\35.0.2066.82\OPERA.EXE
(Opera Software) C:\Program Files\Opera\35.0.2066.82\OPERA.EXE
(Opera Software) C:\Program Files\Opera\35.0.2066.82\OPERA.EXE
(forum.viry.cz) C:\Documents and Settings\Admistrimator\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\wbem\wmiprvse.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IgfxTray] => C:\WINDOWS.0\system32\igfxtray.exe [155648 2004-02-10] (Intel Corporation)
HKLM\...\Run: [HotKeysCmds] => C:\WINDOWS.0\system32\hkcmd.exe [118784 2004-02-10] (Intel Corporation)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS.0\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [nwiz] => nwiz.exe /install
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\WINDOWS.0\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\Av\avgui.exe [3826600 2015-10-30] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [179624 2016-02-18] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Winlogon: [Userinit] C:\WINDOWS.0\system32\userinit.exe,
HKLM\...\Winlogon: [UIHost] C:\WINDOWS.0\system32\logonui.exe [514560 2008-04-14] (Microsoft Corporation)
Winlogon\Notify\avgrsstarter: C:\WINDOWS.0\system32\avgrsstx.dll [2013-01-07] (AVG Technologies CZ, s.r.o.)
Winlogon\Notify\crypt32chain: C:\WINDOWS.0\system32\crypt32.dll [2013-10-07] (Microsoft Corporation)
Winlogon\Notify\cryptnet: C:\WINDOWS.0\system32\cryptnet.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\cscdll: C:\WINDOWS.0\system32\cscdll.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\dimsntfy: C:\WINDOWS.0\System32\dimsntfy.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS.0\system32\igfxsrvc.dll [2004-02-10] (Intel Corporation)
Winlogon\Notify\ScCertProp: C:\WINDOWS.0\system32\wlnotify.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\Schedule: C:\WINDOWS.0\system32\wlnotify.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\sclgntfy: C:\WINDOWS.0\system32\sclgntfy.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\SensLogn: C:\WINDOWS.0\system32\WlNotify.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\termsrv: C:\WINDOWS.0\system32\wlnotify.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\wlballoon: C:\WINDOWS.0\system32\wlnotify.dll [2008-04-14] (Microsoft Corporation)
HKLM\...\Policies\Explorer: [NoRemoteRecursiveEvents] 1
HKU\S-1-5-19\...\Policies\Explorer: [NoInternetIcon] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-19\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS.0\System32\logon.scr [220672 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [tscuninstall] => C:\WINDOWS.0\system32\tscupgrd.exe [44544 2006-01-13] (Microsoft Corporation)
HKU\S-1-5-20\...\Policies\Explorer: [NoInternetIcon] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-20\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS.0\System32\logon.scr [220672 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\Run: [CTFMON.EXE] => C:\WINDOWS.0\system32\ctfmon.exe [15360 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6628056 2016-01-15] (Piriform Ltd)
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\Policies\Explorer: [NoInternetIcon] 0
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {38e7f6ba-1b11-11e2-80ac-88ef9d15ab97} - F:\iLinker.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {3c2f68c2-2b9f-11e3-8498-0007e9b80159} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {73609ada-e48a-11e1-bfe7-946d74f1282f} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {a4df56e4-cc3b-11e1-bf85-0007e9b80159} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {a4df56e8-cc3b-11e1-bf85-0007e9b80159} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {a4df56ea-cc3b-11e1-bf85-0007e9b80159} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {aca9a326-6ae4-11e4-98b5-0007e9b80159} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {ef38f3da-e446-11e1-bfe6-a954e5758428} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS.0\LAURA.SCR [403232 2013-03-11] (MacSourcery)
HKU\S-1-5-18\...\RunOnce: [tscuninstall] => C:\WINDOWS.0\system32\tscupgrd.exe [44544 2006-01-13] (Microsoft Corporation)
HKU\S-1-5-18\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS.0\system32\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe -update pepperplugin
HKU\S-1-5-18\...\Policies\Explorer: [NoInternetIcon] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-18\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS.0\system32\logon.scr [220672 2008-04-14] (Microsoft Corporation)
AppInit_DLLs: c:\progra~1\browse~1\sprote~1.dll => No File
ShellExecuteHooks: URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS.0\system32\shell32.dll [8462848 2012-06-08] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [4SyncOverlay1] -> {2012DE06-50C0-48BD-ACDE-88F95D4CAD1F} => No File
ShellIconOverlayIdentifiers: [4SyncOverlay2] -> {C72C6188-BEF2-46E5-A89A-52F0ED75219E} => No File
ShellIconOverlayIdentifiers: [4SyncOverlay3] -> {C92F6BC2-AF61-4C0E-80E0-939B8282DDB7} => No File
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\eOne Client.lnk [2014-01-26]
ShortcutTarget: eOne Client.lnk -> C:\Program Files\SecureMedia\Encryptonite ONE System\Client\smdaemon.exe (SecureMedia Inc.)
Startup: C:\Documents and Settings\Admistrimator\Start Menu\Programs\Startup\Kalendár.lnk [2011-12-31]
ShortcutTarget: Kalendár.lnk -> C:\WINDOWS.0\MENINY.EXE ()
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\Av\avgrsx.exe /sync /restart

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 01 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog5 02 C:\WINDOWS.0\system32\winrnr.dll [16896 2008-04-14] (Microsoft Corporation)
Winsock: Catalog5 03 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 01 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 02 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 03 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 04 C:\WINDOWS.0\system32\rsvpsp.dll [92672 2008-04-14] (Microsoft Corporation)
Winsock: Catalog9 05 C:\WINDOWS.0\system32\rsvpsp.dll [92672 2008-04-14] (Microsoft Corporation)
Winsock: Catalog9 06 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 07 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 08 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 09 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 10 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 11 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 12 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 13 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 14 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 15 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 16 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 17 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D372DBDD-B3E3-415D-BD21-819C0DBB22F3}: [DhcpNameServer] 192.168.1.1
ManualProxies:

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-19\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-20\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS.0\system32\blank.htm
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS.0\system32\blank.htm
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.sk/
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.msn.com/?ocid=EIE8HP&PC=UP61
SearchScopes: HKU\S-1-5-21-1454471165-1326574676-1801674531-1004 -> DefaultScope {2D5D7812-F0CE-4A74-939D-162EDD2EAF35} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
SearchScopes: HKU\S-1-5-21-1454471165-1326574676-1801674531-1004 -> {2D5D7812-F0CE-4A74-939D-162EDD2EAF35} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
SearchScopes: HKU\S-1-5-21-1454471165-1326574676-1801674531-1004 -> {91C3F1EA-2160-46AF-97EE-058948E03315} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1454471165-1326574676-1801674531-1004 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={75CA2A5B-8F00-4C95-8616-8B1F6E2C553D}&mid=6f65433550e67613a263a57ade54d7d3-4aa6d5ed35bae22af6fd8054fd276f189468d940&lang=en&ds=AVG&pr=fr&d=2013-01-21 18:36:58&v=14.0.0.14&pid=avg&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1454471165-1326574676-1801674531-1004 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL =
Toolbar: HKLM - No Name - {A057A204-BACC-4D26-9990-79A187E2698E} - No File
Toolbar: HKU\S-1-5-21-1454471165-1326574676-1801674531-1004 -> No Name - {A057A204-BACC-4D26-9990-79A187E2698E} - No File
Toolbar: HKU\S-1-5-21-1454471165-1326574676-1801674531-1004 -> No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1416005426043
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.istartsurf.com/?type=sc&ts=14430232 ... 0188901889

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890
FF NewTab: chrome://quick_start/content/index.html
FF DefaultSearchEngine: mystartsearch
FF SelectedSearchEngine: mystartsearch
FF Homepage: hxxp://www.mystartsearch.com/?type=hp&ts=14430 ... 0188901889
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS.0\system32\Macromed\Flash\NPSWF32_11_9_900_152.dll [2013-11-20] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS.0\system32\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS.0\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [No File]
FF Plugin: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-19] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-19] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1454471165-1326574676-1801674531-1004: @elecard.com/elecard-iptv-plugin -> C:\Program Files\SecureMedia\Encryptonite ONE System\Client\elecard\npiptv.dll [2013-05-29] ()
FF SearchPlugin: C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\searchplugins\mystartsearch.xml [2015-10-07]
FF Extension: Default SearchProtected - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\extensions\defsearchp@gmail.com [2015-09-23] [not signed]
FF Extension: deskCut - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\extensions\deskCutv2@gmail.com [2015-09-23] [not signed]
FF Extension: SavePass v2.2 - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com [2016-01-01] [not signed]
FF Extension: CinemaPlus-3.2c - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\extensions\d4db60df25f14dae9dd18@185c395f9e794c9ab86be3eb.com [2016-01-01] [not signed]
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS.0\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-11-28] [not signed]
FF Extension: Weather Forecast - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\Extensions\jid1-aqwHRwQpv3JUMs@jetpack.xpi [2015-10-07]
FF Extension: Adblock Plus - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-10-07]
FF HKLM\...\Firefox\Extensions: [{3f963a5b-e555-4543-90e2-c3908898db71}] - C:\Program Files\AVG\AVG8\Firefox => not found
FF HKLM\...\Firefox\Extensions: [{1d5287d1-8a92-0001-1f31-1cec198018d8}] - C:\Program Files\AVG\AVG8\ToolbarFF => not found
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS.0\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF HKLM\...\Firefox\Extensions: [defsearchp@gmail.com] - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\extensions\defsearchp@gmail.com
FF HKLM\...\Firefox\Extensions: [deskCutv2@gmail.com] - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\extensions\deskCutv2@gmail.com

Chrome:
=======
CHR Profile: C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-24]
CHR Extension: (Gmail) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-28]
CHR Extension: (Disk Google) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-28]
CHR Extension: (Google Search) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-28]
CHR Extension: (Dokumenty Google v režime offline) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-12]
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-19]
CHR Extension: (Prezentácie Google) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-19]
CHR Extension: (YouTube) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-19]

Opera:
=======
OPR Extension: (Tampermonkey Beta) - C:\Documents and Settings\Admistrimator\Application Data\Opera Software\Opera Stable\Extensions\mfdhdgbonjidekjkjmjaneanmdmpmidf [2016-02-23]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS.0\system32\Macromed\Flash\FlashPlayerUpdateService.exe [269504 2016-02-19] (Adobe Systems Incorporated)
S4 Alerter; C:\WINDOWS.0\system32\alrsvc.dll [17408 2008-04-14] (Microsoft Corporation)
R3 ALG; C:\WINDOWS.0\System32\alg.exe [44544 2008-04-14] (Microsoft Corporation)
S3 AppMgmt; C:\WINDOWS.0\System32\appmgmts.dll [167936 2008-04-14] (Microsoft Corporation)
S3 aspnet_state; C:\WINDOWS.0\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [34312 2008-07-25] (Microsoft Corporation)
R2 AudioSrv; C:\WINDOWS.0\System32\audiosrv.dll [42496 2008-04-14] (Microsoft Corporation)
S3 AvgAMPS; C:\Program Files\AVG\Av\avgamps.exe [595376 2015-10-30] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [3815648 2015-10-30] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [865704 2016-02-18] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\Av\avgwdsvcx.exe [579776 2015-10-30] (AVG Technologies CZ, s.r.o.)
R2 BITS; C:\WINDOWS.0\system32\qmgr.dll [409088 2008-04-14] (Microsoft Corporation)
S2 Browser; C:\WINDOWS.0\System32\browser.dll [78336 2012-07-06] (Microsoft Corporation)
S3 CiSvc; C:\WINDOWS.0\system32\cisvc.exe [5632 2008-04-14] (Microsoft Corporation)
S4 ClipSrv; C:\WINDOWS.0\system32\clipsrv.exe [33280 2008-04-14] (Microsoft Corporation)
S3 clr_optimization_v2.0.50727_32; C:\WINDOWS.0\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [69632 2008-07-25] (Microsoft Corporation)
R2 CryptSvc; C:\WINDOWS.0\System32\cryptsvc.dll [62464 2008-04-14] (Microsoft Corporation)
R2 DcomLaunch; C:\WINDOWS.0\system32\rpcss.dll [401408 2009-02-09] (Microsoft Corporation)
R2 Dhcp; C:\WINDOWS.0\System32\dhcpcsvc.dll [126976 2008-04-14] (Microsoft Corporation)
S3 dmadmin; C:\WINDOWS.0\System32\dmadmin.exe [224768 2008-04-14] (Microsoft Corp., Veritas Software)
R2 dmserver; C:\WINDOWS.0\System32\dmserver.dll [23552 2008-04-14] (Microsoft Corp.)
R2 Dnscache; C:\WINDOWS.0\System32\dnsrslvr.dll [45568 2009-04-20] (Microsoft Corporation)
S3 Dot3svc; C:\WINDOWS.0\System32\dot3svc.dll [132096 2008-04-14] (Microsoft Corporation)
S3 EapHost; C:\WINDOWS.0\System32\eapsvc.dll [33792 2008-04-14] (Microsoft Corporation)
R2 ERSvc; C:\WINDOWS.0\System32\ersvc.dll [23040 2008-04-14] (Microsoft Corporation)
R2 Eventlog; C:\WINDOWS.0\system32\services.exe [110592 2009-02-06] (Microsoft Corporation)
R3 EventSystem; C:\WINDOWS.0\system32\es.dll [253952 2008-07-07] (Microsoft Corporation)
R3 FastUserSwitchingCompatibility; C:\WINDOWS.0\System32\shsvcs.dll [135168 2009-07-28] (Microsoft Corporation)
S3 FontCache3.0.0.0; c:\WINDOWS.0\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [46104 2008-07-29] (Microsoft Corporation)
R2 helpsvc; C:\WINDOWS.0\PCHealth\HelpCtr\Binaries\pchsvc.dll [38400 2008-04-14] (Microsoft Corporation)
S3 hkmsvc; C:\WINDOWS.0\System32\kmsvc.dll [61440 2008-04-14] (Microsoft Corporation)
S3 HTTPFilter; C:\WINDOWS.0\System32\w3ssl.dll [15872 2008-04-14] (Microsoft Corporation)
S3 idsvc; c:\WINDOWS.0\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [881664 2008-07-29] (Microsoft Corporation)
S3 ImapiService; C:\WINDOWS.0\system32\imapi.exe [150528 2008-04-14] (Microsoft Corporation)
R2 lanmanserver; C:\WINDOWS.0\System32\srvsvc.dll [99840 2010-08-27] (Microsoft Corporation)
R2 lanmanworkstation; C:\WINDOWS.0\System32\wkssvc.dll [132096 2009-06-10] (Microsoft Corporation)
R2 LmHosts; C:\WINDOWS.0\System32\lmhsvc.dll [13824 2008-04-14] (Microsoft Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S4 Messenger; C:\WINDOWS.0\System32\msgsvc.dll [33792 2008-04-14] (Microsoft Corporation)
S3 mnmsrvc; C:\WINDOWS.0\system32\mnmsrvc.exe [32768 2008-04-14] (Microsoft Corporation)
S3 MSDTC; C:\WINDOWS.0\system32\msdtc.exe [6144 2008-04-14] (Microsoft Corporation)
S3 MSIServer; C:\WINDOWS.0\System32\msiexec.exe [78848 2008-04-14] (Microsoft Corporation)
S3 napagent; C:\WINDOWS.0\System32\qagentrt.dll [291328 2008-04-14] (Microsoft Corporation)
S4 NetDDE; C:\WINDOWS.0\system32\netdde.exe [111104 2008-04-14] (Microsoft Corporation)
S4 NetDDEdsdm; C:\WINDOWS.0\system32\netdde.exe [111104 2008-04-14] (Microsoft Corporation)
S3 Netlogon; C:\WINDOWS.0\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation)
R3 Netman; C:\WINDOWS.0\System32\netman.dll [198144 2008-04-14] (Microsoft Corporation)
S4 NetTcpPortSharing; c:\WINDOWS.0\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [132096 2008-07-29] (Microsoft Corporation)
R3 Nla; C:\WINDOWS.0\System32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
S3 NtLmSsp; C:\WINDOWS.0\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation)
S3 NtmsSvc; C:\WINDOWS.0\system32\ntmssvc.dll [435200 2008-04-14] (Microsoft Corporation)
R2 NVSvc; C:\WINDOWS.0\system32\nvsvc32.exe [131139 2005-10-10] (NVIDIA Corporation) [File not signed]
R2 PlugPlay; C:\WINDOWS.0\system32\services.exe [110592 2009-02-06] (Microsoft Corporation)
R2 PnkBstrA; C:\WINDOWS.0\system32\PnkBstrA.exe [66872 2012-06-29] ()
R2 PolicyAgent; C:\WINDOWS.0\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation)
R2 ProtectedStorage; C:\WINDOWS.0\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation)
S3 RasAuto; C:\WINDOWS.0\System32\rasauto.dll [88576 2008-04-14] (Microsoft Corporation)
R3 RasMan; C:\WINDOWS.0\System32\rasmans.dll [186368 2008-04-14] (Microsoft Corporation)
S3 RDSessMgr; C:\WINDOWS.0\system32\sessmgr.exe [141312 2008-04-14] (Microsoft Corporation)
S4 RemoteAccess; C:\WINDOWS.0\System32\mprdim.dll [53248 2008-04-14] (Microsoft Corporation)
R2 RemoteRegistry; C:\WINDOWS.0\system32\regsvc.dll [59904 2008-04-14] (Microsoft Corporation)
S3 RpcLocator; C:\WINDOWS.0\system32\locator.exe [75264 2008-04-14] (Microsoft Corporation)
R2 RpcSs; C:\WINDOWS.0\system32\rpcss.dll [401408 2009-02-09] (Microsoft Corporation)
S3 RSVP; C:\WINDOWS.0\system32\rsvp.exe [132608 2006-01-13] (Microsoft Corporation)
R2 SamSs; C:\WINDOWS.0\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation)
S3 SCardSvr; C:\WINDOWS.0\System32\SCardSvr.exe [95744 2008-04-14] (Microsoft Corporation)
R2 Schedule; C:\WINDOWS.0\system32\schedsvc.dll [192512 2008-04-14] (Microsoft Corporation)
R2 seclogon; C:\WINDOWS.0\System32\seclogon.dll [18944 2008-04-14] (Microsoft Corporation)
R2 SENS; C:\WINDOWS.0\system32\sens.dll [39424 2008-04-14] (Microsoft Corporation)
R2 SharedAccess; C:\WINDOWS.0\System32\ipnathlp.dll [331264 2008-04-14] (Microsoft Corporation)
R2 ShellHWDetection; C:\WINDOWS.0\System32\shsvcs.dll [135168 2009-07-28] (Microsoft Corporation)
R2 SoundMAX Agent Service (default); C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056 2002-07-15] (Analog Devices, Inc.) [File not signed]
R2 Spooler; C:\WINDOWS.0\system32\spoolsv.exe [58880 2010-08-17] (Microsoft Corporation)
R2 srservice; C:\WINDOWS.0\system32\srsvc.dll [171008 2008-04-14] (Microsoft Corporation)
R3 SSDPSRV; C:\WINDOWS.0\System32\ssdpsrv.dll [71680 2008-04-14] (Microsoft Corporation)
R2 stisvc; C:\WINDOWS.0\system32\wiaservc.dll [333824 2008-04-14] (Microsoft Corporation)
S3 SysmonLog; C:\WINDOWS.0\system32\smlogsvc.exe [89600 2008-04-14] (Microsoft Corporation)
R3 TapiSrv; C:\WINDOWS.0\System32\tapisrv.dll [249856 2008-04-14] (Microsoft Corporation)
R3 TermService; C:\WINDOWS.0\System32\termsrv.dll [295424 2008-04-14] (Microsoft Corporation)
R2 Themes; C:\WINDOWS.0\System32\shsvcs.dll [135168 2009-07-28] (Microsoft Corporation)
S4 TlntSvr; C:\WINDOWS.0\system32\tlntsvr.exe [73216 2008-04-14] (Microsoft Corporation)
R2 TrkWks; C:\WINDOWS.0\system32\trkwks.dll [90112 2008-04-14] (Microsoft Corporation)
R2 UMWdf; C:\WINDOWS.0\system32\wdfmgr.exe [38912 2006-01-13] (Microsoft Corporation)
S3 upnphost; C:\WINDOWS.0\System32\upnphost.dll [185856 2008-04-14] (Microsoft Corporation)
S3 UPS; C:\WINDOWS.0\System32\ups.exe [18432 2008-04-14] (Microsoft Corporation)
S3 VSS; C:\WINDOWS.0\System32\vssvc.exe [289792 2008-04-14] (Microsoft Corporation)
R2 W32Time; C:\WINDOWS.0\system32\w32time.dll [175104 2008-04-14] (Microsoft Corporation)
R2 WebClient; C:\WINDOWS.0\System32\webclnt.dll [68096 2008-04-14] (Microsoft Corporation)
R2 winmgmt; C:\WINDOWS.0\system32\wbem\WMIsvc.dll [144896 2008-04-14] (Microsoft Corporation)
S3 WmdmPmSN; C:\WINDOWS.0\system32\mspmsnsv.dll [25088 2006-01-13] (Microsoft Corporation)
S3 Wmi; C:\WINDOWS.0\System32\advapi32.dll [617472 2009-02-09] (Microsoft Corporation)
S3 WmiApSrv; C:\WINDOWS.0\system32\wbem\wmiapsrv.exe [126464 2008-04-14] (Microsoft Corporation)
R2 wscsvc; C:\WINDOWS.0\system32\wscsvc.dll [80896 2008-04-14] (Microsoft Corporation)
R2 wuauserv; C:\WINDOWS.0\system32\wuauserv.dll [6656 2008-04-14] (Microsoft Corporation)
R2 WZCSVC; C:\WINDOWS.0\System32\wzcsvc.dll [483840 2008-04-14] (Microsoft Corporation)
S3 xmlprov; C:\WINDOWS.0\System32\xmlprov.dll [129024 2008-04-14] (Microsoft Corporation)
S3 COMSysApp; C:\WINDOWS.0\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
S3 SwPrv; C:\WINDOWS.0\system32\dllhost.exe /Processid:{8D4D742B-B208-4887-B5A5-8E80393E4496}

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 ACPI; C:\WINDOWS.0\System32\DRIVERS\ACPI.sys [187776 2008-04-14] (Microsoft Corporation)
S4 ACPIEC; C:\WINDOWS.0\system32\Drivers\ACPIEC.sys [11648 2006-01-13] (Microsoft Corporation)
R3 aeaudio; C:\WINDOWS.0\System32\drivers\aeaudio.sys [98752 2002-08-22] (Andrea Electronics Corporation)
S3 aec; C:\WINDOWS.0\System32\drivers\aec.sys [142592 2008-04-13] (Microsoft Corporation)
R1 AFD; C:\WINDOWS.0\System32\drivers\afd.sys [138496 2011-08-17] (Microsoft Corporation)
S3 AsyncMac; C:\WINDOWS.0\System32\DRIVERS\asyncmac.sys [14336 2008-04-14] (Microsoft Corporation)
R0 atapi; C:\WINDOWS.0\System32\DRIVERS\atapi.sys [96512 2008-04-14] (Microsoft Corporation)
S3 Atmarpc; C:\WINDOWS.0\System32\DRIVERS\atmarpc.sys [59904 2008-04-14] (Microsoft Corporation)
R3 audstub; C:\WINDOWS.0\System32\DRIVERS\audstub.sys [3072 2006-01-06] (Microsoft Corporation)
R1 Avgdiskx; C:\WINDOWS.0\System32\DRIVERS\avgdiskx.sys [156080 2015-08-10] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriverl; C:\WINDOWS.0\System32\DRIVERS\avgidsdriverlx.sys [243632 2015-10-19] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS.0\System32\DRIVERS\avgidshx.sys [231344 2015-08-20] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS.0\System32\DRIVERS\avgidsshimx.sys [31664 2015-08-14] (AVG Technologies CZ, s.r.o.)
R1 AvgLdx86; C:\WINDOWS.0\System32\DRIVERS\avgldx86.sys [229296 2015-10-21] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS.0\System32\DRIVERS\avglogx.sys [308656 2015-08-14] (AVG Technologies CZ, s.r.o.)
R0 AvgMfx86; C:\WINDOWS.0\System32\DRIVERS\avgmfx86.sys [192944 2015-10-21] (AVG Technologies CZ, s.r.o.)
R1 AvgTdiX; C:\WINDOWS.0\System32\DRIVERS\avgtdix.sys [231856 2015-10-08] (AVG Technologies CZ, s.r.o.)
R1 Beep; C:\WINDOWS.0\system32\Drivers\Beep.sys [4224 2006-01-13] (Microsoft Corporation)
S4 cbidf2k; C:\WINDOWS.0\system32\Drivers\cbidf2k.sys [13952 2006-01-13] (Microsoft Corporation)
S3 CCDECODE; C:\WINDOWS.0\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S1 Cdaudio; C:\WINDOWS.0\system32\Drivers\Cdaudio.sys [18688 2006-01-13] (Microsoft Corporation)
R4 Cdfs; C:\WINDOWS.0\system32\Drivers\Cdfs.sys [63744 2008-04-14] (Microsoft Corporation)
R1 Cdrom; C:\WINDOWS.0\System32\DRIVERS\cdrom.sys [62976 2008-04-14] (Microsoft Corporation)
R0 Disk; C:\WINDOWS.0\System32\DRIVERS\disk.sys [36352 2008-04-14] (Microsoft Corporation)
S4 dmboot; C:\WINDOWS.0\System32\drivers\dmboot.sys [799744 2008-04-14] (Microsoft Corp., Veritas Software)
R0 dmio; C:\WINDOWS.0\System32\drivers\dmio.sys [153344 2008-04-14] (Microsoft Corp., Veritas Software)
R0 dmload; C:\WINDOWS.0\System32\drivers\dmload.sys [5888 2006-01-13] (Microsoft Corp., Veritas Software.)
S3 DMusic; C:\WINDOWS.0\System32\drivers\DMusic.sys [52864 2008-04-14] (Microsoft Corporation)
S3 drmkaud; C:\WINDOWS.0\System32\drivers\drmkaud.sys [2944 2008-04-14] (Microsoft Corporation)
R3 E100B; C:\WINDOWS.0\System32\DRIVERS\e100b325.sys [140800 2002-09-25] (Intel Corporation)
R4 Fastfat; C:\WINDOWS.0\system32\Drivers\Fastfat.sys [143744 2008-04-14] (Microsoft Corporation)
R3 Fdc; C:\WINDOWS.0\System32\DRIVERS\fdc.sys [27392 2008-04-14] (Microsoft Corporation)
R1 Fips; C:\WINDOWS.0\system32\Drivers\Fips.sys [44544 2008-04-14] (Microsoft Corporation)
R3 Flpydisk; C:\WINDOWS.0\System32\DRIVERS\flpydisk.sys [20480 2008-04-14] (Microsoft Corporation)
R0 FltMgr; C:\WINDOWS.0\System32\drivers\fltmgr.sys [129792 2008-04-14] (Microsoft Corporation)
U1 Fs_Rec; C:\WINDOWS.0\system32\Drivers\Fs_Rec.sys [7936 2006-01-13] (Microsoft Corporation)
R0 Ftdisk; C:\WINDOWS.0\System32\DRIVERS\ftdisk.sys [125056 2006-01-13] (Microsoft Corporation)
R3 Gpc; C:\WINDOWS.0\System32\DRIVERS\msgpc.sys [35072 2008-04-14] (Microsoft Corporation)
S3 hidusb; C:\WINDOWS.0\System32\DRIVERS\hidusb.sys [10368 2008-04-14] (Microsoft Corporation)
R3 HTTP; C:\WINDOWS.0\System32\Drivers\HTTP.sys [265728 2009-10-20] (Microsoft Corporation)
R1 i8042prt; C:\WINDOWS.0\System32\DRIVERS\i8042prt.sys [52480 2008-04-14] (Microsoft Corporation)
R3 ialm; C:\WINDOWS.0\System32\DRIVERS\ialmnt5.sys [681469 2004-02-10] (Intel Corporation)
S1 Imapi; C:\WINDOWS.0\System32\DRIVERS\imapi.sys [42112 2008-04-14] (Microsoft Corporation)
R0 IntelIde; C:\WINDOWS.0\System32\DRIVERS\intelide.sys [5504 2008-04-14] (Microsoft Corporation)
R1 intelppm; C:\WINDOWS.0\System32\DRIVERS\intelppm.sys [36352 2008-04-14] (Microsoft Corporation)
S3 Ip6Fw; C:\WINDOWS.0\System32\drivers\ip6fw.sys [36608 2008-04-14] (Microsoft Corporation)
S3 IpFilterDriver; C:\WINDOWS.0\System32\DRIVERS\ipfltdrv.sys [32896 2006-01-13] (Microsoft Corporation)
S3 IpInIp; C:\WINDOWS.0\System32\DRIVERS\ipinip.sys [20864 2008-04-14] (Microsoft Corporation)
R3 IpNat; C:\WINDOWS.0\System32\DRIVERS\ipnat.sys [152832 2008-04-14] (Microsoft Corporation)
R1 IPSec; C:\WINDOWS.0\System32\DRIVERS\ipsec.sys [75264 2008-04-14] (Microsoft Corporation)
S3 IRENUM; C:\WINDOWS.0\System32\DRIVERS\irenum.sys [11264 2008-04-14] (Microsoft Corporation)
R0 isapnp; C:\WINDOWS.0\System32\DRIVERS\isapnp.sys [37248 2008-04-14] (Microsoft Corporation)
R1 Kbdclass; C:\WINDOWS.0\System32\DRIVERS\kbdclass.sys [24576 2008-04-14] (Microsoft Corporation)
R3 kmixer; C:\WINDOWS.0\System32\drivers\kmixer.sys [172416 2008-04-14] (Microsoft Corporation)
R0 KSecDD; C:\WINDOWS.0\system32\Drivers\KSecDD.sys [92928 2009-06-24] (Microsoft Corporation)
R3 MBAMProtector; C:\WINDOWS.0\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS.0\system32\drivers\MBAMSwissArmy.sys [170200 2016-02-21] (Malwarebytes)
R1 mnmdd; C:\WINDOWS.0\system32\Drivers\mnmdd.sys [4224 2006-01-13] (Microsoft Corporation)
S3 Modem; C:\WINDOWS.0\system32\Drivers\Modem.sys [30080 2008-04-14] (Microsoft Corporation)
R1 Mouclass; C:\WINDOWS.0\System32\DRIVERS\mouclass.sys [23040 2008-04-14] (Microsoft Corporation)
S3 mouhid; C:\WINDOWS.0\System32\DRIVERS\mouhid.sys [12160 2006-01-13] (Microsoft Corporation)
R0 MountMgr; C:\WINDOWS.0\system32\Drivers\MountMgr.sys [42368 2008-04-14] (Microsoft Corporation)
R3 MRxDAV; C:\WINDOWS.0\System32\DRIVERS\mrxdav.sys [180608 2008-04-14] (Microsoft Corporation)
R1 MRxSmb; C:\WINDOWS.0\System32\DRIVERS\mrxsmb.sys [456320 2011-07-15] (Microsoft Corporation)
R1 Msfs; C:\WINDOWS.0\system32\Drivers\Msfs.sys [19072 2008-04-14] (Microsoft Corporation)
S3 MSKSSRV; C:\WINDOWS.0\System32\drivers\MSKSSRV.sys [7552 2008-04-14] (Microsoft Corporation)
S3 MSPCLOCK; C:\WINDOWS.0\System32\drivers\MSPCLOCK.sys [5376 2008-04-14] (Microsoft Corporation)
S3 MSPQM; C:\WINDOWS.0\System32\drivers\MSPQM.sys [4992 2008-04-14] (Microsoft Corporation)
R3 mssmbios; C:\WINDOWS.0\System32\DRIVERS\mssmbios.sys [15488 2008-04-14] (Microsoft Corporation)
S3 MSTEE; C:\WINDOWS.0\System32\drivers\MSTEE.sys [5504 2008-04-14] (Microsoft Corporation)
R0 Mup; C:\WINDOWS.0\system32\Drivers\Mup.sys [105472 2011-04-21] (Microsoft Corporation)
S3 NABTSFEC; C:\WINDOWS.0\System32\DRIVERS\NABTSFEC.sys [85248 2008-04-14] (Microsoft Corporation)
R0 NDIS; C:\WINDOWS.0\system32\Drivers\NDIS.sys [182656 2008-04-14] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS.0\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 NdisTapi; C:\WINDOWS.0\System32\DRIVERS\ndistapi.sys [10496 2011-07-08] (Microsoft Corporation)
R3 Ndisuio; C:\WINDOWS.0\System32\DRIVERS\ndisuio.sys [14592 2008-04-14] (Microsoft Corporation)
R3 NdisWan; C:\WINDOWS.0\System32\DRIVERS\ndiswan.sys [91520 2008-04-14] (Microsoft Corporation)
R3 NDProxy; C:\WINDOWS.0\system32\Drivers\NDProxy.sys [40960 2013-11-27] (Microsoft Corporation)
R1 NetBIOS; C:\WINDOWS.0\System32\DRIVERS\netbios.sys [34688 2008-04-14] (Microsoft Corporation)
R1 NetBT; C:\WINDOWS.0\System32\DRIVERS\netbt.sys [162816 2008-04-14] (Microsoft Corporation)
R1 Npfs; C:\WINDOWS.0\system32\Drivers\Npfs.sys [30848 2008-04-14] (Microsoft Corporation)
S4 Ntfs; C:\WINDOWS.0\system32\Drivers\Ntfs.sys [574976 2008-04-14] (Microsoft Corporation)
R1 Null; C:\WINDOWS.0\system32\Drivers\Null.sys [2944 2006-01-13] (Microsoft Corporation)
R3 nv; C:\WINDOWS.0\System32\DRIVERS\nv4_mini.sys [3530432 2005-10-10] (NVIDIA Corporation) [File not signed]
S3 NwlnkFlt; C:\WINDOWS.0\System32\DRIVERS\nwlnkflt.sys [12416 2006-01-13] (Microsoft Corporation)
S3 NwlnkFwd; C:\WINDOWS.0\System32\DRIVERS\nwlnkfwd.sys [32512 2006-01-13] (Microsoft Corporation)
R3 Parport; C:\WINDOWS.0\System32\DRIVERS\parport.sys [80128 2008-04-14] (Microsoft Corporation)
R0 PartMgr; C:\WINDOWS.0\system32\Drivers\PartMgr.sys [19712 2008-04-14] (Microsoft Corporation)
R2 ParVdm; C:\WINDOWS.0\system32\Drivers\ParVdm.sys [6784 2006-01-13] (Microsoft Corporation)
R0 PCI; C:\WINDOWS.0\System32\DRIVERS\pci.sys [68224 2008-04-14] (Microsoft Corporation)
R0 PCIIde; C:\WINDOWS.0\system32\Drivers\PCIIde.sys [3328 2006-01-13] (Microsoft Corporation)
S4 Pcmcia; C:\WINDOWS.0\system32\Drivers\Pcmcia.sys [120192 2008-04-14] (Microsoft Corporation)
R3 PptpMiniport; C:\WINDOWS.0\System32\DRIVERS\raspptp.sys [48384 2008-04-14] (Microsoft Corporation)
R3 PSched; C:\WINDOWS.0\System32\DRIVERS\psched.sys [69120 2008-04-14] (Microsoft Corporation)
R3 Ptilink; C:\WINDOWS.0\System32\DRIVERS\ptilink.sys [17792 2006-01-13] (Parallel Technologies, Inc.)
R1 RasAcd; C:\WINDOWS.0\System32\DRIVERS\rasacd.sys [8832 2006-01-13] (Microsoft Corporation)
R3 Rasl2tp; C:\WINDOWS.0\System32\DRIVERS\rasl2tp.sys [51328 2008-04-14] (Microsoft Corporation)
R3 RasPppoe; C:\WINDOWS.0\System32\DRIVERS\raspppoe.sys [41472 2008-04-14] (Microsoft Corporation)
R3 Raspti; C:\WINDOWS.0\System32\DRIVERS\raspti.sys [16512 2006-01-13] (Microsoft Corporation)
R1 Rdbss; C:\WINDOWS.0\System32\DRIVERS\rdbss.sys [175744 2008-04-14] (Microsoft Corporation)
R1 RDPCDD; C:\WINDOWS.0\System32\DRIVERS\RDPCDD.sys [4224 2006-01-13] (Microsoft Corporation)
R3 rdpdr; C:\WINDOWS.0\System32\DRIVERS\rdpdr.sys [196224 2008-04-14] (Microsoft Corporation)
S3 RDPWD; C:\WINDOWS.0\system32\Drivers\RDPWD.sys [139784 2012-07-04] (Microsoft Corporation)
R1 redbook; C:\WINDOWS.0\System32\DRIVERS\redbook.sys [57600 2008-04-14] (Microsoft Corporation)
R2 Secdrv; C:\WINDOWS.0\System32\DRIVERS\secdrv.sys [20480 2008-04-13] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
R3 serenum; C:\WINDOWS.0\System32\DRIVERS\serenum.sys [15744 2008-04-14] (Microsoft Corporation)
R1 Serial; C:\WINDOWS.0\System32\DRIVERS\serial.sys [64512 2008-04-14] (Microsoft Corporation)
R0 sfdrv01; C:\WINDOWS.0\System32\drivers\sfdrv01.sys [48640 2005-03-03] (Protection Technology) [File not signed]
R0 sfdrv01a; C:\WINDOWS.0\System32\drivers\sfdrv01a.sys [63352 2006-07-05] (Protection Technology (StarForce))
R0 sfhlp02; C:\WINDOWS.0\System32\drivers\sfhlp02.sys [13680 2006-06-14] (Protection Technology (StarForce))
S1 Sfloppy; C:\WINDOWS.0\system32\Drivers\Sfloppy.sys [11392 2008-04-14] (Microsoft Corporation)
R0 sfsync02; C:\WINDOWS.0\System32\drivers\sfsync02.sys [27032 2006-07-10] (Protection Technology)
R0 sfvfs02; C:\WINDOWS.0\System32\drivers\sfvfs02.sys [82296 2007-01-12] (Protection Technology (StarForce))
S3 SLIP; C:\WINDOWS.0\System32\DRIVERS\SLIP.sys [11136 2008-04-14] (Microsoft Corporation)
R3 smwdm; C:\WINDOWS.0\System32\drivers\smwdm.sys [549672 2002-08-23] (Analog Devices, Inc.)
S3 splitter; C:\WINDOWS.0\System32\drivers\splitter.sys [6272 2008-04-14] (Microsoft Corporation)
R0 sr; C:\WINDOWS.0\System32\DRIVERS\sr.sys [73472 2008-04-14] (Microsoft Corporation)
R3 Srv; C:\WINDOWS.0\System32\DRIVERS\srv.sys [357888 2011-02-17] (Microsoft Corporation)
S3 StillCam; C:\WINDOWS.0\System32\DRIVERS\serscan.sys [6784 2006-01-06] (Microsoft Corporation)
S3 streamip; C:\WINDOWS.0\System32\DRIVERS\StreamIP.sys [15232 2008-04-14] (Microsoft Corporation)
R3 swenum; C:\WINDOWS.0\System32\DRIVERS\swenum.sys [4352 2008-04-14] (Microsoft Corporation)
S3 swmidi; C:\WINDOWS.0\System32\drivers\swmidi.sys [56576 2008-04-14] (Microsoft Corporation)
R3 sysaudio; C:\WINDOWS.0\System32\drivers\sysaudio.sys [60800 2008-04-14] (Microsoft Corporation)
R1 Tcpip; C:\WINDOWS.0\System32\DRIVERS\tcpip.sys [361600 2008-06-20] (Microsoft Corporation)
S3 TDPIPE; C:\WINDOWS.0\system32\Drivers\TDPIPE.sys [12040 2008-04-14] (Microsoft Corporation)
S3 TDTCP; C:\WINDOWS.0\system32\Drivers\TDTCP.sys [21896 2008-04-14] (Microsoft Corporation)
R1 TermDD; C:\WINDOWS.0\System32\DRIVERS\termdd.sys [40840 2008-04-14] (Microsoft Corporation)
S4 Udfs; C:\WINDOWS.0\system32\Drivers\Udfs.sys [66048 2008-04-14] (Microsoft Corporation)
R3 Update; C:\WINDOWS.0\System32\DRIVERS\update.sys [384768 2008-04-14] (Microsoft Corporation)
S3 usbccgp; C:\WINDOWS.0\System32\DRIVERS\usbccgp.sys [32384 2013-08-09] (Microsoft Corporation)
R3 usbehci; C:\WINDOWS.0\System32\DRIVERS\usbehci.sys [30336 2009-03-18] (Microsoft Corporation)
R3 usbhub; C:\WINDOWS.0\System32\DRIVERS\usbhub.sys [59520 2008-04-14] (Microsoft Corporation)
S3 usbscan; C:\WINDOWS.0\System32\DRIVERS\usbscan.sys [14976 2013-07-03] (Microsoft Corporation)
S3 USBSTOR; C:\WINDOWS.0\System32\DRIVERS\USBSTOR.SYS [26368 2008-04-14] (Microsoft Corporation)
R3 usbuhci; C:\WINDOWS.0\System32\DRIVERS\usbuhci.sys [20608 2008-04-14] (Microsoft Corporation)
S3 usbvideo; C:\WINDOWS.0\System32\Drivers\usbvideo.sys [123008 2013-07-17] (Microsoft Corporation)
R1 VgaSave; C:\WINDOWS.0\System32\drivers\vga.sys [20992 2008-04-14] (Microsoft Corporation)
R0 VolSnap; C:\WINDOWS.0\system32\Drivers\VolSnap.sys [52352 2008-04-14] (Microsoft Corporation)
R3 Wanarp; C:\WINDOWS.0\System32\DRIVERS\wanarp.sys [34560 2008-04-14] (Microsoft Corporation)
S3 Wdf01000; C:\WINDOWS.0\System32\Drivers\wdf01000.sys [503008 2008-03-27] (Microsoft Corporation)
R3 wdmaud; C:\WINDOWS.0\System32\drivers\wdmaud.sys [83072 2008-04-14] (Microsoft Corporation)
S3 WpdUsb; C:\WINDOWS.0\System32\Drivers\wpdusb.sys [18944 2006-01-13] (Microsoft Corporation)
R1 WS2IFSL; C:\WINDOWS.0\System32\drivers\ws2ifsl.sys [12032 2006-01-13] (Microsoft Corporation)
S3 WSTCODEC; C:\WINDOWS.0\System32\DRIVERS\WSTCODEC.SYS [19200 2008-04-14] (Microsoft Corporation)
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_cdcecm; system32\DRIVERS\ew_jucdcecm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
U5 ScsiPort; C:\WINDOWS.0\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
U3 Winsock - Google Desktop Search Backup Before First Install; no ImagePath
U3 Winsock - Google Desktop Search Backup Before Last Install; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-03-08 22:32 - 2016-03-08 22:32 - 00046489 _____ C:\Documents and Settings\Admistrimator\Desktop\FRST.txt
2016-03-08 22:32 - 2016-03-08 22:32 - 00000000 ____D C:\FRST
2016-03-08 22:30 - 2016-03-08 22:30 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Admistrimator\Desktop\FRSTLauncher.exe
2016-03-08 22:27 - 2016-03-08 22:27 - 01725440 _____ (Farbar) C:\Documents and Settings\Admistrimator\Desktop\FRST.exe
2016-03-05 21:37 - 2016-03-05 21:37 - 00000000 __SHD C:\FOUND.079
2016-02-19 15:36 - 2016-02-19 15:36 - 00001735 _____ C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome.lnk
2016-02-19 15:33 - 2016-03-08 21:38 - 00000938 _____ C:\WINDOWS.0\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-19 15:33 - 2016-03-08 20:07 - 00000934 _____ C:\WINDOWS.0\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-15 15:13 - 2016-02-15 15:13 - 00000000 __SHD C:\FOUND.078
2016-02-10 16:16 - 2016-02-10 16:16 - 00000000 __SHD C:\FOUND.077
2016-02-09 16:15 - 2016-02-09 16:15 - 00000000 __SHD C:\FOUND.076

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-03-08 22:34 - 2012-11-04 15:32 - 00000834 _____ C:\WINDOWS.0\Tasks\Adobe Flash Player Updater.job
2016-03-08 21:20 - 2015-10-18 19:31 - 00000436 _____ C:\WINDOWS.0\Tasks\Opera scheduled Autoupdate 1445189468.job
2016-03-08 20:07 - 2006-01-13 01:50 - 00001198 _____ C:\WINDOWS.0\win.ini
2016-03-08 20:07 - 2002-01-01 20:53 - 00039291 _____ C:\WINDOWS.0\system32\nvapps.xml
2016-03-08 20:06 - 2014-11-28 17:09 - 00000242 _____ C:\WINDOWS.0\Tasks\Microsoft Windows XP End of Service Notification Logon.job
2016-03-08 20:06 - 2002-01-01 00:53 - 00000006 ____H C:\WINDOWS.0\Tasks\SA.DAT
2016-03-08 15:21 - 2011-09-04 00:27 - 00000278 ___SH C:\Documents and Settings\Admistrimator\ntuser.ini
2016-03-08 15:21 - 2002-01-01 00:53 - 00032420 _____ C:\WINDOWS.0\SchedLgU.Txt
2016-03-08 15:00 - 2014-11-28 17:09 - 00000236 _____ C:\WINDOWS.0\Tasks\Microsoft Windows XP End of Service Notification Monthly.job
2016-03-07 22:05 - 2006-01-13 01:26 - 00002262 _____ C:\WINDOWS.0\system32\wpa.dbl
2016-03-05 23:23 - 2015-09-07 23:30 - 00000896 _____ C:\WINDOWS.0\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-03-02 21:08 - 2006-01-13 01:29 - 00000311 _____ C:\WINDOWS.0\system.ini
2016-02-21 22:47 - 2014-08-28 22:57 - 00170200 _____ (Malwarebytes) C:\WINDOWS.0\system32\Drivers\MBAMSwissArmy.sys
2016-02-21 22:41 - 2014-08-28 22:57 - 00000681 _____ C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2016-02-19 15:08 - 2012-11-04 15:32 - 00796864 _____ (Adobe Systems Incorporated) C:\WINDOWS.0\system32\FlashPlayerApp.exe
2016-02-19 15:08 - 2012-11-04 15:32 - 00142528 _____ (Adobe Systems Incorporated) C:\WINDOWS.0\system32\FlashPlayerCPLApp.cpl
2016-02-14 21:21 - 2011-09-04 23:15 - 00132608 _____ C:\Documents and Settings\Admistrimator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== Files in the root of some directories =======

2005-09-10 13:26 - 2005-09-10 13:26 - 0011252 ____H () C:\Program Files\folder.htt
2002-10-30 08:22 - 2002-10-30 08:22 - 0015592 _____ () C:\Program Files\owcstp16.dll
2012-06-29 20:15 - 2012-06-29 20:15 - 0022328 _____ () C:\Documents and Settings\Admistrimator\Application Data\PnkBstrK.sys
2012-06-30 18:59 - 2012-06-30 18:59 - 0000136 _____ () C:\Documents and Settings\Admistrimator\Local Settings\Application Data\fusioncache.dat
2011-09-04 23:15 - 2016-02-14 21:21 - 0132608 _____ () C:\Documents and Settings\Admistrimator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-09-23 17:51 - 2015-09-23 18:52 - 0000178 _____ () C:\Documents and Settings\All Users\Application Data\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS.0\explorer.exe => File is digitally signed
C:\WINDOWS.0\system32\winlogon.exe => File is digitally signed
C:\WINDOWS.0\system32\svchost.exe => File is digitally signed
C:\WINDOWS.0\system32\services.exe => File is digitally signed
C:\WINDOWS.0\system32\User32.dll => File is digitally signed
C:\WINDOWS.0\system32\userinit.exe => File is digitally signed
C:\WINDOWS.0\system32\rpcss.dll => File is digitally signed
C:\WINDOWS.0\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS.0\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS.0\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS.0\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS.0\Tasks\Microsoft Windows XP End of Service Notification Monthly.job => C:\WINDOWS.0\system32\xp_eos.exe
Task: C:\WINDOWS.0\Tasks\Microsoft Windows XP End of Service Notification Logon.job => C:\WINDOWS.0\system32\xp_eos.exe
Task: C:\WINDOWS.0\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS.0\system32\Macromed\Flash\FlashUtil32_20_0_0_306_pepper.exe
Task: C:\WINDOWS.0\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS.0\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS.0\Tasks\Opera scheduled Autoupdate 1445189468.job => C:\Program Files\Opera\launcher.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: AVG AntiVirus Free Edition (Enabled - Out of date) {17DDD097-36FF-435F-9E1B-52D74245D6BF}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\Admistrimator\Desktop" je 1238 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^InterVideo WinCinema Manager.lnk
C:\PROGRA~1\INTERV~1\Common\Bin\WINCIN~1.EXE


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\stary disk\\HRY\\StarCraft\\StarCraft.exe"="C:\\stary disk\\HRY\\StarCraft\\StarCraft.exe:*:Enabled:Starcraft"
"C:\\WINDOWS.0\\System32\\dplaysvr.exe"="C:\\WINDOWS.0\\System32\\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\\WINDOWS.0\\System32\\PnkBstrA.exe"="C:\\WINDOWS.0\\System32\\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\\WINDOWS.0\\System32\\PnkBstrB.exe"="C:\\WINDOWS.0\\System32\\PnkBstrB.exe:*:Enabled:PnkBstrB"
"F:\\FlatOut2\\FlatOut2.exe"="F:\\FlatOut2\\FlatOut2.exe:*:Enabled:FlatOut2"
"F:\\Counter-Strike 1.6\\csko.exe"="F:\\Counter-Strike 1.6\\csko.exe:*:Enabled:Half-Life Launcher"
"C:\\Program Files\\GOGcom\\Dungeon Keeper 2\\DKII.EXE"="C:\\Program Files\\GOGcom\\Dungeon Keeper 2\\DKII.EXE:*:Enabled:DKII"
"C:\\Counter-Strike 1.6\\csko.exe"="C:\\Counter-Strike 1.6\\csko.exe:*:Enabled:Half-Life Launcher"
"C:\\Counter-Strike 1.6\\hl.exe"="C:\\Counter-Strike 1.6\\hl.exe:*:Enabled:Half-Life Launcher"
"F:\\HRY\\FLATOUT\\flatout.exe"="F:\\HRY\\FLATOUT\\flatout.exe:*:Enabled:flatout"
"C:\\Counter-Strike 1.6\\hltv.exe"="C:\\Counter-Strike 1.6\\hltv.exe:*:Enabled:HLTV Launcher"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Games\\commandos\\mpserver.exe"="C:\\Games\\commandos\\mpserver.exe:*:Disabled:mpserver"
"C:\\Documents and Settings\\All Users\\Application Data\\Battle.net\\Agent\\Agent.3109\\Agent.exe"="C:\\Documents and Settings\\All Users\\Application Data\\Battle.net\\Agent\\Agent.3109\\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\\Program Files\\FreeTime\\FormatFactory\\FormatFactory.exe"="C:\\Program Files\\FreeTime\\FormatFactory\\FormatFactory.exe:*:Enabled:FormatFactory"
"F:\\HRY\\Bulanci\\bulanci.exe"="F:\\HRY\\Bulanci\\bulanci.exe:*:Enabled:bulanci"
"C:\\Program Files\\AVG\\Av\\avgnsx.exe"="C:\\Program Files\\AVG\\Av\\avgnsx.exe:*:Enabled:Online Shield"
"C:\\Program Files\\AVG\\Av\\avgdiagex.exe"="C:\\Program Files\\AVG\\Av\\avgdiagex.exe:*:Enabled:AVG Diagnostics"
"C:\\Program Files\\AVG\\Av\\avgmfapx.exe"="C:\\Program Files\\AVG\\Av\\avgmfapx.exe:*:Enabled:AVG Installer"
"C:\\Program Files\\AVG\\Av\\avgemcx.exe"="C:\\Program Files\\AVG\\Av\\avgemcx.exe:*:Enabled:Personal Email Scanner"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002"


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000


==================== End Of Log ==============================

[JaRon]

ahoj
1. Velikost slozky "C:\Documents and Settings\Admistrimator\Desktop" je 1238 MB. - poupratuj aby velkost nepresahovala 300MB
2. vypni automaticke aktualizacie systemu
3. spust s príkazového riadku chkdsk/r
a napis ci sa stav zlepsil

[backpase]

Malo by byť poupratované, mne ukazuje, že automatické aktualizácie sú vypnuté ale tu som prišiel na ďalší problém - pri spustení "control panel" mi vypíše chybu a sekne celý počítač.. disk bol skontrolovaný, no celkovo to nevyzerá lepšie zatiaľ

[JaRon]

1. spust s prikazoveho riadku sfc /scannow
2. vycisti PC s ADWCleanerom

[backpase]

Prikaz sfc/scannow ešte prešiel, takisto čistenie ADWCleaner ale po vyčistení a reštarte začali problémy - PC sa zasekával, niektoré veci ani nešli otvoriť a sám sa reštartoval.. takže som bol nútený obnoviť systém cez safe mode a teraz sa zapína.. mám znova skúsiť vyčistiť ADWCleanerom či zvoliť iný postup?

Edit: Počítač sa pri normalnom zapnutí neustále reštartuje, pracovať ide len v núdzovom režime

[JaRon]

HDTune free http://forum.viry.cz/viewtopic.php?f=46&t=79325 cast 8
benchmark- health- error

[backpase]

health je ok, error nenašiel žiadny.. skúšal som a stále nejde bez núdzového režimu aj keď včera večer istý čas išiel, toto mi vyšlo z benchmarku

HD Tune Pro: WDC WD400JB-00JJC0 Benchmark

Test capacity: full

Read transfer rate
Transfer Rate Minimum : 32.8 MB/s
Transfer Rate Maximum : 56.6 MB/s
Transfer Rate Average : 49.7 MB/s
Access Time : 13.7 ms
Burst Rate : 82.1 MB/s
CPU Usage : 5.2%

[JaRon]

Vloz aktualny log frst - disk je OK

[backpase]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01
Ran by Admistrimator (administrator) on 821CF8C318FE415 (12-03-2016 23:59:32)
Running from C:\Documents and Settings\Admistrimator\Desktop
Loaded Profiles: Admistrimator (Available Profiles: Admistrimator & Administrator)
Platform: Microsoft Windows XP Service Pack 3 (X86) Language: English (United States)
Internet Explorer Version 8 (Default browser: Opera)
Boot Mode: Safe Mode (with Networking)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\WINDOWS.0\System32\smss.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\csrss.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\winlogon.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\services.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\lsass.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\svchost.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\svchost.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\svchost.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\svchost.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\svchost.exe
(Microsoft Corporation) C:\WINDOWS.0\Explorer.EXE


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IgfxTray] => C:\WINDOWS.0\system32\igfxtray.exe [155648 2004-02-10] (Intel Corporation)
HKLM\...\Run: [HotKeysCmds] => C:\WINDOWS.0\system32\hkcmd.exe [118784 2004-02-10] (Intel Corporation)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS.0\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [nwiz] => nwiz.exe /install
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\WINDOWS.0\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\Av\avgui.exe [3826600 2015-10-30] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [179624 2016-02-18] (AVG Technologies CZ, s.r.o.)
HKLM\...\Winlogon: [Userinit] C:\WINDOWS.0\system32\userinit.exe,
HKLM\...\Winlogon: [UIHost] C:\WINDOWS.0\system32\logonui.exe [514560 2008-04-14] (Microsoft Corporation)
Winlogon\Notify\avgrsstarter: C:\WINDOWS.0\system32\avgrsstx.dll [2013-01-07] (AVG Technologies CZ, s.r.o.)
Winlogon\Notify\crypt32chain: C:\WINDOWS.0\system32\crypt32.dll [2013-10-07] (Microsoft Corporation)
Winlogon\Notify\cryptnet: C:\WINDOWS.0\system32\cryptnet.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\cscdll: C:\WINDOWS.0\system32\cscdll.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\dimsntfy: C:\WINDOWS.0\System32\dimsntfy.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS.0\system32\igfxsrvc.dll [2004-02-10] (Intel Corporation)
Winlogon\Notify\ScCertProp: C:\WINDOWS.0\system32\wlnotify.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\Schedule: C:\WINDOWS.0\system32\wlnotify.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\sclgntfy: C:\WINDOWS.0\system32\sclgntfy.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\SensLogn: C:\WINDOWS.0\system32\WlNotify.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\termsrv: C:\WINDOWS.0\system32\wlnotify.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\wlballoon: C:\WINDOWS.0\system32\wlnotify.dll [2008-04-14] (Microsoft Corporation)
HKLM\...\Policies\Explorer: [NoRemoteRecursiveEvents] 1
HKU\S-1-5-19\...\Policies\Explorer: [NoInternetIcon] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-19\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS.0\System32\logon.scr [220672 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [tscuninstall] => C:\WINDOWS.0\system32\tscupgrd.exe [44544 2006-01-13] (Microsoft Corporation)
HKU\S-1-5-20\...\Policies\Explorer: [NoInternetIcon] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-20\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS.0\System32\logon.scr [220672 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\Run: [CTFMON.EXE] => C:\WINDOWS.0\system32\ctfmon.exe [15360 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6628056 2016-01-15] (Piriform Ltd)
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\Policies\Explorer: [NoInternetIcon] 0
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {38e7f6ba-1b11-11e2-80ac-88ef9d15ab97} - F:\iLinker.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {3c2f68c2-2b9f-11e3-8498-0007e9b80159} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {73609ada-e48a-11e1-bfe7-946d74f1282f} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {a4df56e4-cc3b-11e1-bf85-0007e9b80159} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {a4df56e8-cc3b-11e1-bf85-0007e9b80159} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {a4df56ea-cc3b-11e1-bf85-0007e9b80159} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {aca9a326-6ae4-11e4-98b5-0007e9b80159} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {ef38f3da-e446-11e1-bfe6-a954e5758428} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS.0\LAURA.SCR [403232 2013-03-11] (MacSourcery)
HKU\S-1-5-18\...\RunOnce: [tscuninstall] => C:\WINDOWS.0\system32\tscupgrd.exe [44544 2006-01-13] (Microsoft Corporation)
HKU\S-1-5-18\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS.0\system32\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe -update pepperplugin
HKU\S-1-5-18\...\Policies\Explorer: [NoInternetIcon] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-18\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS.0\system32\logon.scr [220672 2008-04-14] (Microsoft Corporation)
ShellExecuteHooks: URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS.0\system32\shell32.dll [8462848 2012-06-08] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [4SyncOverlay1] -> {2012DE06-50C0-48BD-ACDE-88F95D4CAD1F} => No File
ShellIconOverlayIdentifiers: [4SyncOverlay2] -> {C72C6188-BEF2-46E5-A89A-52F0ED75219E} => No File
ShellIconOverlayIdentifiers: [4SyncOverlay3] -> {C92F6BC2-AF61-4C0E-80E0-939B8282DDB7} => No File
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\eOne Client.lnk [2014-01-26]
ShortcutTarget: eOne Client.lnk -> C:\Program Files\SecureMedia\Encryptonite ONE System\Client\smdaemon.exe (SecureMedia Inc.)
Startup: C:\Documents and Settings\Admistrimator\Start Menu\Programs\Startup\Kalendár.lnk [2011-12-31]
ShortcutTarget: Kalendár.lnk -> C:\WINDOWS.0\MENINY.EXE ()
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\Av\avgrsx.exe /sync /restart

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 01 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog5 02 C:\WINDOWS.0\system32\winrnr.dll [16896 2008-04-14] (Microsoft Corporation)
Winsock: Catalog5 03 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 01 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 02 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 03 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 04 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 05 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 06 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 07 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 08 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 09 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 10 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 11 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 12 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 13 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 14 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 15 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 16 C:\WINDOWS.0\system32\rsvpsp.dll [92672 2008-04-14] (Microsoft Corporation)
Winsock: Catalog9 17 C:\WINDOWS.0\system32\rsvpsp.dll [92672 2008-04-14] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D372DBDD-B3E3-415D-BD21-819C0DBB22F3}: [DhcpNameServer] 192.168.1.1
ManualProxies:

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-19\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-20\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS.0\system32\blank.htm
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS.0\system32\blank.htm
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.sk/
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.msn.com/?ocid=EIE8HP&PC=UP61
SearchScopes: HKU\S-1-5-21-1454471165-1326574676-1801674531-1004 -> DefaultScope {2D5D7812-F0CE-4A74-939D-162EDD2EAF35} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
SearchScopes: HKU\S-1-5-21-1454471165-1326574676-1801674531-1004 -> {2D5D7812-F0CE-4A74-939D-162EDD2EAF35} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
SearchScopes: HKU\S-1-5-21-1454471165-1326574676-1801674531-1004 -> {91C3F1EA-2160-46AF-97EE-058948E03315} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1454471165-1326574676-1801674531-1004 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL =
Toolbar: HKLM - No Name - {A057A204-BACC-4D26-9990-79A187E2698E} - No File
Toolbar: HKU\S-1-5-21-1454471165-1326574676-1801674531-1004 -> No Name - {A057A204-BACC-4D26-9990-79A187E2698E} - No File
DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1416005426043
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS.0\system32\Macromed\Flash\NPSWF32_11_9_900_152.dll [2013-11-20] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS.0\system32\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS.0\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-19] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-19] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1454471165-1326574676-1801674531-1004: @elecard.com/elecard-iptv-plugin -> C:\Program Files\SecureMedia\Encryptonite ONE System\Client\elecard\npiptv.dll [2013-05-29] ()
FF Extension: No Name - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\extensions\defsearchp@gmail.com [not found]
FF Extension: No Name - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\extensions\deskCutv2@gmail.com [not found]
FF Extension: No Name - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com [not found]
FF Extension: No Name - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\extensions\d4db60df25f14dae9dd18@185c395f9e794c9ab86be3eb.com [not found]
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS.0\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-11-28] [not signed]
FF Extension: Weather Forecast - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\Extensions\jid1-aqwHRwQpv3JUMs@jetpack.xpi [2015-10-07]
FF Extension: Adblock Plus - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-10-07]
FF HKLM\...\Firefox\Extensions: [{3f963a5b-e555-4543-90e2-c3908898db71}] - C:\Program Files\AVG\AVG8\Firefox => not found
FF HKLM\...\Firefox\Extensions: [{1d5287d1-8a92-0001-1f31-1cec198018d8}] - C:\Program Files\AVG\AVG8\ToolbarFF => not found
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS.0\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension

Chrome:
=======
CHR Profile: C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-24]
CHR Extension: (Gmail) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-28]
CHR Extension: (Disk Google) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-28]
CHR Extension: (Google Search) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-28]
CHR Extension: (Dokumenty Google v režime offline) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-12]
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-19]
CHR Extension: (Prezentácie Google) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-19]
CHR Extension: (YouTube) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-19]

Opera:
=======
OPR Extension: (Tampermonkey Beta) - C:\Documents and Settings\Admistrimator\Application Data\Opera Software\Opera Stable\Extensions\mfdhdgbonjidekjkjmjaneanmdmpmidf [2016-02-23]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS.0\system32\Macromed\Flash\FlashPlayerUpdateService.exe [269504 2016-02-19] (Adobe Systems Incorporated)
S4 Alerter; C:\WINDOWS.0\system32\alrsvc.dll [17408 2008-04-14] (Microsoft Corporation)
S3 ALG; C:\WINDOWS.0\System32\alg.exe [44544 2008-04-14] (Microsoft Corporation)
S3 AppMgmt; C:\WINDOWS.0\System32\appmgmts.dll [167936 2008-04-14] (Microsoft Corporation)
S3 aspnet_state; C:\WINDOWS.0\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [34312 2008-07-25] (Microsoft Corporation)
S2 AudioSrv; C:\WINDOWS.0\System32\audiosrv.dll [42496 2008-04-14] (Microsoft Corporation)
S3 AvgAMPS; C:\Program Files\AVG\Av\avgamps.exe [595376 2015-10-30] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [3815648 2015-10-30] (AVG Technologies CZ, s.r.o.)
S2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [865704 2016-02-18] (AVG Technologies CZ, s.r.o.)
S2 avgwd; C:\Program Files\AVG\Av\avgwdsvcx.exe [579776 2015-10-30] (AVG Technologies CZ, s.r.o.)
S2 BITS; C:\WINDOWS.0\system32\qmgr.dll [409088 2008-04-14] (Microsoft Corporation)
S2 Browser; C:\WINDOWS.0\System32\browser.dll [78336 2012-07-06] (Microsoft Corporation)
S3 CiSvc; C:\WINDOWS.0\system32\cisvc.exe [5632 2008-04-14] (Microsoft Corporation)
S4 ClipSrv; C:\WINDOWS.0\system32\clipsrv.exe [33280 2008-04-14] (Microsoft Corporation)
S3 clr_optimization_v2.0.50727_32; C:\WINDOWS.0\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [69632 2008-07-25] (Microsoft Corporation)
R2 CryptSvc; C:\WINDOWS.0\System32\cryptsvc.dll [62464 2008-04-14] (Microsoft Corporation)
R2 DcomLaunch; C:\WINDOWS.0\system32\rpcss.dll [401408 2009-02-09] (Microsoft Corporation)
R2 Dhcp; C:\WINDOWS.0\System32\dhcpcsvc.dll [126976 2008-04-14] (Microsoft Corporation)
S3 dmadmin; C:\WINDOWS.0\System32\dmadmin.exe [224768 2008-04-14] (Microsoft Corp., Veritas Software)
R2 dmserver; C:\WINDOWS.0\System32\dmserver.dll [23552 2008-04-14] (Microsoft Corp.)
R2 Dnscache; C:\WINDOWS.0\System32\dnsrslvr.dll [45568 2009-04-20] (Microsoft Corporation)
S3 Dot3svc; C:\WINDOWS.0\System32\dot3svc.dll [132096 2008-04-14] (Microsoft Corporation)
S3 EapHost; C:\WINDOWS.0\System32\eapsvc.dll [33792 2008-04-14] (Microsoft Corporation)
S2 ERSvc; C:\WINDOWS.0\System32\ersvc.dll [23040 2008-04-14] (Microsoft Corporation)
R2 Eventlog; C:\WINDOWS.0\system32\services.exe [110592 2009-02-06] (Microsoft Corporation)
S3 EventSystem; C:\WINDOWS.0\system32\es.dll [253952 2008-07-07] (Microsoft Corporation)
S3 FastUserSwitchingCompatibility; C:\WINDOWS.0\System32\shsvcs.dll [135168 2009-07-28] (Microsoft Corporation)
S3 FontCache3.0.0.0; c:\WINDOWS.0\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [46104 2008-07-29] (Microsoft Corporation)
R2 helpsvc; C:\WINDOWS.0\PCHealth\HelpCtr\Binaries\pchsvc.dll [38400 2008-04-14] (Microsoft Corporation)
S3 hkmsvc; C:\WINDOWS.0\System32\kmsvc.dll [61440 2008-04-14] (Microsoft Corporation)
S3 HTTPFilter; C:\WINDOWS.0\System32\w3ssl.dll [15872 2008-04-14] (Microsoft Corporation)
S3 idsvc; c:\WINDOWS.0\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [881664 2008-07-29] (Microsoft Corporation)
S3 ImapiService; C:\WINDOWS.0\system32\imapi.exe [150528 2008-04-14] (Microsoft Corporation)
R2 lanmanserver; C:\WINDOWS.0\System32\srvsvc.dll [99840 2010-08-27] (Microsoft Corporation)
R2 lanmanworkstation; C:\WINDOWS.0\System32\wkssvc.dll [132096 2009-06-10] (Microsoft Corporation)
R2 LmHosts; C:\WINDOWS.0\System32\lmhsvc.dll [13824 2008-04-14] (Microsoft Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S4 Messenger; C:\WINDOWS.0\System32\msgsvc.dll [33792 2008-04-14] (Microsoft Corporation)
S3 mnmsrvc; C:\WINDOWS.0\system32\mnmsrvc.exe [32768 2008-04-14] (Microsoft Corporation)
S3 MSDTC; C:\WINDOWS.0\system32\msdtc.exe [6144 2008-04-14] (Microsoft Corporation)
S3 MSIServer; C:\WINDOWS.0\System32\msiexec.exe [78848 2008-04-14] (Microsoft Corporation)
S3 napagent; C:\WINDOWS.0\System32\qagentrt.dll [291328 2008-04-14] (Microsoft Corporation)
S4 NetDDE; C:\WINDOWS.0\system32\netdde.exe [111104 2008-04-14] (Microsoft Corporation)
S4 NetDDEdsdm; C:\WINDOWS.0\system32\netdde.exe [111104 2008-04-14] (Microsoft Corporation)
S3 Netlogon; C:\WINDOWS.0\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation)
R3 Netman; C:\WINDOWS.0\System32\netman.dll [198144 2008-04-14] (Microsoft Corporation)
S4 NetTcpPortSharing; c:\WINDOWS.0\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [132096 2008-07-29] (Microsoft Corporation)
S3 Nla; C:\WINDOWS.0\System32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
S3 NtLmSsp; C:\WINDOWS.0\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation)
S3 NtmsSvc; C:\WINDOWS.0\system32\ntmssvc.dll [435200 2008-04-14] (Microsoft Corporation)
S2 NVSvc; C:\WINDOWS.0\system32\nvsvc32.exe [131139 2005-10-10] (NVIDIA Corporation) [File not signed]
R2 PlugPlay; C:\WINDOWS.0\system32\services.exe [110592 2009-02-06] (Microsoft Corporation)
S2 PnkBstrA; C:\WINDOWS.0\system32\PnkBstrA.exe [66872 2012-06-29] ()
S2 PolicyAgent; C:\WINDOWS.0\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation)
S2 ProtectedStorage; C:\WINDOWS.0\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation)
S3 RasAuto; C:\WINDOWS.0\System32\rasauto.dll [88576 2008-04-14] (Microsoft Corporation)
S3 RasMan; C:\WINDOWS.0\System32\rasmans.dll [186368 2008-04-14] (Microsoft Corporation)
S3 RDSessMgr; C:\WINDOWS.0\system32\sessmgr.exe [141312 2008-04-14] (Microsoft Corporation)
S4 RemoteAccess; C:\WINDOWS.0\System32\mprdim.dll [53248 2008-04-14] (Microsoft Corporation)
S2 RemoteRegistry; C:\WINDOWS.0\system32\regsvc.dll [59904 2008-04-14] (Microsoft Corporation)
S3 RpcLocator; C:\WINDOWS.0\system32\locator.exe [75264 2008-04-14] (Microsoft Corporation)
R2 RpcSs; C:\WINDOWS.0\system32\rpcss.dll [401408 2009-02-09] (Microsoft Corporation)
S3 RSVP; C:\WINDOWS.0\system32\rsvp.exe [132608 2006-01-13] (Microsoft Corporation)
S2 SamSs; C:\WINDOWS.0\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation)
S3 SCardSvr; C:\WINDOWS.0\System32\SCardSvr.exe [95744 2008-04-14] (Microsoft Corporation)
S2 Schedule; C:\WINDOWS.0\system32\schedsvc.dll [192512 2008-04-14] (Microsoft Corporation)
S2 seclogon; C:\WINDOWS.0\System32\seclogon.dll [18944 2008-04-14] (Microsoft Corporation)
S2 SENS; C:\WINDOWS.0\system32\sens.dll [39424 2008-04-14] (Microsoft Corporation)
R2 SharedAccess; C:\WINDOWS.0\System32\ipnathlp.dll [331264 2008-04-14] (Microsoft Corporation)
S2 ShellHWDetection; C:\WINDOWS.0\System32\shsvcs.dll [135168 2009-07-28] (Microsoft Corporation)
S2 SoundMAX Agent Service (default); C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056 2002-07-15] (Analog Devices, Inc.) [File not signed]
S2 Spooler; C:\WINDOWS.0\system32\spoolsv.exe [58880 2010-08-17] (Microsoft Corporation)
R2 srservice; C:\WINDOWS.0\system32\srsvc.dll [171008 2008-04-14] (Microsoft Corporation)
S3 SSDPSRV; C:\WINDOWS.0\System32\ssdpsrv.dll [71680 2008-04-14] (Microsoft Corporation)
S2 stisvc; C:\WINDOWS.0\system32\wiaservc.dll [333824 2008-04-14] (Microsoft Corporation)
S3 SysmonLog; C:\WINDOWS.0\system32\smlogsvc.exe [89600 2008-04-14] (Microsoft Corporation)
S3 TapiSrv; C:\WINDOWS.0\System32\tapisrv.dll [249856 2008-04-14] (Microsoft Corporation)
R3 TermService; C:\WINDOWS.0\System32\termsrv.dll [295424 2008-04-14] (Microsoft Corporation)
S2 Themes; C:\WINDOWS.0\System32\shsvcs.dll [135168 2009-07-28] (Microsoft Corporation)
S4 TlntSvr; C:\WINDOWS.0\system32\tlntsvr.exe [73216 2008-04-14] (Microsoft Corporation)
S2 TrkWks; C:\WINDOWS.0\system32\trkwks.dll [90112 2008-04-14] (Microsoft Corporation)
S2 UMWdf; C:\WINDOWS.0\system32\wdfmgr.exe [38912 2006-01-13] (Microsoft Corporation)
S3 upnphost; C:\WINDOWS.0\System32\upnphost.dll [185856 2008-04-14] (Microsoft Corporation)
S3 UPS; C:\WINDOWS.0\System32\ups.exe [18432 2008-04-14] (Microsoft Corporation)
S3 VSS; C:\WINDOWS.0\System32\vssvc.exe [289792 2008-04-14] (Microsoft Corporation)
S2 W32Time; C:\WINDOWS.0\system32\w32time.dll [175104 2008-04-14] (Microsoft Corporation)
S2 WebClient; C:\WINDOWS.0\System32\webclnt.dll [68096 2008-04-14] (Microsoft Corporation)
R2 winmgmt; C:\WINDOWS.0\system32\wbem\WMIsvc.dll [144896 2008-04-14] (Microsoft Corporation)
S3 WmdmPmSN; C:\WINDOWS.0\system32\mspmsnsv.dll [25088 2006-01-13] (Microsoft Corporation)
S3 Wmi; C:\WINDOWS.0\System32\advapi32.dll [617472 2009-02-09] (Microsoft Corporation)
S3 WmiApSrv; C:\WINDOWS.0\system32\wbem\wmiapsrv.exe [126464 2008-04-14] (Microsoft Corporation)
S2 wscsvc; C:\WINDOWS.0\system32\wscsvc.dll [80896 2008-04-14] (Microsoft Corporation)
S2 wuauserv; C:\WINDOWS.0\system32\wuauserv.dll [6656 2008-04-14] (Microsoft Corporation)
R2 WZCSVC; C:\WINDOWS.0\System32\wzcsvc.dll [483840 2008-04-14] (Microsoft Corporation)
S3 xmlprov; C:\WINDOWS.0\System32\xmlprov.dll [129024 2008-04-14] (Microsoft Corporation)
S3 COMSysApp; C:\WINDOWS.0\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
S3 SwPrv; C:\WINDOWS.0\system32\dllhost.exe /Processid:{8D4D742B-B208-4887-B5A5-8E80393E4496}

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 ACPI; C:\WINDOWS.0\System32\DRIVERS\ACPI.sys [187776 2008-04-14] (Microsoft Corporation)
S4 ACPIEC; C:\WINDOWS.0\system32\Drivers\ACPIEC.sys [11648 2006-01-13] (Microsoft Corporation)
S3 aeaudio; C:\WINDOWS.0\System32\drivers\aeaudio.sys [98752 2002-08-22] (Andrea Electronics Corporation)
S3 aec; C:\WINDOWS.0\System32\drivers\aec.sys [142592 2008-04-13] (Microsoft Corporation)
R1 AFD; C:\WINDOWS.0\System32\drivers\afd.sys [138496 2011-08-17] (Microsoft Corporation)
S3 AsyncMac; C:\WINDOWS.0\System32\DRIVERS\asyncmac.sys [14336 2008-04-14] (Microsoft Corporation)
R0 atapi; C:\WINDOWS.0\System32\DRIVERS\atapi.sys [96512 2008-04-14] (Microsoft Corporation)
S3 Atmarpc; C:\WINDOWS.0\System32\DRIVERS\atmarpc.sys [59904 2008-04-14] (Microsoft Corporation)
S3 audstub; C:\WINDOWS.0\System32\DRIVERS\audstub.sys [3072 2006-01-06] (Microsoft Corporation)
S1 Avgdiskx; C:\WINDOWS.0\System32\DRIVERS\avgdiskx.sys [156080 2015-08-10] (AVG Technologies CZ, s.r.o.)
S1 AVGIDSDriverl; C:\WINDOWS.0\System32\DRIVERS\avgidsdriverlx.sys [243632 2015-10-19] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS.0\System32\DRIVERS\avgidshx.sys [231344 2015-08-20] (AVG Technologies CZ, s.r.o.)
S1 AVGIDSShim; C:\WINDOWS.0\System32\DRIVERS\avgidsshimx.sys [31664 2015-08-14] (AVG Technologies CZ, s.r.o.)
S1 AvgLdx86; C:\WINDOWS.0\System32\DRIVERS\avgldx86.sys [229296 2015-10-21] (AVG Technologies CZ, s.r.o.)
S0 Avglogx; C:\WINDOWS.0\System32\DRIVERS\avglogx.sys [308656 2015-08-14] (AVG Technologies CZ, s.r.o.)
R0 AvgMfx86; C:\WINDOWS.0\System32\DRIVERS\avgmfx86.sys [192944 2015-10-21] (AVG Technologies CZ, s.r.o.)
R1 AvgTdiX; C:\WINDOWS.0\System32\DRIVERS\avgtdix.sys [231856 2015-10-08] (AVG Technologies CZ, s.r.o.)
R1 Beep; C:\WINDOWS.0\system32\Drivers\Beep.sys [4224 2006-01-13] (Microsoft Corporation)
S4 cbidf2k; C:\WINDOWS.0\system32\Drivers\cbidf2k.sys [13952 2006-01-13] (Microsoft Corporation)
S3 CCDECODE; C:\WINDOWS.0\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S1 Cdaudio; C:\WINDOWS.0\system32\Drivers\Cdaudio.sys [18688 2006-01-13] (Microsoft Corporation)
R4 Cdfs; C:\WINDOWS.0\system32\Drivers\Cdfs.sys [63744 2008-04-14] (Microsoft Corporation)
R1 Cdrom; C:\WINDOWS.0\System32\DRIVERS\cdrom.sys [62976 2008-04-14] (Microsoft Corporation)
R0 Disk; C:\WINDOWS.0\System32\DRIVERS\disk.sys [36352 2008-04-14] (Microsoft Corporation)
S4 dmboot; C:\WINDOWS.0\System32\drivers\dmboot.sys [799744 2008-04-14] (Microsoft Corp., Veritas Software)
R0 dmio; C:\WINDOWS.0\System32\drivers\dmio.sys [153344 2008-04-14] (Microsoft Corp., Veritas Software)
R0 dmload; C:\WINDOWS.0\System32\drivers\dmload.sys [5888 2006-01-13] (Microsoft Corp., Veritas Software.)
S3 DMusic; C:\WINDOWS.0\System32\drivers\DMusic.sys [52864 2008-04-14] (Microsoft Corporation)
S3 drmkaud; C:\WINDOWS.0\System32\drivers\drmkaud.sys [2944 2008-04-14] (Microsoft Corporation)
R3 E100B; C:\WINDOWS.0\System32\DRIVERS\e100b325.sys [140800 2002-09-25] (Intel Corporation)
R4 Fastfat; C:\WINDOWS.0\system32\Drivers\Fastfat.sys [143744 2008-04-14] (Microsoft Corporation)
R3 Fdc; C:\WINDOWS.0\System32\DRIVERS\fdc.sys [27392 2008-04-14] (Microsoft Corporation)
S1 Fips; C:\WINDOWS.0\system32\Drivers\Fips.sys [44544 2008-04-14] (Microsoft Corporation)
R3 Flpydisk; C:\WINDOWS.0\System32\DRIVERS\flpydisk.sys [20480 2008-04-14] (Microsoft Corporation)
R0 FltMgr; C:\WINDOWS.0\System32\drivers\fltmgr.sys [129792 2008-04-14] (Microsoft Corporation)
U1 Fs_Rec; C:\WINDOWS.0\system32\Drivers\Fs_Rec.sys [7936 2006-01-13] (Microsoft Corporation)
R0 Ftdisk; C:\WINDOWS.0\System32\DRIVERS\ftdisk.sys [125056 2006-01-13] (Microsoft Corporation)
R3 Gpc; C:\WINDOWS.0\System32\DRIVERS\msgpc.sys [35072 2008-04-14] (Microsoft Corporation)
S3 hidusb; C:\WINDOWS.0\System32\DRIVERS\hidusb.sys [10368 2008-04-14] (Microsoft Corporation)
S3 HTTP; C:\WINDOWS.0\System32\Drivers\HTTP.sys [265728 2009-10-20] (Microsoft Corporation)
R1 i8042prt; C:\WINDOWS.0\System32\DRIVERS\i8042prt.sys [52480 2008-04-14] (Microsoft Corporation)
S3 ialm; C:\WINDOWS.0\System32\DRIVERS\ialmnt5.sys [681469 2004-02-10] (Intel Corporation)
S1 Imapi; C:\WINDOWS.0\System32\DRIVERS\imapi.sys [42112 2008-04-14] (Microsoft Corporation)
R0 IntelIde; C:\WINDOWS.0\System32\DRIVERS\intelide.sys [5504 2008-04-14] (Microsoft Corporation)
S1 intelppm; C:\WINDOWS.0\System32\DRIVERS\intelppm.sys [36352 2008-04-14] (Microsoft Corporation)
S3 Ip6Fw; C:\WINDOWS.0\System32\drivers\ip6fw.sys [36608 2008-04-14] (Microsoft Corporation)
S3 IpFilterDriver; C:\WINDOWS.0\System32\DRIVERS\ipfltdrv.sys [32896 2006-01-13] (Microsoft Corporation)
S3 IpInIp; C:\WINDOWS.0\System32\DRIVERS\ipinip.sys [20864 2008-04-14] (Microsoft Corporation)
R3 IpNat; C:\WINDOWS.0\System32\DRIVERS\ipnat.sys [152832 2008-04-14] (Microsoft Corporation)
R1 IPSec; C:\WINDOWS.0\System32\DRIVERS\ipsec.sys [75264 2008-04-14] (Microsoft Corporation)
S3 IRENUM; C:\WINDOWS.0\System32\DRIVERS\irenum.sys [11264 2008-04-14] (Microsoft Corporation)
R0 isapnp; C:\WINDOWS.0\System32\DRIVERS\isapnp.sys [37248 2008-04-14] (Microsoft Corporation)
R1 Kbdclass; C:\WINDOWS.0\System32\DRIVERS\kbdclass.sys [24576 2008-04-14] (Microsoft Corporation)
S3 kmixer; C:\WINDOWS.0\System32\drivers\kmixer.sys [172416 2008-04-14] (Microsoft Corporation)
R0 KSecDD; C:\WINDOWS.0\system32\Drivers\KSecDD.sys [92928 2009-06-24] (Microsoft Corporation)
S3 MBAMProtector; C:\WINDOWS.0\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S1 mnmdd; C:\WINDOWS.0\system32\Drivers\mnmdd.sys [4224 2006-01-13] (Microsoft Corporation)
S3 Modem; C:\WINDOWS.0\system32\Drivers\Modem.sys [30080 2008-04-14] (Microsoft Corporation)
R1 Mouclass; C:\WINDOWS.0\System32\DRIVERS\mouclass.sys [23040 2008-04-14] (Microsoft Corporation)
S3 mouhid; C:\WINDOWS.0\System32\DRIVERS\mouhid.sys [12160 2006-01-13] (Microsoft Corporation)
R0 MountMgr; C:\WINDOWS.0\system32\Drivers\MountMgr.sys [42368 2008-04-14] (Microsoft Corporation)
S3 MRxDAV; C:\WINDOWS.0\System32\DRIVERS\mrxdav.sys [180608 2008-04-14] (Microsoft Corporation)
R1 MRxSmb; C:\WINDOWS.0\System32\DRIVERS\mrxsmb.sys [456320 2011-07-15] (Microsoft Corporation)
R1 Msfs; C:\WINDOWS.0\system32\Drivers\Msfs.sys [19072 2008-04-14] (Microsoft Corporation)
S3 MSKSSRV; C:\WINDOWS.0\System32\drivers\MSKSSRV.sys [7552 2008-04-14] (Microsoft Corporation)
S3 MSPCLOCK; C:\WINDOWS.0\System32\drivers\MSPCLOCK.sys [5376 2008-04-14] (Microsoft Corporation)
S3 MSPQM; C:\WINDOWS.0\System32\drivers\MSPQM.sys [4992 2008-04-14] (Microsoft Corporation)
R3 mssmbios; C:\WINDOWS.0\System32\DRIVERS\mssmbios.sys [15488 2008-04-14] (Microsoft Corporation)
S3 MSTEE; C:\WINDOWS.0\System32\drivers\MSTEE.sys [5504 2008-04-14] (Microsoft Corporation)
R0 Mup; C:\WINDOWS.0\system32\Drivers\Mup.sys [105472 2011-04-21] (Microsoft Corporation)
S3 NABTSFEC; C:\WINDOWS.0\System32\DRIVERS\NABTSFEC.sys [85248 2008-04-14] (Microsoft Corporation)
R0 NDIS; C:\WINDOWS.0\system32\Drivers\NDIS.sys [182656 2008-04-14] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS.0\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 NdisTapi; C:\WINDOWS.0\System32\DRIVERS\ndistapi.sys [10496 2011-07-08] (Microsoft Corporation)
R3 Ndisuio; C:\WINDOWS.0\System32\DRIVERS\ndisuio.sys [14592 2008-04-14] (Microsoft Corporation)
R3 NdisWan; C:\WINDOWS.0\System32\DRIVERS\ndiswan.sys [91520 2008-04-14] (Microsoft Corporation)
R3 NDProxy; C:\WINDOWS.0\system32\Drivers\NDProxy.sys [40960 2013-11-27] (Microsoft Corporation)
R1 NetBIOS; C:\WINDOWS.0\System32\DRIVERS\netbios.sys [34688 2008-04-14] (Microsoft Corporation)
R1 NetBT; C:\WINDOWS.0\System32\DRIVERS\netbt.sys [162816 2008-04-14] (Microsoft Corporation)
R1 Npfs; C:\WINDOWS.0\system32\Drivers\Npfs.sys [30848 2008-04-14] (Microsoft Corporation)
S4 Ntfs; C:\WINDOWS.0\system32\Drivers\Ntfs.sys [574976 2008-04-14] (Microsoft Corporation)
R1 Null; C:\WINDOWS.0\system32\Drivers\Null.sys [2944 2006-01-13] (Microsoft Corporation)
S3 nv; C:\WINDOWS.0\System32\DRIVERS\nv4_mini.sys [1897408 2008-04-13] (NVIDIA Corporation)
S3 NwlnkFlt; C:\WINDOWS.0\System32\DRIVERS\nwlnkflt.sys [12416 2006-01-13] (Microsoft Corporation)
S3 NwlnkFwd; C:\WINDOWS.0\System32\DRIVERS\nwlnkfwd.sys [32512 2006-01-13] (Microsoft Corporation)
S3 Parport; C:\WINDOWS.0\System32\DRIVERS\parport.sys [80128 2008-04-14] (Microsoft Corporation)
R0 PartMgr; C:\WINDOWS.0\system32\Drivers\PartMgr.sys [19712 2008-04-14] (Microsoft Corporation)
S2 ParVdm; C:\WINDOWS.0\system32\Drivers\ParVdm.sys [6784 2006-01-13] (Microsoft Corporation)
R0 PCI; C:\WINDOWS.0\System32\DRIVERS\pci.sys [68224 2008-04-14] (Microsoft Corporation)
R0 PCIIde; C:\WINDOWS.0\system32\Drivers\PCIIde.sys [3328 2006-01-13] (Microsoft Corporation)
S4 Pcmcia; C:\WINDOWS.0\system32\Drivers\Pcmcia.sys [120192 2008-04-14] (Microsoft Corporation)
R3 PptpMiniport; C:\WINDOWS.0\System32\DRIVERS\raspptp.sys [48384 2008-04-14] (Microsoft Corporation)
R3 PSched; C:\WINDOWS.0\System32\DRIVERS\psched.sys [69120 2008-04-14] (Microsoft Corporation)
R3 Ptilink; C:\WINDOWS.0\System32\DRIVERS\ptilink.sys [17792 2006-01-13] (Parallel Technologies, Inc.)
R1 RasAcd; C:\WINDOWS.0\System32\DRIVERS\rasacd.sys [8832 2006-01-13] (Microsoft Corporation)
R3 Rasl2tp; C:\WINDOWS.0\System32\DRIVERS\rasl2tp.sys [51328 2008-04-14] (Microsoft Corporation)
R3 RasPppoe; C:\WINDOWS.0\System32\DRIVERS\raspppoe.sys [41472 2008-04-14] (Microsoft Corporation)
R3 Raspti; C:\WINDOWS.0\System32\DRIVERS\raspti.sys [16512 2006-01-13] (Microsoft Corporation)
R1 Rdbss; C:\WINDOWS.0\System32\DRIVERS\rdbss.sys [175744 2008-04-14] (Microsoft Corporation)
R1 RDPCDD; C:\WINDOWS.0\System32\DRIVERS\RDPCDD.sys [4224 2006-01-13] (Microsoft Corporation)
R3 rdpdr; C:\WINDOWS.0\System32\DRIVERS\rdpdr.sys [196224 2008-04-14] (Microsoft Corporation)
S3 RDPWD; C:\WINDOWS.0\system32\Drivers\RDPWD.sys [139784 2012-07-04] (Microsoft Corporation)
R1 redbook; C:\WINDOWS.0\System32\DRIVERS\redbook.sys [57600 2008-04-14] (Microsoft Corporation)
S2 Secdrv; C:\WINDOWS.0\System32\DRIVERS\secdrv.sys [20480 2008-04-13] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
S3 serenum; C:\WINDOWS.0\System32\DRIVERS\serenum.sys [15744 2008-04-14] (Microsoft Corporation)
S1 Serial; C:\WINDOWS.0\System32\DRIVERS\serial.sys [64512 2008-04-14] (Microsoft Corporation)
R0 sfdrv01; C:\WINDOWS.0\System32\drivers\sfdrv01.sys [48640 2005-03-03] (Protection Technology) [File not signed]
R0 sfdrv01a; C:\WINDOWS.0\System32\drivers\sfdrv01a.sys [63352 2006-07-05] (Protection Technology (StarForce))
R0 sfhlp02; C:\WINDOWS.0\System32\drivers\sfhlp02.sys [13680 2006-06-14] (Protection Technology (StarForce))
S1 Sfloppy; C:\WINDOWS.0\system32\Drivers\Sfloppy.sys [11392 2008-04-14] (Microsoft Corporation)
R0 sfsync02; C:\WINDOWS.0\System32\drivers\sfsync02.sys [27032 2006-07-10] (Protection Technology)
R0 sfvfs02; C:\WINDOWS.0\System32\drivers\sfvfs02.sys [82296 2007-01-12] (Protection Technology (StarForce))
S3 SLIP; C:\WINDOWS.0\System32\DRIVERS\SLIP.sys [11136 2008-04-14] (Microsoft Corporation)
S3 smwdm; C:\WINDOWS.0\System32\drivers\smwdm.sys [549672 2002-08-23] (Analog Devices, Inc.)
S3 splitter; C:\WINDOWS.0\System32\drivers\splitter.sys [6272 2008-04-14] (Microsoft Corporation)
R0 sr; C:\WINDOWS.0\System32\DRIVERS\sr.sys [73472 2008-04-14] (Microsoft Corporation)
R3 Srv; C:\WINDOWS.0\System32\DRIVERS\srv.sys [357888 2011-02-17] (Microsoft Corporation)
S3 StillCam; C:\WINDOWS.0\System32\DRIVERS\serscan.sys [6784 2006-01-06] (Microsoft Corporation)
S3 streamip; C:\WINDOWS.0\System32\DRIVERS\StreamIP.sys [15232 2008-04-14] (Microsoft Corporation)
R3 swenum; C:\WINDOWS.0\System32\DRIVERS\swenum.sys [4352 2008-04-14] (Microsoft Corporation)
S3 swmidi; C:\WINDOWS.0\System32\drivers\swmidi.sys [56576 2008-04-14] (Microsoft Corporation)
S3 sysaudio; C:\WINDOWS.0\System32\drivers\sysaudio.sys [60800 2008-04-14] (Microsoft Corporation)
R1 Tcpip; C:\WINDOWS.0\System32\DRIVERS\tcpip.sys [361600 2008-06-20] (Microsoft Corporation)
S3 TDPIPE; C:\WINDOWS.0\system32\Drivers\TDPIPE.sys [12040 2008-04-14] (Microsoft Corporation)
S3 TDTCP; C:\WINDOWS.0\system32\Drivers\TDTCP.sys [21896 2008-04-14] (Microsoft Corporation)
R1 TermDD; C:\WINDOWS.0\System32\DRIVERS\termdd.sys [40840 2008-04-14] (Microsoft Corporation)
S4 Udfs; C:\WINDOWS.0\system32\Drivers\Udfs.sys [66048 2008-04-14] (Microsoft Corporation)
R3 Update; C:\WINDOWS.0\System32\DRIVERS\update.sys [384768 2008-04-14] (Microsoft Corporation)
S3 usbccgp; C:\WINDOWS.0\System32\DRIVERS\usbccgp.sys [32384 2013-08-09] (Microsoft Corporation)
R3 usbehci; C:\WINDOWS.0\System32\DRIVERS\usbehci.sys [30336 2009-03-18] (Microsoft Corporation)
R3 usbhub; C:\WINDOWS.0\System32\DRIVERS\usbhub.sys [59520 2008-04-14] (Microsoft Corporation)
S3 usbscan; C:\WINDOWS.0\System32\DRIVERS\usbscan.sys [14976 2013-07-03] (Microsoft Corporation)
S3 USBSTOR; C:\WINDOWS.0\System32\DRIVERS\USBSTOR.SYS [26368 2008-04-14] (Microsoft Corporation)
R3 usbuhci; C:\WINDOWS.0\System32\DRIVERS\usbuhci.sys [20608 2008-04-14] (Microsoft Corporation)
S3 usbvideo; C:\WINDOWS.0\System32\Drivers\usbvideo.sys [123008 2013-07-17] (Microsoft Corporation)
R1 VgaSave; C:\WINDOWS.0\System32\drivers\vga.sys [20992 2008-04-14] (Microsoft Corporation)
R0 VolSnap; C:\WINDOWS.0\system32\Drivers\VolSnap.sys [52352 2008-04-14] (Microsoft Corporation)
S3 Wanarp; C:\WINDOWS.0\System32\DRIVERS\wanarp.sys [34560 2008-04-14] (Microsoft Corporation)
S3 Wdf01000; C:\WINDOWS.0\System32\Drivers\wdf01000.sys [503008 2008-03-27] (Microsoft Corporation)
S3 wdmaud; C:\WINDOWS.0\System32\drivers\wdmaud.sys [83072 2008-04-14] (Microsoft Corporation)
S3 WpdUsb; C:\WINDOWS.0\System32\Drivers\wpdusb.sys [18944 2006-01-13] (Microsoft Corporation)
R1 WS2IFSL; C:\WINDOWS.0\System32\drivers\ws2ifsl.sys [12032 2006-01-13] (Microsoft Corporation)
S3 WSTCODEC; C:\WINDOWS.0\System32\DRIVERS\WSTCODEC.SYS [19200 2008-04-14] (Microsoft Corporation)
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_cdcecm; system32\DRIVERS\ew_jucdcecm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
U5 ScsiPort; C:\WINDOWS.0\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
U3 Winsock - Google Desktop Search Backup Before First Install; no ImagePath
U3 Winsock - Google Desktop Search Backup Before Last Install; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-03-12 23:58 - 2016-03-12 23:58 - 00000000 ____D C:\FRST
2016-03-12 23:58 - 2016-03-12 23:57 - 01725440 _____ (Farbar) C:\Documents and Settings\Admistrimator\Desktop\FRST.exe
2016-03-12 23:26 - 2016-03-12 23:26 - 00000000 __SHD C:\FOUND.080
2016-03-11 21:20 - 2016-03-11 21:20 - 00000000 ____D C:\WINDOWS.0\LastGood
2016-03-11 20:43 - 2016-03-11 20:43 - 00000000 ____D C:\WINDOWS.0\LastGood.Tmp
2016-03-11 19:54 - 2016-03-11 19:54 - 00000000 ____D C:\Documents and Settings\Admistrimator\Application Data\HD Tune Pro
2016-03-10 21:41 - 2016-03-12 23:51 - 00000664 _____ C:\WINDOWS.0\system32\d3d9caps.dat
2016-03-10 21:37 - 2016-03-10 21:37 - 00000000 ____D C:\Documents and Settings\Administrator\Application Data\AVG
2016-03-10 21:36 - 2016-03-10 21:37 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Application Data\Avg
2016-03-10 21:36 - 2016-03-10 21:36 - 00000000 __SHD C:\WINDOWS.0\CSC
2016-03-10 21:36 - 2016-03-10 21:36 - 00000000 __SHD C:\Documents and Settings\Administrator\IETldCache
2016-03-10 20:03 - 2016-03-10 20:03 - 00000646 _____ C:\Documents and Settings\All Users\Start Menu\Odkaz na Obnovovanie systému.lnk
2016-03-10 19:37 - 2016-03-12 23:48 - 00423230 _____ C:\WINDOWS.0\ntbtlog.txt
2016-03-09 21:00 - 2016-03-09 21:00 - 00001216 _____ C:\WINDOWS.0\IE4 Error Log.txt
2016-03-08 22:34 - 2016-03-08 22:35 - 00007665 _____ C:\Documents and Settings\Admistrimator\Desktop\Addition.txt
2016-03-08 22:32 - 2016-03-12 23:59 - 00042235 _____ C:\Documents and Settings\Admistrimator\Desktop\FRST.txt
2016-03-05 21:37 - 2016-03-05 21:37 - 00000000 __SHD C:\FOUND.079
2016-02-19 15:36 - 2016-02-19 15:36 - 00001735 _____ C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome.lnk
2016-02-19 15:33 - 2016-03-12 23:26 - 00000934 _____ C:\WINDOWS.0\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-19 15:33 - 2016-03-12 01:38 - 00000938 _____ C:\WINDOWS.0\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-15 15:13 - 2016-02-15 15:13 - 00000000 __SHD C:\FOUND.078

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-03-12 23:50 - 2015-10-18 19:31 - 00000436 _____ C:\WINDOWS.0\Tasks\Opera scheduled Autoupdate 1445189468.job
2016-03-12 23:41 - 2002-01-01 00:53 - 00000006 ____H C:\WINDOWS.0\Tasks\SA.DAT
2016-03-12 23:40 - 2002-01-01 00:53 - 00032154 _____ C:\WINDOWS.0\SchedLgU.Txt
2016-03-12 23:27 - 2006-01-13 01:50 - 00001199 _____ C:\WINDOWS.0\win.ini
2016-03-12 23:26 - 2014-11-28 17:09 - 00000242 _____ C:\WINDOWS.0\Tasks\Microsoft Windows XP End of Service Notification Logon.job
2016-03-12 23:14 - 2011-09-04 00:27 - 00000278 ___SH C:\Documents and Settings\Admistrimator\ntuser.ini
2016-03-12 22:50 - 2006-01-13 01:26 - 00002262 _____ C:\WINDOWS.0\system32\wpa.dbl
2016-03-12 01:34 - 2012-11-04 15:32 - 00000834 _____ C:\WINDOWS.0\Tasks\Adobe Flash Player Updater.job
2016-03-12 01:23 - 2015-09-07 23:30 - 00000896 _____ C:\WINDOWS.0\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-03-11 23:41 - 2011-09-04 23:15 - 00134144 _____ C:\Documents and Settings\Admistrimator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-03-10 22:30 - 2014-08-28 22:57 - 00170200 _____ (Malwarebytes) C:\WINDOWS.0\system32\Drivers\MBAMSwissArmy.sys
2016-03-10 21:45 - 2002-01-01 00:53 - 00000278 ___SH C:\Documents and Settings\Administrator\ntuser.ini
2016-03-10 16:51 - 2002-01-01 20:53 - 00039291 _____ C:\WINDOWS.0\system32\nvapps.xml
2016-03-08 15:00 - 2014-11-28 17:09 - 00000236 _____ C:\WINDOWS.0\Tasks\Microsoft Windows XP End of Service Notification Monthly.job
2016-03-02 21:08 - 2006-01-13 01:29 - 00000311 _____ C:\WINDOWS.0\system.ini
2016-02-21 22:41 - 2014-08-28 22:57 - 00000681 _____ C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2016-02-19 15:08 - 2012-11-04 15:32 - 00796864 _____ (Adobe Systems Incorporated) C:\WINDOWS.0\system32\FlashPlayerApp.exe
2016-02-19 15:08 - 2012-11-04 15:32 - 00142528 _____ (Adobe Systems Incorporated) C:\WINDOWS.0\system32\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2005-09-10 13:26 - 2005-09-10 13:26 - 0011252 ____H () C:\Program Files\folder.htt
2002-10-30 08:22 - 2002-10-30 08:22 - 0015592 _____ () C:\Program Files\owcstp16.dll
2012-06-29 20:15 - 2012-06-29 20:15 - 0022328 _____ () C:\Documents and Settings\Admistrimator\Application Data\PnkBstrK.sys
2012-06-30 18:59 - 2012-06-30 18:59 - 0000136 _____ () C:\Documents and Settings\Admistrimator\Local Settings\Application Data\fusioncache.dat
2011-09-04 23:15 - 2016-03-11 23:41 - 0134144 _____ () C:\Documents and Settings\Admistrimator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

Some files in TEMP:
====================
C:\Documents and Settings\Admistrimator\Local Settings\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS.0\explorer.exe => File is digitally signed
C:\WINDOWS.0\system32\winlogon.exe => File is digitally signed
C:\WINDOWS.0\system32\svchost.exe => File is digitally signed
C:\WINDOWS.0\system32\services.exe => File is digitally signed
C:\WINDOWS.0\system32\User32.dll => File is digitally signed
C:\WINDOWS.0\system32\userinit.exe => File is digitally signed
C:\WINDOWS.0\system32\rpcss.dll => File is digitally signed
C:\WINDOWS.0\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS.0\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

[JaRon]

Vloz este druhy log z FRST - ale vidim to na posahany system ,,,

[backpase]

Ako to tak pozerám asi máš pravdu, čím ďalej tým je to v normálnom režime horšie a už v ňom nerozbehnem ani prehliadač ani nič žiadny program.. pomôže preinštalovanie systému? .. Dúfam, že myslíš tento log

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01
Ran by Admistrimator (administrator) on 821CF8C318FE415 (13-03-2016 19:57:43)
Running from C:\Documents and Settings\Admistrimator\Desktop
Loaded Profiles: Admistrimator (Available Profiles: Admistrimator & Administrator)
Platform: Microsoft Windows XP Service Pack 3 (X86) Language: English (United States)
Internet Explorer Version 8 (Default browser: Opera)
Boot Mode: Safe Mode (with Networking)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\WINDOWS.0\System32\smss.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\csrss.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\winlogon.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\services.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\lsass.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\svchost.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\svchost.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\svchost.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\svchost.exe
(Microsoft Corporation) C:\WINDOWS.0\System32\svchost.exe
(Microsoft Corporation) C:\WINDOWS.0\Explorer.EXE
(Opera Software) C:\Program Files\Opera\35.0.2066.92\opera.exe
(Opera Software) C:\Program Files\Opera\35.0.2066.92\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\35.0.2066.92\opera.exe
(Opera Software) C:\Program Files\Opera\35.0.2066.92\opera.exe
(Opera Software) C:\Program Files\Opera\35.0.2066.92\opera.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IgfxTray] => C:\WINDOWS.0\system32\igfxtray.exe [155648 2004-02-10] (Intel Corporation)
HKLM\...\Run: [HotKeysCmds] => C:\WINDOWS.0\system32\hkcmd.exe [118784 2004-02-10] (Intel Corporation)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS.0\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [nwiz] => nwiz.exe /install
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\WINDOWS.0\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Winlogon: [Userinit] C:\WINDOWS.0\system32\userinit.exe,
HKLM\...\Winlogon: [UIHost] C:\WINDOWS.0\system32\logonui.exe [514560 2008-04-14] (Microsoft Corporation)
Winlogon\Notify\avgrsstarter: C:\WINDOWS.0\system32\avgrsstx.dll [2013-01-07] (AVG Technologies CZ, s.r.o.)
Winlogon\Notify\crypt32chain: C:\WINDOWS.0\system32\crypt32.dll [2013-10-07] (Microsoft Corporation)
Winlogon\Notify\cryptnet: C:\WINDOWS.0\system32\cryptnet.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\cscdll: C:\WINDOWS.0\system32\cscdll.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\dimsntfy: C:\WINDOWS.0\System32\dimsntfy.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS.0\system32\igfxsrvc.dll [2004-02-10] (Intel Corporation)
Winlogon\Notify\ScCertProp: C:\WINDOWS.0\system32\wlnotify.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\Schedule: C:\WINDOWS.0\system32\wlnotify.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\sclgntfy: C:\WINDOWS.0\system32\sclgntfy.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\SensLogn: C:\WINDOWS.0\system32\WlNotify.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\termsrv: C:\WINDOWS.0\system32\wlnotify.dll [2008-04-14] (Microsoft Corporation)
Winlogon\Notify\wlballoon: C:\WINDOWS.0\system32\wlnotify.dll [2008-04-14] (Microsoft Corporation)
HKLM\...\Policies\Explorer: [NoRemoteRecursiveEvents] 1
HKU\S-1-5-19\...\Policies\Explorer: [NoInternetIcon] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-19\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS.0\System32\logon.scr [220672 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [tscuninstall] => C:\WINDOWS.0\system32\tscupgrd.exe [44544 2006-01-13] (Microsoft Corporation)
HKU\S-1-5-20\...\Policies\Explorer: [NoInternetIcon] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-20\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS.0\System32\logon.scr [220672 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\Run: [CTFMON.EXE] => C:\WINDOWS.0\system32\ctfmon.exe [15360 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6638296 2016-02-12] (Piriform Ltd)
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\Policies\Explorer: [NoInternetIcon] 0
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {38e7f6ba-1b11-11e2-80ac-88ef9d15ab97} - F:\iLinker.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {3c2f68c2-2b9f-11e3-8498-0007e9b80159} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {73609ada-e48a-11e1-bfe7-946d74f1282f} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {a4df56e4-cc3b-11e1-bf85-0007e9b80159} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {a4df56e8-cc3b-11e1-bf85-0007e9b80159} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {a4df56ea-cc3b-11e1-bf85-0007e9b80159} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {aca9a326-6ae4-11e4-98b5-0007e9b80159} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\MountPoints2: {ef38f3da-e446-11e1-bfe6-a954e5758428} - F:\AutoRun.exe
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS.0\LAURA.SCR [403232 2013-03-11] (MacSourcery)
HKU\S-1-5-18\...\RunOnce: [tscuninstall] => C:\WINDOWS.0\system32\tscupgrd.exe [44544 2006-01-13] (Microsoft Corporation)
HKU\S-1-5-18\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS.0\system32\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe -update pepperplugin
HKU\S-1-5-18\...\Policies\Explorer: [NoInternetIcon] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-18\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS.0\system32\logon.scr [220672 2008-04-14] (Microsoft Corporation)
ShellExecuteHooks: URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS.0\system32\shell32.dll [8462848 2012-06-08] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [4SyncOverlay1] -> {2012DE06-50C0-48BD-ACDE-88F95D4CAD1F} => No File
ShellIconOverlayIdentifiers: [4SyncOverlay2] -> {C72C6188-BEF2-46E5-A89A-52F0ED75219E} => No File
ShellIconOverlayIdentifiers: [4SyncOverlay3] -> {C92F6BC2-AF61-4C0E-80E0-939B8282DDB7} => No File
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\eOne Client.lnk [2014-01-26]
ShortcutTarget: eOne Client.lnk -> C:\Program Files\SecureMedia\Encryptonite ONE System\Client\smdaemon.exe (SecureMedia Inc.)
Startup: C:\Documents and Settings\Admistrimator\Start Menu\Programs\Startup\Kalendár.lnk [2011-12-31]
ShortcutTarget: Kalendár.lnk -> C:\WINDOWS.0\MENINY.EXE ()
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\Av\avgrsx.exe /sync /restart

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 01 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog5 02 C:\WINDOWS.0\system32\winrnr.dll [16896 2008-04-14] (Microsoft Corporation)
Winsock: Catalog5 03 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 01 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 02 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 03 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 04 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 05 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 06 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 07 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 08 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 09 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 10 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 11 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 12 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 13 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 14 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 15 C:\WINDOWS.0\system32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
Winsock: Catalog9 16 C:\WINDOWS.0\system32\rsvpsp.dll [92672 2008-04-14] (Microsoft Corporation)
Winsock: Catalog9 17 C:\WINDOWS.0\system32\rsvpsp.dll [92672 2008-04-14] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D372DBDD-B3E3-415D-BD21-819C0DBB22F3}: [DhcpNameServer] 192.168.1.1
ManualProxies:

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-19\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-20\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS.0\system32\blank.htm
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS.0\system32\blank.htm
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.sk/
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.msn.com/?ocid=EIE8HP&PC=UP61
SearchScopes: HKU\S-1-5-21-1454471165-1326574676-1801674531-1004 -> DefaultScope {2D5D7812-F0CE-4A74-939D-162EDD2EAF35} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
SearchScopes: HKU\S-1-5-21-1454471165-1326574676-1801674531-1004 -> {2D5D7812-F0CE-4A74-939D-162EDD2EAF35} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
SearchScopes: HKU\S-1-5-21-1454471165-1326574676-1801674531-1004 -> {91C3F1EA-2160-46AF-97EE-058948E03315} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1454471165-1326574676-1801674531-1004 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL =
Toolbar: HKLM - No Name - {A057A204-BACC-4D26-9990-79A187E2698E} - No File
Toolbar: HKU\S-1-5-21-1454471165-1326574676-1801674531-1004 -> No Name - {A057A204-BACC-4D26-9990-79A187E2698E} - No File
DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1416005426043
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS.0\system32\Macromed\Flash\NPSWF32_11_9_900_152.dll [2013-11-20] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS.0\system32\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS.0\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-13] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-13] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1454471165-1326574676-1801674531-1004: @elecard.com/elecard-iptv-plugin -> C:\Program Files\SecureMedia\Encryptonite ONE System\Client\elecard\npiptv.dll [2013-05-29] ()
FF Extension: No Name - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\extensions\defsearchp@gmail.com [not found]
FF Extension: No Name - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\extensions\deskCutv2@gmail.com [not found]
FF Extension: No Name - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com [not found]
FF Extension: No Name - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\extensions\d4db60df25f14dae9dd18@185c395f9e794c9ab86be3eb.com [not found]
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS.0\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-11-28] [not signed]
FF Extension: Weather Forecast - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\Extensions\jid1-aqwHRwQpv3JUMs@jetpack.xpi [2015-10-07]
FF Extension: Adblock Plus - C:\Documents and Settings\Admistrimator\Application Data\Mozilla\Firefox\Profiles\mnkpzjor.default-1395437861890\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-10-07]
FF HKLM\...\Firefox\Extensions: [{3f963a5b-e555-4543-90e2-c3908898db71}] - C:\Program Files\AVG\AVG8\Firefox => not found
FF HKLM\...\Firefox\Extensions: [{1d5287d1-8a92-0001-1f31-1cec198018d8}] - C:\Program Files\AVG\AVG8\ToolbarFF => not found
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS.0\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension

Chrome:
=======
CHR Profile: C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-24]
CHR Extension: (Gmail) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-28]
CHR Extension: (Disk Google) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-28]
CHR Extension: (Google Search) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-28]
CHR Extension: (Dokumenty Google v režime offline) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-12]
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-19]
CHR Extension: (Prezentácie Google) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-19]
CHR Extension: (YouTube) - C:\Documents and Settings\Admistrimator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-19]

Opera:
=======
OPR Extension: (Tampermonkey Beta) - C:\Documents and Settings\Admistrimator\Application Data\Opera Software\Opera Stable\Extensions\mfdhdgbonjidekjkjmjaneanmdmpmidf [2016-02-23]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS.0\system32\Macromed\Flash\FlashPlayerUpdateService.exe [269504 2016-02-19] (Adobe Systems Incorporated)
S4 Alerter; C:\WINDOWS.0\system32\alrsvc.dll [17408 2008-04-14] (Microsoft Corporation)
S3 ALG; C:\WINDOWS.0\System32\alg.exe [44544 2008-04-14] (Microsoft Corporation)
S3 AppMgmt; C:\WINDOWS.0\System32\appmgmts.dll [167936 2008-04-14] (Microsoft Corporation)
S3 aspnet_state; C:\WINDOWS.0\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [34312 2008-07-25] (Microsoft Corporation)
S2 AudioSrv; C:\WINDOWS.0\System32\audiosrv.dll [42496 2008-04-14] (Microsoft Corporation)
S2 BITS; C:\WINDOWS.0\system32\qmgr.dll [409088 2008-04-14] (Microsoft Corporation)
S2 Browser; C:\WINDOWS.0\System32\browser.dll [78336 2012-07-06] (Microsoft Corporation)
S3 CiSvc; C:\WINDOWS.0\system32\cisvc.exe [5632 2008-04-14] (Microsoft Corporation)
S4 ClipSrv; C:\WINDOWS.0\system32\clipsrv.exe [33280 2008-04-14] (Microsoft Corporation)
S3 clr_optimization_v2.0.50727_32; C:\WINDOWS.0\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [69632 2008-07-25] (Microsoft Corporation)
R2 CryptSvc; C:\WINDOWS.0\System32\cryptsvc.dll [62464 2008-04-14] (Microsoft Corporation)
R2 DcomLaunch; C:\WINDOWS.0\system32\rpcss.dll [401408 2009-02-09] (Microsoft Corporation)
R2 Dhcp; C:\WINDOWS.0\System32\dhcpcsvc.dll [126976 2008-04-14] (Microsoft Corporation)
S3 dmadmin; C:\WINDOWS.0\System32\dmadmin.exe [224768 2008-04-14] (Microsoft Corp., Veritas Software)
R2 dmserver; C:\WINDOWS.0\System32\dmserver.dll [23552 2008-04-14] (Microsoft Corp.)
R2 Dnscache; C:\WINDOWS.0\System32\dnsrslvr.dll [45568 2009-04-20] (Microsoft Corporation)
S3 Dot3svc; C:\WINDOWS.0\System32\dot3svc.dll [132096 2008-04-14] (Microsoft Corporation)
S3 EapHost; C:\WINDOWS.0\System32\eapsvc.dll [33792 2008-04-14] (Microsoft Corporation)
S2 ERSvc; C:\WINDOWS.0\System32\ersvc.dll [23040 2008-04-14] (Microsoft Corporation)
R2 Eventlog; C:\WINDOWS.0\system32\services.exe [110592 2009-02-06] (Microsoft Corporation)
S3 EventSystem; C:\WINDOWS.0\system32\es.dll [253952 2008-07-07] (Microsoft Corporation)
S3 FastUserSwitchingCompatibility; C:\WINDOWS.0\System32\shsvcs.dll [135168 2009-07-28] (Microsoft Corporation)
S3 FontCache3.0.0.0; c:\WINDOWS.0\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [46104 2008-07-29] (Microsoft Corporation)
R2 helpsvc; C:\WINDOWS.0\PCHealth\HelpCtr\Binaries\pchsvc.dll [38400 2008-04-14] (Microsoft Corporation)
S3 hkmsvc; C:\WINDOWS.0\System32\kmsvc.dll [61440 2008-04-14] (Microsoft Corporation)
S3 HTTPFilter; C:\WINDOWS.0\System32\w3ssl.dll [15872 2008-04-14] (Microsoft Corporation)
S3 idsvc; c:\WINDOWS.0\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [881664 2008-07-29] (Microsoft Corporation)
S3 ImapiService; C:\WINDOWS.0\system32\imapi.exe [150528 2008-04-14] (Microsoft Corporation)
R2 lanmanserver; C:\WINDOWS.0\System32\srvsvc.dll [99840 2010-08-27] (Microsoft Corporation)
R2 lanmanworkstation; C:\WINDOWS.0\System32\wkssvc.dll [132096 2009-06-10] (Microsoft Corporation)
R2 LmHosts; C:\WINDOWS.0\System32\lmhsvc.dll [13824 2008-04-14] (Microsoft Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S4 Messenger; C:\WINDOWS.0\System32\msgsvc.dll [33792 2008-04-14] (Microsoft Corporation)
S3 mnmsrvc; C:\WINDOWS.0\system32\mnmsrvc.exe [32768 2008-04-14] (Microsoft Corporation)
S3 MSDTC; C:\WINDOWS.0\system32\msdtc.exe [6144 2008-04-14] (Microsoft Corporation)
S3 MSIServer; C:\WINDOWS.0\System32\msiexec.exe [78848 2008-04-14] (Microsoft Corporation)
S3 napagent; C:\WINDOWS.0\System32\qagentrt.dll [291328 2008-04-14] (Microsoft Corporation)
S4 NetDDE; C:\WINDOWS.0\system32\netdde.exe [111104 2008-04-14] (Microsoft Corporation)
S4 NetDDEdsdm; C:\WINDOWS.0\system32\netdde.exe [111104 2008-04-14] (Microsoft Corporation)
S3 Netlogon; C:\WINDOWS.0\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation)
R3 Netman; C:\WINDOWS.0\System32\netman.dll [198144 2008-04-14] (Microsoft Corporation)
S4 NetTcpPortSharing; c:\WINDOWS.0\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [132096 2008-07-29] (Microsoft Corporation)
S3 Nla; C:\WINDOWS.0\System32\mswsock.dll [245248 2008-06-20] (Microsoft Corporation)
S3 NtLmSsp; C:\WINDOWS.0\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation)
S3 NtmsSvc; C:\WINDOWS.0\system32\ntmssvc.dll [435200 2008-04-14] (Microsoft Corporation)
S2 NVSvc; C:\WINDOWS.0\system32\nvsvc32.exe [131139 2005-10-10] (NVIDIA Corporation) [File not signed]
R2 PlugPlay; C:\WINDOWS.0\system32\services.exe [110592 2009-02-06] (Microsoft Corporation)
S2 PnkBstrA; C:\WINDOWS.0\system32\PnkBstrA.exe [66872 2012-06-29] ()
S2 PolicyAgent; C:\WINDOWS.0\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation)
S2 ProtectedStorage; C:\WINDOWS.0\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation)
S3 RasAuto; C:\WINDOWS.0\System32\rasauto.dll [88576 2008-04-14] (Microsoft Corporation)
S3 RasMan; C:\WINDOWS.0\System32\rasmans.dll [186368 2008-04-14] (Microsoft Corporation)
S3 RDSessMgr; C:\WINDOWS.0\system32\sessmgr.exe [141312 2008-04-14] (Microsoft Corporation)
S4 RemoteAccess; C:\WINDOWS.0\System32\mprdim.dll [53248 2008-04-14] (Microsoft Corporation)
S2 RemoteRegistry; C:\WINDOWS.0\system32\regsvc.dll [59904 2008-04-14] (Microsoft Corporation)
S3 RpcLocator; C:\WINDOWS.0\system32\locator.exe [75264 2008-04-14] (Microsoft Corporation)
R2 RpcSs; C:\WINDOWS.0\system32\rpcss.dll [401408 2009-02-09] (Microsoft Corporation)
S3 RSVP; C:\WINDOWS.0\system32\rsvp.exe [132608 2006-01-13] (Microsoft Corporation)
S2 SamSs; C:\WINDOWS.0\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation)
S3 SCardSvr; C:\WINDOWS.0\System32\SCardSvr.exe [95744 2008-04-14] (Microsoft Corporation)
S2 Schedule; C:\WINDOWS.0\system32\schedsvc.dll [192512 2008-04-14] (Microsoft Corporation)
S2 seclogon; C:\WINDOWS.0\System32\seclogon.dll [18944 2008-04-14] (Microsoft Corporation)
S2 SENS; C:\WINDOWS.0\system32\sens.dll [39424 2008-04-14] (Microsoft Corporation)
R2 SharedAccess; C:\WINDOWS.0\System32\ipnathlp.dll [331264 2008-04-14] (Microsoft Corporation)
S2 ShellHWDetection; C:\WINDOWS.0\System32\shsvcs.dll [135168 2009-07-28] (Microsoft Corporation)
S2 SoundMAX Agent Service (default); C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056 2002-07-15] (Analog Devices, Inc.) [File not signed]
S2 Spooler; C:\WINDOWS.0\system32\spoolsv.exe [58880 2010-08-17] (Microsoft Corporation)
R2 srservice; C:\WINDOWS.0\system32\srsvc.dll [171008 2008-04-14] (Microsoft Corporation)
S3 SSDPSRV; C:\WINDOWS.0\System32\ssdpsrv.dll [71680 2008-04-14] (Microsoft Corporation)
S2 stisvc; C:\WINDOWS.0\system32\wiaservc.dll [333824 2008-04-14] (Microsoft Corporation)
S3 SysmonLog; C:\WINDOWS.0\system32\smlogsvc.exe [89600 2008-04-14] (Microsoft Corporation)
S3 TapiSrv; C:\WINDOWS.0\System32\tapisrv.dll [249856 2008-04-14] (Microsoft Corporation)
R3 TermService; C:\WINDOWS.0\System32\termsrv.dll [295424 2008-04-14] (Microsoft Corporation)
S2 Themes; C:\WINDOWS.0\System32\shsvcs.dll [135168 2009-07-28] (Microsoft Corporation)
S4 TlntSvr; C:\WINDOWS.0\system32\tlntsvr.exe [73216 2008-04-14] (Microsoft Corporation)
S2 TrkWks; C:\WINDOWS.0\system32\trkwks.dll [90112 2008-04-14] (Microsoft Corporation)
S2 UMWdf; C:\WINDOWS.0\system32\wdfmgr.exe [38912 2006-01-13] (Microsoft Corporation)
S3 upnphost; C:\WINDOWS.0\System32\upnphost.dll [185856 2008-04-14] (Microsoft Corporation)
S3 UPS; C:\WINDOWS.0\System32\ups.exe [18432 2008-04-14] (Microsoft Corporation)
S3 VSS; C:\WINDOWS.0\System32\vssvc.exe [289792 2008-04-14] (Microsoft Corporation)
S2 W32Time; C:\WINDOWS.0\system32\w32time.dll [175104 2008-04-14] (Microsoft Corporation)
S2 WebClient; C:\WINDOWS.0\System32\webclnt.dll [68096 2008-04-14] (Microsoft Corporation)
R2 winmgmt; C:\WINDOWS.0\system32\wbem\WMIsvc.dll [144896 2008-04-14] (Microsoft Corporation)
S3 WmdmPmSN; C:\WINDOWS.0\system32\mspmsnsv.dll [25088 2006-01-13] (Microsoft Corporation)
S3 Wmi; C:\WINDOWS.0\System32\advapi32.dll [617472 2009-02-09] (Microsoft Corporation)
S3 WmiApSrv; C:\WINDOWS.0\system32\wbem\wmiapsrv.exe [126464 2008-04-14] (Microsoft Corporation)
S2 wscsvc; C:\WINDOWS.0\system32\wscsvc.dll [80896 2008-04-14] (Microsoft Corporation)
S2 wuauserv; C:\WINDOWS.0\system32\wuauserv.dll [6656 2008-04-14] (Microsoft Corporation)
R2 WZCSVC; C:\WINDOWS.0\System32\wzcsvc.dll [483840 2008-04-14] (Microsoft Corporation)
S3 xmlprov; C:\WINDOWS.0\System32\xmlprov.dll [129024 2008-04-14] (Microsoft Corporation)
S2 AVGIDSAgent; "C:\Program Files\AVG\Av\avgidsagent.exe" [X]
S2 avgwd; "C:\Program Files\AVG\Av\avgwdsvcx.exe" [X]
S3 COMSysApp; C:\WINDOWS.0\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
S3 SwPrv; C:\WINDOWS.0\system32\dllhost.exe /Processid:{8D4D742B-B208-4887-B5A5-8E80393E4496}

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 ACPI; C:\WINDOWS.0\System32\DRIVERS\ACPI.sys [187776 2008-04-14] (Microsoft Corporation)
S4 ACPIEC; C:\WINDOWS.0\system32\Drivers\ACPIEC.sys [11648 2006-01-13] (Microsoft Corporation)
S3 aeaudio; C:\WINDOWS.0\System32\drivers\aeaudio.sys [98752 2002-08-22] (Andrea Electronics Corporation)
S3 aec; C:\WINDOWS.0\System32\drivers\aec.sys [142592 2008-04-13] (Microsoft Corporation)
R1 AFD; C:\WINDOWS.0\System32\drivers\afd.sys [138496 2011-08-17] (Microsoft Corporation)
S3 AsyncMac; C:\WINDOWS.0\System32\DRIVERS\asyncmac.sys [14336 2008-04-14] (Microsoft Corporation)
R0 atapi; C:\WINDOWS.0\System32\DRIVERS\atapi.sys [96512 2008-04-14] (Microsoft Corporation)
S3 Atmarpc; C:\WINDOWS.0\System32\DRIVERS\atmarpc.sys [59904 2008-04-14] (Microsoft Corporation)
S3 audstub; C:\WINDOWS.0\System32\DRIVERS\audstub.sys [3072 2006-01-06] (Microsoft Corporation)
S1 Avgdiskx; C:\WINDOWS.0\System32\DRIVERS\avgdiskx.sys [156080 2015-08-10] (AVG Technologies CZ, s.r.o.)
S1 AVGIDSDriverl; C:\WINDOWS.0\System32\DRIVERS\avgidsdriverlx.sys [243632 2015-10-19] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS.0\System32\DRIVERS\avgidshx.sys [231344 2015-08-20] (AVG Technologies CZ, s.r.o.)
S1 AVGIDSShim; C:\WINDOWS.0\System32\DRIVERS\avgidsshimx.sys [31664 2015-08-14] (AVG Technologies CZ, s.r.o.)
S1 AvgLdx86; C:\WINDOWS.0\System32\DRIVERS\avgldx86.sys [229296 2015-10-21] (AVG Technologies CZ, s.r.o.)
S0 Avglogx; C:\WINDOWS.0\System32\DRIVERS\avglogx.sys [308656 2015-08-14] (AVG Technologies CZ, s.r.o.)
R0 AvgMfx86; C:\WINDOWS.0\System32\DRIVERS\avgmfx86.sys [192944 2015-10-21] (AVG Technologies CZ, s.r.o.)
R1 AvgTdiX; C:\WINDOWS.0\System32\DRIVERS\avgtdix.sys [231856 2015-10-08] (AVG Technologies CZ, s.r.o.)
R1 Beep; C:\WINDOWS.0\system32\Drivers\Beep.sys [4224 2006-01-13] (Microsoft Corporation)
S4 cbidf2k; C:\WINDOWS.0\system32\Drivers\cbidf2k.sys [13952 2006-01-13] (Microsoft Corporation)
S3 CCDECODE; C:\WINDOWS.0\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S1 Cdaudio; C:\WINDOWS.0\system32\Drivers\Cdaudio.sys [18688 2006-01-13] (Microsoft Corporation)
R4 Cdfs; C:\WINDOWS.0\system32\Drivers\Cdfs.sys [63744 2008-04-14] (Microsoft Corporation)
R1 Cdrom; C:\WINDOWS.0\System32\DRIVERS\cdrom.sys [62976 2008-04-14] (Microsoft Corporation)
R0 Disk; C:\WINDOWS.0\System32\DRIVERS\disk.sys [36352 2008-04-14] (Microsoft Corporation)
S4 dmboot; C:\WINDOWS.0\System32\drivers\dmboot.sys [799744 2008-04-14] (Microsoft Corp., Veritas Software)
R0 dmio; C:\WINDOWS.0\System32\drivers\dmio.sys [153344 2008-04-14] (Microsoft Corp., Veritas Software)
R0 dmload; C:\WINDOWS.0\System32\drivers\dmload.sys [5888 2006-01-13] (Microsoft Corp., Veritas Software.)
S3 DMusic; C:\WINDOWS.0\System32\drivers\DMusic.sys [52864 2008-04-14] (Microsoft Corporation)
S3 drmkaud; C:\WINDOWS.0\System32\drivers\drmkaud.sys [2944 2008-04-14] (Microsoft Corporation)
R3 E100B; C:\WINDOWS.0\System32\DRIVERS\e100b325.sys [140800 2002-09-25] (Intel Corporation)
R4 Fastfat; C:\WINDOWS.0\system32\Drivers\Fastfat.sys [143744 2008-04-14] (Microsoft Corporation)
R3 Fdc; C:\WINDOWS.0\System32\DRIVERS\fdc.sys [27392 2008-04-14] (Microsoft Corporation)
S1 Fips; C:\WINDOWS.0\system32\Drivers\Fips.sys [44544 2008-04-14] (Microsoft Corporation)
R3 Flpydisk; C:\WINDOWS.0\System32\DRIVERS\flpydisk.sys [20480 2008-04-14] (Microsoft Corporation)
R0 FltMgr; C:\WINDOWS.0\System32\drivers\fltmgr.sys [129792 2008-04-14] (Microsoft Corporation)
U1 Fs_Rec; C:\WINDOWS.0\system32\Drivers\Fs_Rec.sys [7936 2006-01-13] (Microsoft Corporation)
R0 Ftdisk; C:\WINDOWS.0\System32\DRIVERS\ftdisk.sys [125056 2006-01-13] (Microsoft Corporation)
R3 Gpc; C:\WINDOWS.0\System32\DRIVERS\msgpc.sys [35072 2008-04-14] (Microsoft Corporation)
S3 hidusb; C:\WINDOWS.0\System32\DRIVERS\hidusb.sys [10368 2008-04-14] (Microsoft Corporation)
S3 HTTP; C:\WINDOWS.0\System32\Drivers\HTTP.sys [265728 2009-10-20] (Microsoft Corporation)
R1 i8042prt; C:\WINDOWS.0\System32\DRIVERS\i8042prt.sys [52480 2008-04-14] (Microsoft Corporation)
S3 ialm; C:\WINDOWS.0\System32\DRIVERS\ialmnt5.sys [681469 2004-02-10] (Intel Corporation)
S1 Imapi; C:\WINDOWS.0\System32\DRIVERS\imapi.sys [42112 2008-04-14] (Microsoft Corporation)
R0 IntelIde; C:\WINDOWS.0\System32\DRIVERS\intelide.sys [5504 2008-04-14] (Microsoft Corporation)
S1 intelppm; C:\WINDOWS.0\System32\DRIVERS\intelppm.sys [36352 2008-04-14] (Microsoft Corporation)
S3 Ip6Fw; C:\WINDOWS.0\System32\drivers\ip6fw.sys [36608 2008-04-14] (Microsoft Corporation)
S3 IpFilterDriver; C:\WINDOWS.0\System32\DRIVERS\ipfltdrv.sys [32896 2006-01-13] (Microsoft Corporation)
S3 IpInIp; C:\WINDOWS.0\System32\DRIVERS\ipinip.sys [20864 2008-04-14] (Microsoft Corporation)
R3 IpNat; C:\WINDOWS.0\System32\DRIVERS\ipnat.sys [152832 2008-04-14] (Microsoft Corporation)
R1 IPSec; C:\WINDOWS.0\System32\DRIVERS\ipsec.sys [75264 2008-04-14] (Microsoft Corporation)
S3 IRENUM; C:\WINDOWS.0\System32\DRIVERS\irenum.sys [11264 2008-04-14] (Microsoft Corporation)
R0 isapnp; C:\WINDOWS.0\System32\DRIVERS\isapnp.sys [37248 2008-04-14] (Microsoft Corporation)
R1 Kbdclass; C:\WINDOWS.0\System32\DRIVERS\kbdclass.sys [24576 2008-04-14] (Microsoft Corporation)
S3 kmixer; C:\WINDOWS.0\System32\drivers\kmixer.sys [172416 2008-04-14] (Microsoft Corporation)
R0 KSecDD; C:\WINDOWS.0\system32\Drivers\KSecDD.sys [92928 2009-06-24] (Microsoft Corporation)
S3 MBAMProtector; C:\WINDOWS.0\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S1 mnmdd; C:\WINDOWS.0\system32\Drivers\mnmdd.sys [4224 2006-01-13] (Microsoft Corporation)
S3 Modem; C:\WINDOWS.0\system32\Drivers\Modem.sys [30080 2008-04-14] (Microsoft Corporation)
R1 Mouclass; C:\WINDOWS.0\System32\DRIVERS\mouclass.sys [23040 2008-04-14] (Microsoft Corporation)
S3 mouhid; C:\WINDOWS.0\System32\DRIVERS\mouhid.sys [12160 2006-01-13] (Microsoft Corporation)
R0 MountMgr; C:\WINDOWS.0\system32\Drivers\MountMgr.sys [42368 2008-04-14] (Microsoft Corporation)
S3 MRxDAV; C:\WINDOWS.0\System32\DRIVERS\mrxdav.sys [180608 2008-04-14] (Microsoft Corporation)
R1 MRxSmb; C:\WINDOWS.0\System32\DRIVERS\mrxsmb.sys [456320 2011-07-15] (Microsoft Corporation)
R1 Msfs; C:\WINDOWS.0\system32\Drivers\Msfs.sys [19072 2008-04-14] (Microsoft Corporation)
S3 MSKSSRV; C:\WINDOWS.0\System32\drivers\MSKSSRV.sys [7552 2008-04-14] (Microsoft Corporation)
S3 MSPCLOCK; C:\WINDOWS.0\System32\drivers\MSPCLOCK.sys [5376 2008-04-14] (Microsoft Corporation)
S3 MSPQM; C:\WINDOWS.0\System32\drivers\MSPQM.sys [4992 2008-04-14] (Microsoft Corporation)
R3 mssmbios; C:\WINDOWS.0\System32\DRIVERS\mssmbios.sys [15488 2008-04-14] (Microsoft Corporation)
S3 MSTEE; C:\WINDOWS.0\System32\drivers\MSTEE.sys [5504 2008-04-14] (Microsoft Corporation)
R0 Mup; C:\WINDOWS.0\system32\Drivers\Mup.sys [105472 2011-04-21] (Microsoft Corporation)
S3 NABTSFEC; C:\WINDOWS.0\System32\DRIVERS\NABTSFEC.sys [85248 2008-04-14] (Microsoft Corporation)
R0 NDIS; C:\WINDOWS.0\system32\Drivers\NDIS.sys [182656 2008-04-14] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS.0\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 NdisTapi; C:\WINDOWS.0\System32\DRIVERS\ndistapi.sys [10496 2011-07-08] (Microsoft Corporation)
R3 Ndisuio; C:\WINDOWS.0\System32\DRIVERS\ndisuio.sys [14592 2008-04-14] (Microsoft Corporation)
R3 NdisWan; C:\WINDOWS.0\System32\DRIVERS\ndiswan.sys [91520 2008-04-14] (Microsoft Corporation)
R3 NDProxy; C:\WINDOWS.0\system32\Drivers\NDProxy.sys [40960 2013-11-27] (Microsoft Corporation)
R1 NetBIOS; C:\WINDOWS.0\System32\DRIVERS\netbios.sys [34688 2008-04-14] (Microsoft Corporation)
R1 NetBT; C:\WINDOWS.0\System32\DRIVERS\netbt.sys [162816 2008-04-14] (Microsoft Corporation)
R1 Npfs; C:\WINDOWS.0\system32\Drivers\Npfs.sys [30848 2008-04-14] (Microsoft Corporation)
S4 Ntfs; C:\WINDOWS.0\system32\Drivers\Ntfs.sys [574976 2008-04-14] (Microsoft Corporation)
R1 Null; C:\WINDOWS.0\system32\Drivers\Null.sys [2944 2006-01-13] (Microsoft Corporation)
S3 nv; C:\WINDOWS.0\System32\DRIVERS\nv4_mini.sys [1897408 2008-04-13] (NVIDIA Corporation)
S3 NwlnkFlt; C:\WINDOWS.0\System32\DRIVERS\nwlnkflt.sys [12416 2006-01-13] (Microsoft Corporation)
S3 NwlnkFwd; C:\WINDOWS.0\System32\DRIVERS\nwlnkfwd.sys [32512 2006-01-13] (Microsoft Corporation)
S3 Parport; C:\WINDOWS.0\System32\DRIVERS\parport.sys [80128 2008-04-14] (Microsoft Corporation)
R0 PartMgr; C:\WINDOWS.0\system32\Drivers\PartMgr.sys [19712 2008-04-14] (Microsoft Corporation)
S2 ParVdm; C:\WINDOWS.0\system32\Drivers\ParVdm.sys [6784 2006-01-13] (Microsoft Corporation)
R0 PCI; C:\WINDOWS.0\System32\DRIVERS\pci.sys [68224 2008-04-14] (Microsoft Corporation)
R0 PCIIde; C:\WINDOWS.0\system32\Drivers\PCIIde.sys [3328 2006-01-13] (Microsoft Corporation)
S4 Pcmcia; C:\WINDOWS.0\system32\Drivers\Pcmcia.sys [120192 2008-04-14] (Microsoft Corporation)
R3 PptpMiniport; C:\WINDOWS.0\System32\DRIVERS\raspptp.sys [48384 2008-04-14] (Microsoft Corporation)
R3 PSched; C:\WINDOWS.0\System32\DRIVERS\psched.sys [69120 2008-04-14] (Microsoft Corporation)
R3 Ptilink; C:\WINDOWS.0\System32\DRIVERS\ptilink.sys [17792 2006-01-13] (Parallel Technologies, Inc.)
R1 RasAcd; C:\WINDOWS.0\System32\DRIVERS\rasacd.sys [8832 2006-01-13] (Microsoft Corporation)
R3 Rasl2tp; C:\WINDOWS.0\System32\DRIVERS\rasl2tp.sys [51328 2008-04-14] (Microsoft Corporation)
R3 RasPppoe; C:\WINDOWS.0\System32\DRIVERS\raspppoe.sys [41472 2008-04-14] (Microsoft Corporation)
R3 Raspti; C:\WINDOWS.0\System32\DRIVERS\raspti.sys [16512 2006-01-13] (Microsoft Corporation)
R1 Rdbss; C:\WINDOWS.0\System32\DRIVERS\rdbss.sys [175744 2008-04-14] (Microsoft Corporation)
R1 RDPCDD; C:\WINDOWS.0\System32\DRIVERS\RDPCDD.sys [4224 2006-01-13] (Microsoft Corporation)
R3 rdpdr; C:\WINDOWS.0\System32\DRIVERS\rdpdr.sys [196224 2008-04-14] (Microsoft Corporation)
S3 RDPWD; C:\WINDOWS.0\system32\Drivers\RDPWD.sys [139784 2012-07-04] (Microsoft Corporation)
R1 redbook; C:\WINDOWS.0\System32\DRIVERS\redbook.sys [57600 2008-04-14] (Microsoft Corporation)
S2 Secdrv; C:\WINDOWS.0\System32\DRIVERS\secdrv.sys [20480 2008-04-13] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
S3 serenum; C:\WINDOWS.0\System32\DRIVERS\serenum.sys [15744 2008-04-14] (Microsoft Corporation)
S1 Serial; C:\WINDOWS.0\System32\DRIVERS\serial.sys [64512 2008-04-14] (Microsoft Corporation)
R0 sfdrv01; C:\WINDOWS.0\System32\drivers\sfdrv01.sys [48640 2005-03-03] (Protection Technology) [File not signed]
R0 sfdrv01a; C:\WINDOWS.0\System32\drivers\sfdrv01a.sys [63352 2006-07-05] (Protection Technology (StarForce))
R0 sfhlp02; C:\WINDOWS.0\System32\drivers\sfhlp02.sys [13680 2006-06-14] (Protection Technology (StarForce))
S1 Sfloppy; C:\WINDOWS.0\system32\Drivers\Sfloppy.sys [11392 2008-04-14] (Microsoft Corporation)
R0 sfsync02; C:\WINDOWS.0\System32\drivers\sfsync02.sys [27032 2006-07-10] (Protection Technology)
R0 sfvfs02; C:\WINDOWS.0\System32\drivers\sfvfs02.sys [82296 2007-01-12] (Protection Technology (StarForce))
S3 SLIP; C:\WINDOWS.0\System32\DRIVERS\SLIP.sys [11136 2008-04-14] (Microsoft Corporation)
S3 smwdm; C:\WINDOWS.0\System32\drivers\smwdm.sys [549672 2002-08-23] (Analog Devices, Inc.)
S3 splitter; C:\WINDOWS.0\System32\drivers\splitter.sys [6272 2008-04-14] (Microsoft Corporation)
R0 sr; C:\WINDOWS.0\System32\DRIVERS\sr.sys [73472 2008-04-14] (Microsoft Corporation)
R3 Srv; C:\WINDOWS.0\System32\DRIVERS\srv.sys [357888 2011-02-17] (Microsoft Corporation)
S3 StillCam; C:\WINDOWS.0\System32\DRIVERS\serscan.sys [6784 2006-01-06] (Microsoft Corporation)
S3 streamip; C:\WINDOWS.0\System32\DRIVERS\StreamIP.sys [15232 2008-04-14] (Microsoft Corporation)
R3 swenum; C:\WINDOWS.0\System32\DRIVERS\swenum.sys [4352 2008-04-14] (Microsoft Corporation)
S3 swmidi; C:\WINDOWS.0\System32\drivers\swmidi.sys [56576 2008-04-14] (Microsoft Corporation)
S3 sysaudio; C:\WINDOWS.0\System32\drivers\sysaudio.sys [60800 2008-04-14] (Microsoft Corporation)
R1 Tcpip; C:\WINDOWS.0\System32\DRIVERS\tcpip.sys [361600 2008-06-20] (Microsoft Corporation)
S3 TDPIPE; C:\WINDOWS.0\system32\Drivers\TDPIPE.sys [12040 2008-04-14] (Microsoft Corporation)
S3 TDTCP; C:\WINDOWS.0\system32\Drivers\TDTCP.sys [21896 2008-04-14] (Microsoft Corporation)
R1 TermDD; C:\WINDOWS.0\System32\DRIVERS\termdd.sys [40840 2008-04-14] (Microsoft Corporation)
S4 Udfs; C:\WINDOWS.0\system32\Drivers\Udfs.sys [66048 2008-04-14] (Microsoft Corporation)
S3 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver4.sys [3584 2005-11-03] () [File not signed]
R3 Update; C:\WINDOWS.0\System32\DRIVERS\update.sys [384768 2008-04-14] (Microsoft Corporation)
S3 usbccgp; C:\WINDOWS.0\System32\DRIVERS\usbccgp.sys [32384 2013-08-09] (Microsoft Corporation)
R3 usbehci; C:\WINDOWS.0\System32\DRIVERS\usbehci.sys [30336 2009-03-18] (Microsoft Corporation)
R3 usbhub; C:\WINDOWS.0\System32\DRIVERS\usbhub.sys [59520 2008-04-14] (Microsoft Corporation)
S3 usbscan; C:\WINDOWS.0\System32\DRIVERS\usbscan.sys [14976 2013-07-03] (Microsoft Corporation)
S3 USBSTOR; C:\WINDOWS.0\System32\DRIVERS\USBSTOR.SYS [26368 2008-04-14] (Microsoft Corporation)
R3 usbuhci; C:\WINDOWS.0\System32\DRIVERS\usbuhci.sys [20608 2008-04-14] (Microsoft Corporation)
S3 usbvideo; C:\WINDOWS.0\System32\Drivers\usbvideo.sys [123008 2013-07-17] (Microsoft Corporation)
R1 VgaSave; C:\WINDOWS.0\System32\drivers\vga.sys [20992 2008-04-14] (Microsoft Corporation)
R0 VolSnap; C:\WINDOWS.0\system32\Drivers\VolSnap.sys [52352 2008-04-14] (Microsoft Corporation)
S3 Wanarp; C:\WINDOWS.0\System32\DRIVERS\wanarp.sys [34560 2008-04-14] (Microsoft Corporation)
S3 Wdf01000; C:\WINDOWS.0\System32\Drivers\wdf01000.sys [503008 2008-03-27] (Microsoft Corporation)
S3 wdmaud; C:\WINDOWS.0\System32\drivers\wdmaud.sys [83072 2008-04-14] (Microsoft Corporation)
S3 WpdUsb; C:\WINDOWS.0\System32\Drivers\wpdusb.sys [18944 2006-01-13] (Microsoft Corporation)
R1 WS2IFSL; C:\WINDOWS.0\System32\drivers\ws2ifsl.sys [12032 2006-01-13] (Microsoft Corporation)
S3 WSTCODEC; C:\WINDOWS.0\System32\DRIVERS\WSTCODEC.SYS [19200 2008-04-14] (Microsoft Corporation)
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_cdcecm; system32\DRIVERS\ew_jucdcecm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
U5 ScsiPort; C:\WINDOWS.0\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
U3 Winsock - Google Desktop Search Backup Before First Install; no ImagePath
U3 Winsock - Google Desktop Search Backup Before Last Install; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-03-13 19:49 - 2016-03-13 19:49 - 00055534 _____ C:\WINDOWS.0\ntbtlog.txt
2016-03-13 02:41 - 2016-03-13 02:41 - 00005824 _____ C:\WINDOWS.0\SchedLgU.Txt
2016-03-13 02:31 - 2016-03-13 02:32 - 00297984 _____ C:\Documents and Settings\Admistrimator\My Documents\cc_20160313_023150.reg
2016-03-13 02:28 - 2016-03-13 02:28 - 05207096 _____ (AVAST Software) C:\Documents and Settings\Admistrimator\My Documents\avast_free_antivirus_setup_online.exe
2016-03-13 02:24 - 2016-03-13 02:24 - 02946424 _____ (AVG Technologies CZ, s.r.o.) C:\Documents and Settings\Admistrimator\My Documents\AVG_Protection_Free_698.exe
2016-03-13 02:09 - 2016-03-13 02:09 - 00000000 ____D C:\Program Files\AVG
2016-03-13 02:06 - 2016-03-13 02:06 - 00000000 ____D C:\Program Files\CCleaner
2016-03-13 02:06 - 2016-03-13 02:06 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\CCleaner
2016-03-13 02:02 - 2016-03-13 19:53 - 00000442 _____ C:\WINDOWS.0\Tasks\Opera scheduled Autoupdate 1457830922.job
2016-03-13 02:02 - 2016-03-13 02:02 - 00000579 _____ C:\Documents and Settings\All Users\Start Menu\Programs\Opera.lnk
2016-03-13 02:02 - 2016-03-13 02:02 - 00000579 _____ C:\Documents and Settings\All Users\Desktop\Opera.lnk
2016-03-13 01:56 - 2016-03-13 01:56 - 00001735 _____ C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome.lnk
2016-03-13 01:53 - 2016-03-13 19:41 - 00000934 _____ C:\WINDOWS.0\Tasks\GoogleUpdateTaskMachineCore1d17cc2cfaa5000.job
2016-03-13 01:53 - 2016-03-13 19:41 - 00000934 _____ C:\WINDOWS.0\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-12 23:58 - 2016-03-12 23:58 - 00000000 ____D C:\FRST
2016-03-12 23:58 - 2016-03-12 23:57 - 01725440 _____ (Farbar) C:\Documents and Settings\Admistrimator\Desktop\FRST.exe
2016-03-12 23:26 - 2016-03-12 23:26 - 00000000 __SHD C:\FOUND.080
2016-03-11 21:20 - 2016-03-11 21:20 - 00000000 ____D C:\WINDOWS.0\LastGood.Tmp
2016-03-11 19:54 - 2016-03-11 19:54 - 00000000 ____D C:\Documents and Settings\Admistrimator\Application Data\HD Tune Pro
2016-03-10 21:41 - 2016-03-13 19:54 - 00000664 _____ C:\WINDOWS.0\system32\d3d9caps.dat
2016-03-10 21:37 - 2016-03-10 21:37 - 00000000 ____D C:\Documents and Settings\Administrator\Application Data\AVG
2016-03-10 21:36 - 2016-03-10 21:37 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Application Data\Avg
2016-03-10 21:36 - 2016-03-10 21:36 - 00000000 __SHD C:\WINDOWS.0\CSC
2016-03-10 21:36 - 2016-03-10 21:36 - 00000000 __SHD C:\Documents and Settings\Administrator\IETldCache
2016-03-10 20:03 - 2016-03-10 20:03 - 00000646 _____ C:\Documents and Settings\All Users\Start Menu\Odkaz na Obnovovanie systému.lnk
2016-03-08 22:34 - 2016-03-08 22:35 - 00007665 _____ C:\Documents and Settings\Admistrimator\Desktop\Addition.txt
2016-03-08 22:32 - 2016-03-13 19:57 - 00042136 _____ C:\Documents and Settings\Admistrimator\Desktop\FRST.txt
2016-03-05 21:37 - 2016-03-05 21:37 - 00000000 __SHD C:\FOUND.079
2016-02-15 15:13 - 2016-02-15 15:13 - 00000000 __SHD C:\FOUND.078

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-03-13 19:41 - 2014-11-28 17:09 - 00000242 _____ C:\WINDOWS.0\Tasks\Microsoft Windows XP End of Service Notification Logon.job
2016-03-13 19:41 - 2006-01-13 01:50 - 00001199 _____ C:\WINDOWS.0\win.ini
2016-03-13 19:41 - 2002-01-01 00:53 - 00000006 ____H C:\WINDOWS.0\Tasks\SA.DAT
2016-03-13 02:40 - 2011-09-04 00:27 - 00000278 ___SH C:\Documents and Settings\Admistrimator\ntuser.ini
2016-03-13 01:35 - 2011-09-04 23:15 - 00134144 _____ C:\Documents and Settings\Admistrimator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-03-13 01:34 - 2012-11-04 15:32 - 00000834 _____ C:\WINDOWS.0\Tasks\Adobe Flash Player Updater.job
2016-03-12 22:50 - 2006-01-13 01:26 - 00002262 _____ C:\WINDOWS.0\system32\wpa.dbl
2016-03-12 01:23 - 2015-09-07 23:30 - 00000896 _____ C:\WINDOWS.0\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-03-10 22:30 - 2014-08-28 22:57 - 00170200 _____ (Malwarebytes) C:\WINDOWS.0\system32\Drivers\MBAMSwissArmy.sys
2016-03-10 21:45 - 2002-01-01 00:53 - 00000278 ___SH C:\Documents and Settings\Administrator\ntuser.ini
2016-03-10 16:51 - 2002-01-01 20:53 - 00039291 _____ C:\WINDOWS.0\system32\nvapps.xml
2016-03-08 15:00 - 2014-11-28 17:09 - 00000236 _____ C:\WINDOWS.0\Tasks\Microsoft Windows XP End of Service Notification Monthly.job
2016-03-02 21:08 - 2006-01-13 01:29 - 00000311 _____ C:\WINDOWS.0\system.ini
2016-02-21 22:41 - 2014-08-28 22:57 - 00000681 _____ C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2016-02-19 15:08 - 2012-11-04 15:32 - 00796864 _____ (Adobe Systems Incorporated) C:\WINDOWS.0\system32\FlashPlayerApp.exe
2016-02-19 15:08 - 2012-11-04 15:32 - 00142528 _____ (Adobe Systems Incorporated) C:\WINDOWS.0\system32\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2005-09-10 13:26 - 2005-09-10 13:26 - 0011252 ____H () C:\Program Files\folder.htt
2002-10-30 08:22 - 2002-10-30 08:22 - 0015592 _____ () C:\Program Files\owcstp16.dll
2012-06-29 20:15 - 2012-06-29 20:15 - 0022328 _____ () C:\Documents and Settings\Admistrimator\Application Data\PnkBstrK.sys
2012-06-30 18:59 - 2012-06-30 18:59 - 0000136 _____ () C:\Documents and Settings\Admistrimator\Local Settings\Application Data\fusioncache.dat
2011-09-04 23:15 - 2016-03-13 01:35 - 0134144 _____ () C:\Documents and Settings\Admistrimator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS.0\explorer.exe => File is digitally signed
C:\WINDOWS.0\system32\winlogon.exe => File is digitally signed
C:\WINDOWS.0\system32\svchost.exe => File is digitally signed
C:\WINDOWS.0\system32\services.exe => File is digitally signed
C:\WINDOWS.0\system32\User32.dll => File is digitally signed
C:\WINDOWS.0\system32\userinit.exe => File is digitally signed
C:\WINDOWS.0\system32\rpcss.dll => File is digitally signed
C:\WINDOWS.0\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS.0\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

[JaRon]

myslel som druhy log FRST - Addition.txt
+
este skusime CF - ak nepomoze, tak install ,,,
citat:
Ulozte na plochu ComboFix.exe - http://download.bleepingcomputer.com/sUBs/ComboFix.exe
•Vypnete antiviry a vsechny real-time ochrany
•spustte ComboFix jako spravce (lepe pod uctem s administratorskym opravnenim)
•s licencnimi podminkami souhlaste - Ano
•pokud je nabidnuta instalace konzoly pro zotaveni, souhlaste
•v prubehu skenovani nechte PC v klidu - nic nespoustejte a do okna ComboFixu neklikejte
•vysledek skenu naleznete v C:\ComboFix.txt, jehoz obsah mi zkopirujte do pristi odpovedi.

[backpase]

Tu je Addition.txt, idem skúsiť ten ComboFix a hodím log

Additional scan result of Farbar Recovery Scan Tool (x86) Version:05-03-2016 01
Ran by Admistrimator (2016-03-08 22:34:44)
Running from C:\Documents and Settings\Admistrimator\Desktop
Systém Microsoft Windows XP Professional Service Pack 3 (X86) (2002-01-01 00:50:38)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1454471165-1326574676-1801674531-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator
Admistrimator (S-1-5-21-1454471165-1326574676-1801674531-1004 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Admistrimator
Guest (S-1-5-21-1454471165-1326574676-1801674531-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-1454471165-1326574676-1801674531-1000 - Limited - Disabled)
SUPPORT_388945a0 (S-1-5-21-1454471165-1326574676-1801674531-1002 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: AVG AntiVirus Free Edition (Enabled - Out of date) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 11 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 11.9.900.152 - Adobe Systems Incorporated)
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Flash Player 20 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 20.0.0.306 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
AVG (Version: 16.7.7227 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4537 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.7.7227 - AVG Technologies)
BS.Player FREE (HKLM\...\BSPlayerf) (Version: 2.62.1068 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.14 - Piriform)
Commandos (HKLM\...\Commandos) (Version: - )
Counter-Strike 1.6 v42 (HKU\S-1-5-21-1454471165-1326574676-1801674531-1004\...\Counter-Strike 1.6_is1) (Version: - Valve)
Dungeon Keeper 2 (HKLM\...\Dungeon Keeper 2_is1) (Version: - GOG.com)
FMW 1 (Version: 1.62.2 - AVG Technologies) Hidden
FormatFactory 3.6.0.0 (HKLM\...\FormatFactory) (Version: 3.6.0.0 - Format Factory)
globalupdate Helper (Version: 1.3.25.0 - globalupdate Inc.) Hidden <==== ATTENTION
GOM Player (HKLM\...\GOM Player) (Version: 2.1.47.5133 - Gretech Corporation)
Google Chrome (HKLM\...\Google Chrome) (Version: 48.0.2564.116 - Spoločnosť Google Inc.)
Google Update Helper (Version: 1.3.29.5 - Google Inc.) Hidden
Intel(R) Extreme Graphics Driver (HKLM\...\{8A708DD8-A5E6-11D4-A706-000629E95E20}) (Version: - )
Intel(R) PRO Network Adapters and Drivers (HKLM\...\PROSet) (Version: - )
Intel(R) PROSet (HKLM\...\{EF4EF65F-4D62-44D7-82C9-1AECCBA74C50}) (Version: 6.04.0001 - Intel)
InterVideo WinDVD (HKLM\...\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}) (Version: 5.0-B11.333 - InterVideo Inc.)
Malwarebytes Anti-Malware verzia 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - )
NVIDIA PhysX (HKLM\...\{5DB65884-C963-4454-AABA-4CA3089281FA}) (Version: 9.09.0720 - NVIDIA Corporation)
OpenOffice 4.1.1 (HKLM\...\{456408C1-3BDE-48CC-9A5A-79B1BB4C4787}) (Version: 4.11.9775 - Apache Software Foundation)
Opera Stable 35.0.2066.82 (HKLM\...\Opera 35.0.2066.82) (Version: 35.0.2066.82 - Opera Software)
PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
QuickTime Alternative 1.67 (HKLM\...\QuicktimeAlt_is1) (Version: 1.67 - )
SecureMedia eONE Player v2.1.0.7340 (HKLM\...\SecureMedia eONE Player_is1) (Version: 2.1.0 - SecureMedia, Inc.)
Shockwave (HKLM\...\Shockwave) (Version: - )
Software Update for Web Folders (Version: 9.60.6715.0 - Microsoft Corporation) Hidden
SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: - )
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
WinRAR archiver (HKLM\...\WinRAR archiver) (Version: - )
XP Codec Pack (HKLM\...\XP Codec Pack) (Version: - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS.0\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS.0\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS.0\Tasks\Microsoft Windows XP End of Service Notification Monthly.job => C:\WINDOWS.0\system32\xp_eos.exe
Task: C:\WINDOWS.0\Tasks\Microsoft Windows XP End of Service Notification Logon.job => C:\WINDOWS.0\system32\xp_eos.exe
Task: C:\WINDOWS.0\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS.0\system32\Macromed\Flash\FlashUtil32_20_0_0_306_pepper.exe
Task: C:\WINDOWS.0\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS.0\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS.0\Tasks\Opera scheduled Autoupdate 1445189468.job => C:\Program Files\Opera\launcher.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

[backpase]

ComboFix vykonal svoju prácu ale nedostal som žiadny log

[JaRon]

Ak sa nevytvoril combofix.txt a anni jeho cinnost nepomohla, skus este vytvorit cisty novy ucet s admin
Pravami -ak ani to nepomoze, tak iba install Win