VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

SuperAntiSypware free edition našel PUP.SlimWare/Variant

https://forum.viry.cz:443/viewtopic.php?t=155296

Stránka 1 z 1

SuperAntiSypware free edition našel PUP.SlimWare/Variant

Napsal: 11 pro 2018 20:17
od TomášzePlzně
Prosím o kontrolu logů zda SAS výše zmíněnou havěť kompletně zneškodnil a nezůstali po ní v pc nějaké nečistoty.
FRST.txt je zde:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09.12.2018
Ran by admin (administrator) on AMD3000 (11-12-2018 20:06:43)
Running from C:\Documents and Settings\admin\Plocha
Loaded Profiles: admin (Available Profiles: admin & Administrator)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\afwServ.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(AVAST Software) C:\Program Files\Avast Driver Updater\Avast Driver Updater.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\aswidsagent.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Easy-PrintToolBox] => C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE [409600 2004-01-14] (CANON INC.)
HKLM\...\Run: [AppleSyncNotifier] => C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-11-02] (Apple Inc.)
HKLM\...\Run: [HDAudDeck] => C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe [33718272 2009-12-03] (VIA Technologies, Inc.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-03-20] (Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvLaunch.exe [242392 2018-12-08] (AVAST Software)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157456 2015-09-12] (Apple Inc.)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7765936 2018-11-04] (SUPERAntiSpyware)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\Run: [Avast Driver Updater] => C:\Program Files\Avast Driver Updater\Avast Driver Updater.exe [30443544 2018-07-18] (AVAST Software)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [14614416 2018-11-28] (Piriform Software Ltd)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssmyst.scr [18944 2008-04-14] (Microsoft Corporation)
IFEO\bootsafe.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\foxitreader.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\itunes.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\runsas.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\softwareupdate.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\superantispyware.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\unins000.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\unins001.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-07] (SuperAdBlocker.com)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
Startup: C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\Sledování výstrah kazety - .lnk [2018-08-02]
ShortcutTarget: Sledování výstrah kazety - .lnk -> C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPStatusBL.dll (HP Inc.)
Startup: C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\Sledování výstrah kazety - HP DeskJet 3700 series.lnk [2018-12-11]
ShortcutTarget: Sledování výstrah kazety - HP DeskJet 3700 series.lnk -> C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPStatusBL.dll (HP Inc.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Avast Cleanup Premium.lnk [2018-01-12]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Logitech SetPoint.lnk [2006-08-15]
ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\KEM.exe (Logitech Inc.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\LUMIX Simple Viewer.lnk [2006-09-07]
ShortcutTarget: LUMIX Simple Viewer.lnk -> C:\Program Files\Panasonic\LUMIXSimpleViewer\PhLeAutoRun.exe (Matsushita Electric Industrial Co., Ltd.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk [2006-08-19]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk [2018-07-31]
ShortcutTarget: Windows Search.lnk -> C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.78.196.1 10.109.255.254
Tcpip\..\Interfaces\{2FDA8468-9903-465E-A322-3F9280AF4983}: [DhcpNameServer] 10.78.196.1 10.109.255.254

Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-1960408961-261478967-682003330-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2008-04-14] (Společnost Microsoft)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll [2007-11-08] (Logitech Inc.)

FireFox:
========
FF ProfilePath: C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\8faakgqr.default-1483643606250 [2018-12-11]
FF Extension: (Avast Passwords) - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\8faakgqr.default-1483643606250\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2018-11-14]
FF Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\8faakgqr.default-1483643606250\Extensions\sp@avast.com.xpi [2018-11-14]
FF Extension: (Avast Online Security) - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\8faakgqr.default-1483643606250\Extensions\wrc@avast.com.xpi [2018-07-05]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2015-01-18] [Legacy] [not signed]
FF HKLM\...\Firefox\Extensions: [jid1-r1tDuNiNb4SEww@jetpack] - C:\Program Files\Alwil Software\Avast5\pam\FF => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_32_0_0_101.dll [2018-12-05] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-09-04] ()
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Corporation)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-09-09]
FF ExtraCheck: C:\Program Files\mozilla firefox\Nastavenia.cfg [2004-12-31] <==== ATTENTION

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default [2018-12-11]
CHR Extension: (Seznam doplněk - Email) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2018-11-24]
CHR Extension: (Avast Passwords) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2018-12-11]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-11-17]
CHR Extension: (Avast Online Security) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-09-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Seznam doplněk - Esko) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-11-24]
CHR HKLM\...\Chrome\Extension: [emhginjpijfggbofeediiojmdlmlkoik] - C:\Program Files\Alwil Software\Avast5\pam\Chrome\pam.crx <not found>
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKU\S-1-5-21-1960408961-261478967-682003330-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1960408961-261478967-682003330-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [143776 2017-01-31] (SUPERAntiSpyware.com)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-12-05] (Adobe Systems Incorporated) [File not signed]
R3 aswbIDSAgent; C:\Program Files\Alwil Software\Avast5\aswidsagent.exe [6799632 2018-12-08] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [324000 2018-12-08] (AVAST Software)
R2 avast! Firewall; C:\Program Files\Alwil Software\Avast5\afwServ.exe [338632 2018-12-08] (AVAST Software)
R2 CleanupPSvc; C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe [9121248 2018-11-01] (AVAST Software)
S4 FoxitReaderService; C:\Program Files\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1659456 2018-04-17] (Foxit Software Inc.)
S4 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2005-12-18] (Hewlett-Packard Company) [File not signed]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 acedrv11; C:\WINDOWS\system32\drivers\acedrv11.sys [501560 2008-01-23] (Protect Software GmbH)
R3 Afc; C:\WINDOWS\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.) [File not signed]
S3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [3964736 2006-05-10] (Realtek Semiconductor Corp.)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1656960 2009-06-26] (Creative)
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [36352 2005-03-09] (Advanced Micro Devices)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [167480 2018-12-08] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriverx.sys [188976 2018-12-08] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidshx.sys [165384 2018-12-08] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblogx.sys [284256 2018-12-08] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbunivx.sys [57904 2018-12-08] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [42736 2018-12-08] (AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [40688 2018-12-08] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [135200 2018-12-08] (AVAST Software)
R0 aswNdis; C:\WINDOWS\System32\DRIVERS\aswNdis.sys [12112 2017-04-20] (ALWIL Software)
R0 aswNdis2; C:\WINDOWS\System32\drivers\aswNdis2.sys [332280 2018-12-08] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr.sys [70640 2018-12-08] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [72800 2018-12-08] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [784560 2018-12-08] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [397992 2018-12-08] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\System32\drivers\aswStmXP.sys [146584 2018-12-08] (AVAST Software)
S3 aswTap; C:\WINDOWS\System32\DRIVERS\aswTap.sys [35144 2014-07-11] (The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [310200 2018-12-08] (AVAST Software)
S3 irsir; C:\WINDOWS\System32\DRIVERS\irsir.sys [18688 2001-08-17] (Microsoft Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1389056 2008-12-02] (Creative Technology Ltd.)
R0 nvata; C:\WINDOWS\System32\DRIVERS\nvata.sys [105344 2006-08-21] (NVIDIA Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [54400 2008-03-25] (NVIDIA Corporation)
R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [145952 2008-08-18] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [22016 2008-03-25] (NVIDIA Corporation)
R3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [21248 2003-09-20] (Padus, Inc.) [File not signed]
R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2010-03-25] (Avira GmbH)
S3 SWDUMon; C:\WINDOWS\System32\DRIVERS\SWDUMon.sys [22728 2018-12-11] (SlimWare Utilities, Inc.)
S3 taphss; C:\WINDOWS\System32\DRIVERS\taphss.sys [32768 2012-03-26] (AnchorFree Inc)
R3 VIAHdAudAddService; C:\WINDOWS\System32\drivers\viahduaa.sys [1617408 2009-11-25] (VIA Technologies, Inc.)
S4 IntelIde; no ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U3 TlntSvr; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-12-11 20:06 - 2018-12-11 20:07 - 000019000 _____ C:\Documents and Settings\admin\Plocha\FRST.txt
2018-12-11 20:05 - 2018-12-11 20:06 - 000000000 ____D C:\FRST
2018-12-11 20:00 - 2018-12-11 20:01 - 001776640 _____ (Farbar) C:\Documents and Settings\admin\Plocha\FRST.exe
2018-12-11 09:33 - 2018-12-11 09:33 - 000000000 ____D C:\WINDOWS\LastGood
2018-12-11 00:13 - 2018-12-11 00:13 - 000000748 _____ C:\Documents and Settings\All Users\Plocha\Jízdní řád ČD 2019.lnk
2018-12-11 00:12 - 2018-12-11 00:12 - 000000000 ____D C:\Documents and Settings\admin\Plocha\JR2019
2018-12-08 12:46 - 2018-12-08 12:45 - 000323288 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2018-11-30 13:07 - 2018-11-30 13:08 - 018177128 _____ (Piriform Software Ltd) C:\Documents and Settings\admin\Plocha\ccsetup550.exe
2018-11-22 13:48 - 2018-11-22 13:48 - 000177856 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-11-21 19:57 - 2018-11-21 19:57 - 000000000 __SHD C:\Documents and Settings\admin\IECompatCache

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-12-11 20:07 - 2013-02-10 15:57 - 000000000 ____D C:\Documents and Settings\admin\Local Settings\temp
2018-12-11 20:06 - 2006-08-15 19:55 - 000000000 ____D C:\Documents and Settings\admin\Plocha
2018-12-11 20:05 - 2016-05-29 11:14 - 000000000 ____D C:\Documents and Settings\admin\Local Settings\Data aplikací\AVAST Software
2018-12-11 19:58 - 2015-07-16 19:43 - 000000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2018-12-11 19:50 - 2004-08-18 13:00 - 000011936 _____ C:\WINDOWS\system32\wpa.dbl
2018-12-11 19:45 - 2017-08-02 00:36 - 000000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2018-12-11 18:39 - 2018-02-26 20:00 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2018-12-11 18:39 - 2017-02-27 23:24 - 000000774 _____ C:\Documents and Settings\All Users\Plocha\Mozilla Thunderbird.lnk
2018-12-11 18:39 - 2016-05-29 11:06 - 000000780 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Mozilla Thunderbird.lnk
2018-12-11 16:49 - 2017-04-20 11:23 - 000000360 ____H C:\WINDOWS\Tasks\Avast Emergency Update.job
2018-12-11 15:15 - 2010-02-19 23:26 - 000000000 ____D C:\Documents and Settings\admin\Plocha\Jízdní řád ČD
2018-12-11 13:09 - 2017-10-24 21:27 - 000000280 ____H C:\WINDOWS\Tasks\CCleaner Update.job
2018-12-11 10:45 - 2006-08-15 19:54 - 000032376 _____ C:\WINDOWS\SchedLgU.Txt
2018-12-11 09:51 - 2012-05-24 12:15 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-12-11 09:33 - 2006-08-15 19:55 - 000000000 ___HD C:\Documents and Settings\admin\Local Settings\Data aplikací
2018-12-11 09:32 - 2018-05-17 10:58 - 000022728 _____ (SlimWare Utilities, Inc.) C:\WINDOWS\system32\Drivers\SWDUMon.sys
2018-12-11 09:31 - 2018-01-12 21:24 - 000000372 ____H C:\WINDOWS\Tasks\Avast TUNEUP Update.job
2018-12-11 09:30 - 2015-07-16 19:43 - 000000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2018-12-11 09:30 - 2006-08-15 19:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-12-11 01:36 - 2006-08-15 19:55 - 000000178 ___SH C:\Documents and Settings\admin\ntuser.ini
2018-12-11 01:36 - 2006-08-15 19:55 - 000000000 ____D C:\Documents and Settings\admin
2018-12-11 00:13 - 2015-01-09 20:32 - 000000616 _____ C:\Documents and Settings\All Users\Plocha\Jízdní řád ČD výběr jízdních řádů.lnk
2018-12-11 00:13 - 2010-02-19 23:26 - 000000000 ____D C:\Documents and Settings\admin\Nabídka Start\Programy\Jízdní řád ČD
2018-12-11 00:13 - 2010-02-19 23:26 - 000000000 ____D C:\Documents and Settings\admin\Data aplikací\Jízdní řád ČD
2018-12-11 00:13 - 2006-08-15 21:41 - 000000000 ____D C:\Documents and Settings\All Users\Plocha
2018-12-08 21:26 - 2018-03-13 18:45 - 000000946 _____ C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job
2018-12-08 21:26 - 2006-08-15 19:49 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-12-08 12:54 - 2006-08-15 21:33 - 000000000 ___HD C:\WINDOWS\inf
2018-12-08 12:50 - 2017-04-20 11:23 - 000332280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdis2.sys
2018-12-08 12:45 - 2018-10-23 06:29 - 000040688 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2018-12-08 12:45 - 2017-11-09 04:36 - 000167480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2018-12-08 12:45 - 2015-07-31 18:42 - 000146584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStmXP.sys
2018-12-08 12:45 - 2014-05-06 14:05 - 000042736 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2018-12-08 12:45 - 2013-02-28 14:23 - 000310200 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2018-12-08 12:45 - 2013-02-28 14:23 - 000135200 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-12-08 12:45 - 2013-02-28 14:23 - 000072800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2018-12-08 12:45 - 2012-08-13 16:22 - 000784560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2018-12-08 12:45 - 2012-08-09 12:29 - 000397992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-12-08 12:45 - 2012-08-09 12:29 - 000070640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2018-12-08 12:44 - 2017-04-20 11:23 - 000284256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblogx.sys
2018-12-08 12:44 - 2017-04-20 11:23 - 000188976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
2018-12-08 12:44 - 2017-04-20 11:23 - 000165384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidshx.sys
2018-12-08 12:44 - 2017-04-20 11:23 - 000057904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbunivx.sys
2018-12-05 18:45 - 2017-08-02 00:36 - 000842240 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2018-12-05 18:45 - 2017-08-02 00:36 - 000175104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2018-11-30 16:47 - 2006-08-15 21:41 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy
2018-11-30 16:47 - 2006-08-15 19:48 - 000000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Hry
2018-11-30 13:09 - 2014-12-03 23:30 - 000000682 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2018-11-30 13:08 - 2011-01-08 00:22 - 000000000 ____D C:\Documents and Settings\admin\Dokumenty\Stažené soubory
2018-11-24 13:24 - 2006-08-19 18:12 - 000002545 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Word.lnk
2018-11-17 06:55 - 2017-11-16 21:55 - 000000000 ____D C:\Documents and Settings\admin\Plocha\Debility

==================== Files in the root of some directories =======

2006-08-19 17:20 - 2012-03-13 13:49 - 000018432 _____ () C:\Documents and Settings\admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-08-02 15:38 - 2018-08-02 15:38 - 000000125 _____ () C:\Documents and Settings\admin\Local Settings\Data aplikací\fusioncache.dat
2007-09-22 10:55 - 2007-09-22 10:55 - 000000305 _____ () C:\Documents and Settings\All Users\Data aplikací\addr_file.html

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

a Addition.txt zde:

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 09.12.2018
Ran by admin (11-12-2018 20:08:23)
Running from C:\Documents and Settings\admin\Plocha
Microsoft Windows XP Home Edition Service Pack 3 (X86) (2006-08-15 18:52:46)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

admin (S-1-5-21-1960408961-261478967-682003330-1004 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\admin
Administrator (S-1-5-21-1960408961-261478967-682003330-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator
ASPNET (S-1-5-21-1960408961-261478967-682003330-1191 - Limited - Enabled)
Guest (S-1-5-21-1960408961-261478967-682003330-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-1960408961-261478967-682003330-1000 - Limited - Disabled)
SUPPORT_388945a0 (S-1-5-21-1960408961-261478967-682003330-1002 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {7591db91-41f0-48a3-b128-1a293fd8233d}
FW: Avast Antivirus (Disabled) {7591db91-41f0-48a3-b128-1a293fd8233d}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 18.05 (HKLM\...\{23170F69-40C1-2701-1805-000001000000}) (Version: 18.05.00.0 - Igor Pavlov)
7-Zip 9.22beta (HKLM\...\7-Zip) (Version: - )
Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated)
Aktualizace systému Windows Internet Explorer 7 (KB976749) (HKLM\...\KB976749-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace systému Windows Internet Explorer 7 (KB980182) (HKLM\...\KB980182-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení aplikace Windows Media Player (KB911564) (HKLM\...\KB911564) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení aplikace Windows Media Player 6.4 (KB925398) (HKLM\...\KB925398_WMP64) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player 9 (KB936782) (HKLM\...\KB936782_WMP9) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení produktu Windows XP (KB923689) (HKLM\...\KB923689) (Version: - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2183461) (HKLM\...\KB2183461-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2360131) (HKLM\...\KB2360131-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2416400) (HKLM\...\KB2416400-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2482017) (HKLM\...\KB2482017-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2497640) (HKLM\...\KB2497640-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2530548) (HKLM\...\KB2530548-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2544521) (HKLM\...\KB2544521-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2559049) (HKLM\...\KB2559049-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2586448) (HKLM\...\KB2586448-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2618444) (HKLM\...\KB2618444-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2647516) (HKLM\...\KB2647516-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2675157) (HKLM\...\KB2675157-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2699988) (HKLM\...\KB2699988-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2722913) (HKLM\...\KB2722913-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2744842) (HKLM\...\KB2744842-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2761465) (HKLM\...\KB2761465-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2792100) (HKLM\...\KB2792100-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2797052) (HKLM\...\KB2797052-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2799329) (HKLM\...\KB2799329-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2809289) (HKLM\...\KB2809289-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2817183) (HKLM\...\KB2817183-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2829530) (HKLM\...\KB2829530-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2838727) (HKLM\...\KB2838727-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2846071) (HKLM\...\KB2846071-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2862772) (HKLM\...\KB2862772-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2870699) (HKLM\...\KB2870699-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2879017) (HKLM\...\KB2879017-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2888505) (HKLM\...\KB2888505-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2898785) (HKLM\...\KB2898785-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2909921) (HKLM\...\KB2909921-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2925418) (HKLM\...\KB2925418-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2936068) (HKLM\...\KB2936068-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2964358) (HKLM\...\KB2964358-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB938127) (HKLM\...\KB938127-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB939653) (HKLM\...\KB939653-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB942615) (HKLM\...\KB942615-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB944533) (HKLM\...\KB944533-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB950759) (HKLM\...\KB950759-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB953838) (HKLM\...\KB953838-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB956390) (HKLM\...\KB956390-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB958215) (HKLM\...\KB958215-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB960714) (HKLM\...\KB960714-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB961260) (HKLM\...\KB961260-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB963027) (HKLM\...\KB963027-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB969897) (HKLM\...\KB969897-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB972260) (HKLM\...\KB972260-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB974455) (HKLM\...\KB974455-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB976325) (HKLM\...\KB976325-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB978207) (HKLM\...\KB978207-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB982381) (HKLM\...\KB982381-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2909921) (HKLM\...\KB2909921-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB923789) (HKLM\...\KB923789) (Version: - Microsoft Corporation)
Apple Mobile Device Support (HKLM\...\{E1DB0812-2D60-43DB-AE09-6C7027D93B28}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
ArcSoft Software Suite (HKLM\...\{9E397B40-13F7-4CA2-9943-ADB29ACBBFDF}) (Version: - )
Australian Rugby League (HKLM\...\Australian Rugby League_is1) (Version: - GameFabrique)
Autodesk Design Review 2010 (HKLM\...\{55D9E026-DCB0-46FF-B60A-68B972228CF6}) (Version: 10.0.0.108 - Autodesk, Inc.) Hidden
Autodesk Design Review 2010 (HKLM\...\Autodesk Design Review 2010) (Version: 10.0.0.108 - Autodesk, Inc.)
Avast Driver Updater (HKLM\...\{984D8789-07A6-4CD8-9766-35408C67395D}) (Version: 2.4.0 - AVAST Software) Hidden
Avast Driver Updater (HKLM\...\Avast Driver Updater) (Version: 2.4.0 - AVAST Software)
Avast Premier (HKLM\...\Avast Antivirus) (Version: 18.8.2356 - AVAST Software)
Balíček zprostředkovatele služby Microsoft Base Smart Card Cryptographic Service (HKLM\...\KB909520) (Version: - Microsoft Corporation)
Beetle Run for Windows (HKLM\...\Beetle Run for Windows) (Version: - )
Becher Train (HKLM\...\Becher Train_is1) (Version: - )
Bermen 1.1 (HKLM\...\Bermen_is1) (Version: - Island software)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BVE Uchibo Line (HKLM\...\{9BD8D527-A96C-46DB-B076-48D34189B372}) (Version: 2.0.1 - mackoy)
Canon iP4200 (HKLM\...\CANONBJ_Deinstall_CNMCP78.DLL) (Version: - )
Canon Setup Utility 2.0 (HKLM\...\Canon Setup Utility 2.0) (Version: - )
Canon Utilities Easy-PhotoPrint (HKLM\...\Easy-PhotoPrint) (Version: - )
Canon Utilities Easy-PrintToolBox (HKLM\...\Easy-PrintToolBox) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.50 - Piriform)
CD-LabelPrint (HKLM\...\MediaNavigation.CDLabelPrint) (Version: - )
Celestia 1.6.1 (HKLM\...\Celestia_is1) (Version: - Shatters Software)
City Life (HKLM\...\{2FA56ACE-753E-A934-1D7F-9ABD5E561CC4}) (Version: 1.2.0.0 - Monte Cristo)
Czech Soccer Manager (HKLM\...\Czech Soccer Manager) (Version: - )
Czech Soccer Manager 2000 (HKLM\...\Czech Soccer Manager 2000verze 3.0 FINAL (1.7.2000)) (Version: verze 3.0 FINAL (1.7.2000) - Petr Vašíček)
Czech Soccer Manager 2001 (HKLM\...\Czech Soccer Manager 2001) (Version: - )
Czech Soccer Manager 2002 (HKLM\...\Czech Soccer Manager 2002) (Version: - )
Czech Soccer Manager 2002 FE (HKLM\...\Czech Soccer Manager 2002 FE) (Version: - )
Czech Soccer Manager 2002 Final Edition (HKLM\...\Czech Soccer Manager 2002 Final Edition) (Version: - )
Czech Soccer Manager 2002 Final Edition (HKLM\...\Czech Soccer Manager 2002 Final Editionverze 4.0 (31.3.2006)) (Version: verze 4.0 (31.3.2006) - Petr Vašíček)
Czech Soccer Manager 99 (HKLM\...\Czech Soccer Manager 99verze 5.2 FINAL (7.7.1999)) (Version: verze 5.2 FINAL (7.7.1999) - Petr Vašíček)
DemonStar (HKLM\...\DemonStarDeinstKey) (Version: - )
Easy-WebPrint (HKLM\...\Easy-WebPrint) (Version: - )
ECSP MHD Simulator 2007 (HKLM\...\ECSP MHD Simulator 2007) (Version: - )
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - )
Flaps for Windows (HKLM\...\Flaps for Windows) (Version: - )
Football Challenge 2010 (PL) (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\fc10-PL_TVP_MAIN) (Version: - )
Foxit Reader (HKLM\...\Foxit Reader_is1) (Version: 9.3.0.10826 - Foxit Software Inc.)
Free Mp3/Wma/Ogg Converter 4.0.1 (HKLM\...\Free Mp3/Wma/Ogg Converter_is1) (Version: - )
Free PDF to Word Doc Converter v1.1 (HKLM\...\Free PDF to Word Doc Converter_is1) (Version: 1.1 - www.hellopdf.com)
Freeciv 2.0.8 (GTK+ client) (HKLM\...\Freeciv-2.0.8-gtk2) (Version: - )
Frog Hop for Windows (HKLM\...\Frog Hop for Windows ) (Version: - )
Fussball Challenge 2008 (ORF) (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\fc08-AT_ORF_MAIN) (Version: - )
Garmin Communicator Plugin (HKLM\...\{647BB978-2876-487B-9B0E-FDB73F0EA4A2}) (Version: 4.0.4 - Garmin Ltd or its subsidiaries)
Google Drive (HKLM\...\{AC117AF9-316B-4E1D-959E-F0EB85B0DC5F}) (Version: 2.34.7100.0000 - Google, Inc.)
Google Earth Plug-in (HKLM\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HP DeskJet 3700 series Nápověda (HKLM\...\{295D0212-82EF-4A9B-9523-754A430DE721}) (Version: 40.0.0 - HP)
HP Dropbox Plugin (HKLM\...\{0078F518-B5B5-4857-8939-199E752A4190}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM\...\{F260117F-45E4-483E-B10F-C80224558C4D}) (Version: 36.0.41.58587 - HP)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
iPhone Configuration Utility (HKLM\...\{FA54AFB1-5745-4389-B8C1-9F7509672ED1}) (Version: 2.1.0.163 - Apple Inc.)
iTunes (HKLM\...\{868B9974-4F23-494D-B6BC-4FAB92B2755D}) (Version: 12.1.3.6 - Apple Inc.)
Jízdní řád ČD 2019 (HKLM\...\{2FFA4F8E-8D11-4A0C-9C58-4BD03B51DDDA}_is1) (Version: - České dráhy a.s.)
Kat (HKLM\...\Kat) (Version: - )
Legie (HKLM\...\{FB86EDAA-B17D-447E-972B-5580A4C6AE3C}_is1) (Version: - Sudokop.com)
LightScribe 1.4.62.1 (HKLM\...\{ABB2901A-3D0A-4F21-8324-2F13C3EFE163}) (Version: 1.4.62.1 - hxxp://www.lightscribe.com) Hidden
Logitech Desktop Messenger (HKLM\...\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}) (Version: 2.52.18 - Logitech, Inc.)
Logitech SetPoint (HKLM\...\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}) (Version: 2.12 - )
LUMIX Simple Viewer (HKLM\...\{2CDCCE7E-55D5-40CC-AEA0-ABA54713501F}) (Version: 0.99.0000 - )
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 Czech Language Pack (HKLM\...\{5E65E94D-69F2-4850-9E93-6459C53A0F50}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - )
Microsoft .NET Framework 2.0 Language Pack - CSY (HKLM\...\Microsoft .NET Framework 2.0 Language Pack - CSY) (Version: - Microsoft Corporation)
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Office 2000 Professional (HKLM\...\{00010405-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2720 - Microsoft Corporation)
Microsoft Return of Arcade Trial Version (HKLM\...\Return of Arcade Trial) (Version: - )
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mini Golf Pro 1.1 (HKLM\...\Mini Golf Pro_is1) (Version: - S64 Games)
MobileMe Control Panel (HKLM\...\{710BF966-43C8-4216-A8EC-BC4E169FF7C1}) (Version: 3.1.8.0 - Apple Inc.)
Mozilla Firefox 52.9.0 ESR (x86 cs) (HKLM\...\Mozilla Firefox 52.9.0 ESR (x86 cs)) (Version: 52.9.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 38.5.0 - Mozilla)
Mozilla Thunderbird 38.5.0 (x86 cs) (HKLM\...\Mozilla Thunderbird 38.5.0 (x86 cs)) (Version: 38.5.0 - Mozilla)
Mrtvé město (HKLM\...\Mrtvé město_is1) (Version: - NiHiLiS)
Nero OEM (HKLM\...\Nero - Burning Rom!UninstallKey) (Version: - )
NSIS LHM2006 (remove only) (HKLM\...\LHM2006) (Version: - )
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.3 - NVIDIA Corporation)
Oilcap Pro for Windows (HKLM\...\Oilcap Pro for Windows) (Version: - )
OpenOffice.org 3.4.1 (HKLM\...\{1E0AF527-0B8E-4F8A-BA27-CB3C359998C6}) (Version: 3.41.9593 - Apache Software Foundation)
OpenTTD 1.5.3 (HKLM\...\OpenTTD) (Version: 1.5.3 - OpenTTD)
Oprava Hotfix systému Windows Internet Explorer 7 (KB947864) (HKLM\...\KB947864-IE7) (Version: 1 - Microsoft Corporation) Hidden
Oracle of Runes for Windows (HKLM\...\Oracle of Runes for Windows) (Version: - )
ORF-Ski Challenge 2008 (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\SC08-ORF_MAIN) (Version: - )
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 0.9.7 - Frank Heindörfer, Philip Chinery)
PHOTOfunSTUDIO -viewer- (HKLM\...\{9A9DBEBC-C800-4776-A970-D76D6AA405B1}) (Version: 1.00.000 - )
Ping-Pong (HKLM\...\Ping-Pong_is1) (Version: 1.0 - MyPlayCity, Inc.)
Pivot Stickfigure Animator (HKLM\...\{BEAD39CD-901D-4267-8B8B-EAA83CB4B70D}) (Version: 2.2.5 - Peter Bone)
Platform (HKLM\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Hidden
Podpora aplikací Apple (32bitová) (HKLM\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: - )
ProHockeyManager 2005 (HKLM\...\ProHockeyManager 2005) (Version: - )
ProtectDisc Driver, Version 11 (HKLM\...\ProtectDisc Driver 11) (Version: 11.0.0.10 - ProtectDisc Software GmbH)
QuickTime 7 (HKLM\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Real Bowling (HKLM\...\RealBowling_is1) (Version: 1.0 - Media Contact LLC)
Realtek AC'97 Audio (HKLM\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version: 5.23 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.6013 - Realtek Semiconductor Corp.)
Rugby World Cup 95 (HKLM\...\Rugby World Cup 95_is1) (Version: - GameFabrique)
Sada Compatibility Pack pro systém Office 2007 (HKLM\...\{90120000-0020-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Safari (HKLM\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Seznam Software (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\SeznamInstall) (Version: 2.1.29 - Seznam.cz)
Squark for Windows (HKLM\...\Squark for Windows) (Version: - )
Stellarium 0.13.0 (HKLM\...\Stellarium_is1) (Version: 0.13.0 - Stellarium team)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1236 - SUPERAntiSpyware.com)
The lost Castle (HKLM\...\The lost Castle) (Version: - )
Treiber-Deinstallation (HKLM\...\Treiber5_is1) (Version: Version 5.0 - Andreas Huber)
TUGZip 3.4 (HKLM\...\TUGZip_is1) (Version: - Christian Kindahl)
VIA Platforma Ovladače zařízení (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
WebFldrs XP (HKLM\...\{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}) (Version: 9.50.7523 - Microsoft Corporation) Hidden
Widelands build9half (HKLM\...\Widelands_is1) (Version: build9half - Widelands Development Team)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Management Framework Core (HKLM\...\KB968930) (Version: - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - )
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 5.60 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH)
XingMPEG Player (HKLM\...\XingMPEG Player) (Version: - )
Základní software zařízení HP DeskJet 3700 series (HKLM\...\{AEC0E756-8BF5-4857-A2F7-03E72B6318B2}) (Version: 40.1.1032.61591 - HP Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{0713E8A2-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{0713E8D2-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{373FF7F0-EB8B-11CD-8820-08002B2F4F5A}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{58DA8D8A-9D6A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{58DA8D8F-9D6A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{612A8624-0FB3-11CE-8747-524153480004}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{648A5600-2C6E-101B-82B6-000000000014}\InprocServer32 -> C:\WINDOWS\system32\MSCOMM32.OCX (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{6B7E638F-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{97090E2F-3062-4459-855B-014F0D3CDBB1}\InprocServer32 -> C:\Program Files\Windows Desktop Search\deskbar.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{9ED94440-E5E8-101B-B9B5-444553540000}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-10-09] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-10-09] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-10-09] (Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2018-12-08] (AVAST Software)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers1: [Autodesk.DWF.ContextMenu] -> {6C18531F-CA85-45F7-8278-FF33CF0A5964} => C:\Program Files\Common Files\Autodesk Shared\DWF Common\DWFShellExtension.dll [2009-01-13] (Autodesk, Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2018-12-08] (AVAST Software)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x86.dll [2018-09-26] (Foxit Software Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2017-10-09] (Google)
ContextMenuHandlers1: [TzShell] -> {B38FE8E9-5DFC-4D58-8459-1E3AC5165E34} => C:\Program Files\TUGZip\TzShell.dll [2006-05-14] ()
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Documents and Settings\admin\Plocha\win rar 371cz\rarext.dll [2018-06-24] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2018-12-08] (AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2017-10-09] (Google)
ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\WINDOWS\system32\nvshell.dll [2009-03-28] ()
ContextMenuHandlers5: [NvCplDesktopContext] -> {A70C977A-BF00-412C-90B7-034C51DA2439} => C:\WINDOWS\system32\nvcpl.dll [2009-03-28] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2018-12-08] (AVAST Software)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x86.dll [2018-09-26] (Foxit Software Inc.)
ContextMenuHandlers6: [TzShell] -> {B38FE8E9-5DFC-4D58-8459-1E3AC5165E34} => C:\Program Files\TUGZip\TzShell.dll [2006-05-14] ()
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Documents and Settings\admin\Plocha\win rar 371cz\rarext.dll [2018-06-24] (Alexander Roshal)

==================== Scheduled Tasks=============================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_32_0_0_101_Plugin.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\Avast Emergency Update.job => C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe
Task: C:\WINDOWS\Tasks\Avast TUNEUP Update.job => C:\Program Files\AVAST Software\Avast Cleanup\TUNEUpdate.exe
Task: C:\WINDOWS\Tasks\CCleaner Update.job => C:\Program Files\CCleaner\CCUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->\\.\root\subscription:MSFT_UCScenarioControl.Name=\"Microsoft WMI Updating Consumer Scenario Control\"",Filter="\\.\root\subscription:__EventFilter.Name=\"Microsoft WMI Updating Consumer Scenario Control\":
WMI:subscription\__EventFilter->Microsoft WMI Updating Consumer Scenario Control:

Shortcut: C:\Documents and Settings\admin\Nabídka Start\Programy\Billiard Simulator\DarXide Games.lnk -> hxxp://www.darxidegames.co

==================== Loaded Modules (Whitelisted) ==============

2018-12-08 12:45 - 2018-12-08 12:45 - 000872152 _____ () C:\Program Files\Alwil Software\Avast5\anen.dll
2018-12-08 12:45 - 2018-12-08 12:45 - 000596696 _____ () C:\Program Files\Alwil Software\Avast5\streamback.dll
2018-12-08 12:45 - 2018-12-08 12:45 - 000496344 _____ () C:\Program Files\Alwil Software\Avast5\gui_cache.dll
2018-12-08 12:44 - 2018-12-08 12:44 - 000150744 _____ () C:\Program Files\Alwil Software\Avast5\hns_tools.dll
2018-12-08 12:45 - 2018-12-08 12:45 - 001112280 _____ () C:\Program Files\Alwil Software\Avast5\shepherdsync.dll
2018-12-11 18:23 - 2018-12-11 18:23 - 005786256 _____ () C:\Program Files\Alwil Software\Avast5\defs\18121106\algo.dll
2009-02-27 17:26 - 2001-10-28 16:42 - 000116224 _____ () C:\WINDOWS\system32\pdfcmnnt.dll
2009-02-27 17:20 - 2003-09-16 01:19 - 000010240 _____ () C:\WINDOWS\system32\virport.dll
2007-01-04 23:45 - 2002-07-04 09:38 - 000053248 _____ () C:\Program Files\ArcSoft\Software Suite\PhotoImpression\share\pihook.dll
2009-09-20 11:57 - 2006-05-14 12:03 - 000655360 _____ () C:\Program Files\TUGZip\TzShell.dll
2009-09-20 11:57 - 2005-09-05 19:52 - 001355776 _____ () C:\Program Files\TUGZip\Plugins\TzArchive10.tgp
2009-09-20 11:57 - 2003-08-29 22:51 - 000156160 _____ () C:\WINDOWS\system32\unrar3.dll
2009-09-20 11:57 - 2005-02-17 22:15 - 000077824 _____ () C:\Program Files\TUGZip\Plugins\TzImage10.tgp
2018-11-28 17:11 - 2018-11-28 17:11 - 000093136 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2018-01-12 21:24 - 2016-09-12 14:53 - 048936448 _____ () C:\Program Files\AVAST Software\Avast Cleanup\libcef.dll
2017-04-20 11:21 - 2017-04-20 11:22 - 048936448 _____ () C:\Program Files\Alwil Software\Avast5\libcef.dll
2004-08-18 13:00 - 2008-04-14 04:21 - 000014336 _____ () C:\WINDOWS\system32\msdmo.dll
2016-12-06 00:01 - 2016-09-06 11:00 - 005197312 _____ () C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\SwiftShader\3.3.0.1\libglesv2.dll
2016-12-06 00:01 - 2016-09-06 11:00 - 000147456 _____ () C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\SwiftShader\3.3.0.1\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{1a3e09be-1e45-494b-9174-d7385b45bbf5} => ""=""

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2004-08-18 13:00 - 2018-11-15 17:56 - 000000027 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1960408961-261478967-682003330-1004\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 10.78.196.1 - 10.109.255.254
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName3 -> C:\WINDOWS\system32\ipconf.tsp (Microsoft Corporation)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName4 -> C:\WINDOWS\system32\h323.tsp (Microsoft Corporation)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

DomainProfile\AuthorizedApplications: [C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe] => Enabled:Logitech Desktop Messenger
StandardProfile\AuthorizedApplications: [C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe] => Enabled:Logitech Desktop Messenger
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\admin\Plocha\Hry\Widelands\widelands.exe] => Enabled:widelands
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\admin\Plocha\Hry\Freeciv-2.0.8-gtk2\civserver.exe] => Enabled:civserver
StandardProfile\AuthorizedApplications: [C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe] => Enabled:Java(TM) Platform SE binary
StandardProfile\AuthorizedApplications: [C:\Program Files\Java\jre6\bin\javaw.exe] => Enabled:Java(TM) Platform SE binary
StandardProfile\AuthorizedApplications: [C:\Program Files\Google\Google Earth\plugin\geplugin.exe] => Enabled:Google Earth
StandardProfile\AuthorizedApplications: [C:\Program Files\Bonjour\mDNSResponder.exe] => Enabled:Bonjour Service
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\admin\Plocha\Hry\Ping-Pong\MainP.dat] => Disabled:fullrus
StandardProfile\AuthorizedApplications: [C:\Program Files\iTunes\iTunes.exe] => Enabled:iTunes
StandardProfile\AuthorizedApplications: [C:\Program Files\Google\Chrome\Application\chrome.exe] => Enabled:Google Chrome
StandardProfile\AuthorizedApplications: [C:\Program Files\HP\HP DeskJet 3700 series\Bin\DeviceSetup.exe] => :LocalSubNet:Enabled:Instalace zařízení HP (HP DeskJet 3700 series)
StandardProfile\AuthorizedApplications: [C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPNetworkCommunicatorCom.exe] => :LocalSubNet:Enabled:Síťový komunikační program HP COM (HP DeskJet 3700 series)
StandardProfile\AuthorizedApplications: [C:\Program Files\Mozilla Firefox\firefox.exe] => Enabled:Firefox (C:\Program Files\Mozilla Firefox)
StandardProfile\AuthorizedApplications: [C:\Program Files\CCleaner\CCUpdate.exe] => Enabled:CCleaner Update
StandardProfile\AuthorizedApplications: [C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe] => Enabled:Avast Emergency Update
StandardProfile\GloballyOpenPorts: [5357:TCP] => Enabled:WS-Eventing TCP Port 5357
StandardProfile\GloballyOpenPorts: [5985:TCP] => Disabled:Vzdálená správa systému Windows
StandardProfile\GloballyOpenPorts: [80:TCP] => Disabled:Vzdálená správa systému Windows – režim kompatibility (HTTP-In)

==================== Restore Points =========================

21-11-2018 18:08:56 Kontrolní bod systému
22-11-2018 18:11:42 Kontrolní bod systému
24-11-2018 13:45:50 Kontrolní bod systému
25-11-2018 19:07:57 Kontrolní bod systému
26-11-2018 22:15:41 Kontrolní bod systému
28-11-2018 15:34:21 Kontrolní bod systému
29-11-2018 16:26:32 Kontrolní bod systému
30-11-2018 19:48:13 Kontrolní bod systému
02-12-2018 22:55:29 Kontrolní bod systému
03-12-2018 23:47:19 Kontrolní bod systému
05-12-2018 02:13:50 Kontrolní bod systému
06-12-2018 20:34:00 Kontrolní bod systému
08-12-2018 12:54:55 Installed Windows XP Wdf01009.
09-12-2018 18:03:14 Kontrolní bod systému
10-12-2018 18:10:08 Kontrolní bod systému

==================== Faulty Device Manager Devices =============

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/10/2018 06:52:55 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace BecherTrain.exe, verze 0.0.0.0, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (12/08/2018 12:51:51 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Načtení automatické aktualizace pořadového čísla kořenového seznamu jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt> se nezdařilo. Chyba: Zvolený server nemůže provést požadovanou operaci.

Error: (12/08/2018 12:51:50 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Načtení automatické aktualizace pořadového čísla kořenového seznamu jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt> se nezdařilo. Chyba: Daná operace se vrátila, protože vypršel časový limit.

Error: (12/01/2018 02:46:33 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Načtení automatické aktualizace pořadového čísla kořenového seznamu jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt> se nezdařilo. Chyba: Daná operace se vrátila, protože vypršel časový limit.

Error: (11/17/2018 08:12:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace plugin-container.exe, verze 52.9.0.6746, chybující modul mozglue.dll, verze 52.9.0.6746, adresa chyby 0x0000fb33.
Zpracování události, specifické pro médium ([plugin-container.exe!ws!])

Error: (10/28/2018 09:56:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace TuneupUI.exe, verze 18.2.5796.0, chybující modul unknown, verze 0.0.0.0, adresa chyby 0x6e6f6974.
Zpracování události, specifické pro médium ([TuneupUI.exe!ws!])

Error: (10/23/2018 06:34:00 AM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.

Error: (10/23/2018 06:31:49 AM) (Source: crypt32) (EventID: 8) (User: )
Description: Načtení automatické aktualizace pořadového čísla kořenového seznamu jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt> se nezdařilo. Chyba: Zvolený server nemůže provést požadovanou operaci.


System errors:
=============
Error: (12/11/2018 09:31:16 AM) (Source: 0) (EventID: 1) (User: )
Description: Event-ID 1

Error: (12/10/2018 07:06:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Zařazování tisku byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/10/2018 03:21:47 PM) (Source: 0) (EventID: 1) (User: )
Description: Event-ID 1

Error: (12/10/2018 06:35:41 AM) (Source: 0) (EventID: 1) (User: )
Description: Event-ID 1

Error: (12/09/2018 06:58:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Zařazování tisku byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/09/2018 01:29:56 PM) (Source: 0) (EventID: 1) (User: )
Description: Event-ID 1

Error: (12/08/2018 06:46:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Zařazování tisku byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/08/2018 12:57:49 PM) (Source: 0) (EventID: 1) (User: )
Description: Event-ID 1


==================== Memory info ===========================

Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 3800+
Percentage of memory in use: 83%
Total physical RAM: 895.23 MB
Available physical RAM: 152.08 MB
Total Virtual: 2166.3 MB
Available Virtual: 833.2 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:186.3 GB) (Free:147.7 GB) NTFS ==>[drive with boot components (Windows XP)]


==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 186.3 GB) (Disk ID: 1AE61AE5)
Partition 1: (Active) - (Size=186.3 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Re: SuperAntiSypware free edition našel PUP.SlimWare/Variant

Napsal: 11 pro 2018 21:01
od Rudy
Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: SuperAntiSypware free edition našel PUP.SlimWare/Variant

Napsal: 11 pro 2018 22:25
od TomášzePlzně
Také zdravím.
Bohužel adwcleaner nelze spustit.
Tedy konkrétně cituji: „Aplikace nemohla být spuštěna, protože součást dwmapi.dll nelze najít. Potíže pravděpodobně odstraníte opětovnou instalací aplikace.”
Zkoušel jsem to stáhnout už z obou Vámi zadaných odkazů a zkusil jsem i stáhnout betaverzi ze druhého odkazu - bohužel pořád mi to tam píše tohle a nespustí se to.

Re: SuperAntiSypware free edition našel PUP.SlimWare/Variant

Napsal: 12 pro 2018 10:27
od Rudy
OK. Odinstalujte a zkuste tuto verzi: https://adwcleaner.en.uptodown.com/wind ... oad/283819 . Přehlédl jsem, že máte XP a na nich nové verze nefungují.

Re: SuperAntiSypware free edition našel PUP.SlimWare/Variant

Napsal: 12 pro 2018 12:07
od TomášzePlzně
Tady je ten log
# AdwCleaner v5.009 - Logfile created 12/12/2018 at 11:48:52
# Updated 27/09/2015 by Xplode
# Database : 2015-09-27.1 [Local]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : admin - AMD3000
# Running from : C:\Documents and Settings\admin\Plocha\adwcleaner-5-009-multi-win.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : swdumon

***** [ Folders ] *****


***** [ Files ] *****

[-] File Deleted : C:\WINDOWS\system32\drivers\swdumon.sys

***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{81CA8FCD-1420-4A07-B47D-B30F3DDA79E1}
[-] Key Deleted : HKLM\SOFTWARE\SlimWare Utilities Inc
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\softwareupdate.exe

***** [ Web browsers ] *****


*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1123 bytes] ##########

Re: SuperAntiSypware free edition našel PUP.SlimWare/Variant

Napsal: 12 pro 2018 15:28
od Rudy
OK. Dejte nové logy FRST+Addition.

Re: SuperAntiSypware free edition našel PUP.SlimWare/Variant

Napsal: 12 pro 2018 15:39
od TomášzePlzně
Takže nový log FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09.12.2018
Ran by admin (administrator) on AMD3000 (12-12-2018 15:33:17)
Running from C:\Documents and Settings\admin\Plocha
Loaded Profiles: admin (Available Profiles: admin & Administrator)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\afwServ.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\aswidsagent.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(AVAST Software) C:\Program Files\Avast Driver Updater\Avast Driver Updater.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Easy-PrintToolBox] => C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE [409600 2004-01-14] (CANON INC.)
HKLM\...\Run: [AppleSyncNotifier] => C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-11-02] (Apple Inc.)
HKLM\...\Run: [HDAudDeck] => C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe [33718272 2009-12-03] (VIA Technologies, Inc.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-03-20] (Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvLaunch.exe [242392 2018-12-08] (AVAST Software)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157456 2015-09-12] (Apple Inc.)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7765936 2018-11-04] (SUPERAntiSpyware)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\Run: [Avast Driver Updater] => C:\Program Files\Avast Driver Updater\Avast Driver Updater.exe [30443544 2018-07-18] (AVAST Software)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [14614416 2018-11-28] (Piriform Software Ltd)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssmyst.scr [18944 2008-04-14] (Microsoft Corporation)
IFEO\bootsafe.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\foxitreader.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\itunes.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\runsas.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\superantispyware.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\unins000.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\unins001.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-07] (SuperAdBlocker.com)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
Startup: C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\Sledování výstrah kazety - .lnk [2018-08-02]
ShortcutTarget: Sledování výstrah kazety - .lnk -> C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPStatusBL.dll (HP Inc.)
Startup: C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\Sledování výstrah kazety - HP DeskJet 3700 series.lnk [2018-12-12]
ShortcutTarget: Sledování výstrah kazety - HP DeskJet 3700 series.lnk -> C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPStatusBL.dll (HP Inc.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Avast Cleanup Premium.lnk [2018-01-12]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Logitech SetPoint.lnk [2006-08-15]
ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\KEM.exe (Logitech Inc.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\LUMIX Simple Viewer.lnk [2006-09-07]
ShortcutTarget: LUMIX Simple Viewer.lnk -> C:\Program Files\Panasonic\LUMIXSimpleViewer\PhLeAutoRun.exe (Matsushita Electric Industrial Co., Ltd.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk [2006-08-19]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk [2018-07-31]
ShortcutTarget: Windows Search.lnk -> C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.78.196.1 10.109.255.254
Tcpip\..\Interfaces\{2FDA8468-9903-465E-A322-3F9280AF4983}: [DhcpNameServer] 10.78.196.1 10.109.255.254

Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-1960408961-261478967-682003330-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2008-04-14] (Společnost Microsoft)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll [2007-11-08] (Logitech Inc.)

FireFox:
========
FF ProfilePath: C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\8faakgqr.default-1483643606250 [2018-12-12]
FF Extension: (Avast Passwords) - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\8faakgqr.default-1483643606250\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2018-11-14]
FF Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\8faakgqr.default-1483643606250\Extensions\sp@avast.com.xpi [2018-11-14]
FF Extension: (Avast Online Security) - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\8faakgqr.default-1483643606250\Extensions\wrc@avast.com.xpi [2018-07-05]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2015-01-18] [Legacy] [not signed]
FF HKLM\...\Firefox\Extensions: [jid1-r1tDuNiNb4SEww@jetpack] - C:\Program Files\Alwil Software\Avast5\pam\FF => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_32_0_0_101.dll [2018-12-05] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-09-04] ()
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Corporation)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-09-09]
FF ExtraCheck: C:\Program Files\mozilla firefox\Nastavenia.cfg [2004-12-31] <==== ATTENTION

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default [2018-12-12]
CHR Extension: (Seznam doplněk - Email) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2018-11-24]
CHR Extension: (Avast Passwords) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2018-12-11]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-11-17]
CHR Extension: (Avast Online Security) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-09-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Seznam doplněk - Esko) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-11-24]
CHR HKLM\...\Chrome\Extension: [emhginjpijfggbofeediiojmdlmlkoik] - C:\Program Files\Alwil Software\Avast5\pam\Chrome\pam.crx <not found>
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKU\S-1-5-21-1960408961-261478967-682003330-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1960408961-261478967-682003330-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [143776 2017-01-31] (SUPERAntiSpyware.com)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-12-05] (Adobe Systems Incorporated) [File not signed]
R3 aswbIDSAgent; C:\Program Files\Alwil Software\Avast5\aswidsagent.exe [6799632 2018-12-08] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [324000 2018-12-08] (AVAST Software)
R2 avast! Firewall; C:\Program Files\Alwil Software\Avast5\afwServ.exe [338632 2018-12-08] (AVAST Software)
R2 CleanupPSvc; C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe [9121248 2018-11-01] (AVAST Software)
S4 FoxitReaderService; C:\Program Files\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1659456 2018-04-17] (Foxit Software Inc.)
S4 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2005-12-18] (Hewlett-Packard Company) [File not signed]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 acedrv11; C:\WINDOWS\system32\drivers\acedrv11.sys [501560 2008-01-23] (Protect Software GmbH)
R3 Afc; C:\WINDOWS\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.) [File not signed]
S3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [3964736 2006-05-10] (Realtek Semiconductor Corp.)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1656960 2009-06-26] (Creative)
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [36352 2005-03-09] (Advanced Micro Devices)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [167480 2018-12-08] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriverx.sys [188976 2018-12-08] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidshx.sys [165384 2018-12-08] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblogx.sys [284256 2018-12-08] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbunivx.sys [57904 2018-12-08] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [42736 2018-12-08] (AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [40688 2018-12-08] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [135200 2018-12-08] (AVAST Software)
R0 aswNdis; C:\WINDOWS\System32\DRIVERS\aswNdis.sys [12112 2017-04-20] (ALWIL Software)
R0 aswNdis2; C:\WINDOWS\System32\drivers\aswNdis2.sys [332280 2018-12-08] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr.sys [70640 2018-12-08] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [72800 2018-12-08] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [784560 2018-12-08] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [397992 2018-12-08] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\System32\drivers\aswStmXP.sys [146584 2018-12-08] (AVAST Software)
S3 aswTap; C:\WINDOWS\System32\DRIVERS\aswTap.sys [35144 2014-07-11] (The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [310200 2018-12-08] (AVAST Software)
S3 irsir; C:\WINDOWS\System32\DRIVERS\irsir.sys [18688 2001-08-17] (Microsoft Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1389056 2008-12-02] (Creative Technology Ltd.)
R0 nvata; C:\WINDOWS\System32\DRIVERS\nvata.sys [105344 2006-08-21] (NVIDIA Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [54400 2008-03-25] (NVIDIA Corporation)
R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [145952 2008-08-18] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [22016 2008-03-25] (NVIDIA Corporation)
R3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [21248 2003-09-20] (Padus, Inc.) [File not signed]
R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2010-03-25] (Avira GmbH)
S3 SWDUMon; C:\WINDOWS\System32\DRIVERS\SWDUMon.sys [22728 2018-12-12] (SlimWare Utilities, Inc.)
S3 taphss; C:\WINDOWS\System32\DRIVERS\taphss.sys [32768 2012-03-26] (AnchorFree Inc)
R3 VIAHdAudAddService; C:\WINDOWS\System32\drivers\viahduaa.sys [1617408 2009-11-25] (VIA Technologies, Inc.)
S4 IntelIde; no ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U3 TlntSvr; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-12-12 11:46 - 2018-12-12 11:48 - 000000000 ____D C:\AdwCleaner
2018-12-12 11:43 - 2018-12-12 11:44 - 001670656 _____ C:\Documents and Settings\admin\Plocha\adwcleaner-5-009-multi-win.exe
2018-12-11 20:08 - 2018-12-11 20:10 - 000043880 _____ C:\Documents and Settings\admin\Plocha\Addition.txt
2018-12-11 20:06 - 2018-12-12 15:34 - 000018412 _____ C:\Documents and Settings\admin\Plocha\FRST.txt
2018-12-11 20:05 - 2018-12-12 15:33 - 000000000 ____D C:\FRST
2018-12-11 20:00 - 2018-12-11 20:01 - 001776640 _____ (Farbar) C:\Documents and Settings\admin\Plocha\FRST.exe
2018-12-11 00:13 - 2018-12-11 00:13 - 000000748 _____ C:\Documents and Settings\All Users\Plocha\Jízdní řád ČD 2019.lnk
2018-12-11 00:12 - 2018-12-11 00:12 - 000000000 ____D C:\Documents and Settings\admin\Plocha\JR2019
2018-12-08 12:46 - 2018-12-08 12:45 - 000323288 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2018-11-30 13:07 - 2018-11-30 13:08 - 018177128 _____ (Piriform Software Ltd) C:\Documents and Settings\admin\Plocha\ccsetup550.exe
2018-11-22 13:48 - 2018-12-12 11:07 - 000177856 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-11-21 19:57 - 2018-11-21 19:57 - 000000000 __SHD C:\Documents and Settings\admin\IECompatCache

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-12-12 15:34 - 2013-02-10 15:57 - 000000000 ____D C:\Documents and Settings\admin\Local Settings\temp
2018-12-12 15:31 - 2016-05-29 11:14 - 000000000 ____D C:\Documents and Settings\admin\Local Settings\Data aplikací\AVAST Software
2018-12-12 14:58 - 2015-07-16 19:43 - 000000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2018-12-12 14:45 - 2017-08-02 00:36 - 000000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2018-12-12 13:09 - 2017-10-24 21:27 - 000000280 ____H C:\WINDOWS\Tasks\CCleaner Update.job
2018-12-12 12:49 - 2017-04-20 11:23 - 000000360 ____H C:\WINDOWS\Tasks\Avast Emergency Update.job
2018-12-12 12:05 - 2017-02-27 23:24 - 000000774 _____ C:\Documents and Settings\All Users\Plocha\Mozilla Thunderbird.lnk
2018-12-12 12:05 - 2016-05-29 11:06 - 000000780 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Mozilla Thunderbird.lnk
2018-12-12 12:05 - 2012-05-24 12:15 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-12-12 12:04 - 2018-02-26 20:00 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2018-12-12 11:53 - 2018-05-17 10:58 - 000022728 _____ (SlimWare Utilities, Inc.) C:\WINDOWS\system32\Drivers\SWDUMon.sys
2018-12-12 11:53 - 2015-07-16 19:43 - 000000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2018-12-12 11:51 - 2018-01-12 21:24 - 000000372 ____H C:\WINDOWS\Tasks\Avast TUNEUP Update.job
2018-12-12 11:51 - 2006-08-15 19:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-12-12 11:50 - 2006-08-15 19:55 - 000000178 ___SH C:\Documents and Settings\admin\ntuser.ini
2018-12-12 11:50 - 2006-08-15 19:55 - 000000000 ____D C:\Documents and Settings\admin
2018-12-12 11:50 - 2006-08-15 19:54 - 000032376 _____ C:\WINDOWS\SchedLgU.Txt
2018-12-12 11:44 - 2006-08-15 19:55 - 000000000 ____D C:\Documents and Settings\admin\Plocha
2018-12-12 11:09 - 2006-08-15 19:55 - 000000000 ___HD C:\Documents and Settings\admin\Local Settings\Data aplikací
2018-12-12 11:07 - 2004-08-18 13:00 - 000011936 _____ C:\WINDOWS\system32\wpa.dbl
2018-12-11 15:15 - 2010-02-19 23:26 - 000000000 ____D C:\Documents and Settings\admin\Plocha\Jízdní řád ČD
2018-12-11 00:13 - 2015-01-09 20:32 - 000000616 _____ C:\Documents and Settings\All Users\Plocha\Jízdní řád ČD výběr jízdních řádů.lnk
2018-12-11 00:13 - 2010-02-19 23:26 - 000000000 ____D C:\Documents and Settings\admin\Nabídka Start\Programy\Jízdní řád ČD
2018-12-11 00:13 - 2010-02-19 23:26 - 000000000 ____D C:\Documents and Settings\admin\Data aplikací\Jízdní řád ČD
2018-12-11 00:13 - 2006-08-15 21:41 - 000000000 ____D C:\Documents and Settings\All Users\Plocha
2018-12-08 21:26 - 2018-03-13 18:45 - 000000946 _____ C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job
2018-12-08 21:26 - 2006-08-15 19:49 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-12-08 12:54 - 2006-08-15 21:33 - 000000000 ___HD C:\WINDOWS\inf
2018-12-08 12:50 - 2017-04-20 11:23 - 000332280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdis2.sys
2018-12-08 12:45 - 2018-10-23 06:29 - 000040688 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2018-12-08 12:45 - 2017-11-09 04:36 - 000167480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2018-12-08 12:45 - 2015-07-31 18:42 - 000146584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStmXP.sys
2018-12-08 12:45 - 2014-05-06 14:05 - 000042736 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2018-12-08 12:45 - 2013-02-28 14:23 - 000310200 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2018-12-08 12:45 - 2013-02-28 14:23 - 000135200 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-12-08 12:45 - 2013-02-28 14:23 - 000072800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2018-12-08 12:45 - 2012-08-13 16:22 - 000784560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2018-12-08 12:45 - 2012-08-09 12:29 - 000397992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-12-08 12:45 - 2012-08-09 12:29 - 000070640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2018-12-08 12:44 - 2017-04-20 11:23 - 000284256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblogx.sys
2018-12-08 12:44 - 2017-04-20 11:23 - 000188976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
2018-12-08 12:44 - 2017-04-20 11:23 - 000165384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidshx.sys
2018-12-08 12:44 - 2017-04-20 11:23 - 000057904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbunivx.sys
2018-12-05 18:45 - 2017-08-02 00:36 - 000842240 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2018-12-05 18:45 - 2017-08-02 00:36 - 000175104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2018-11-30 16:47 - 2006-08-15 21:41 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy
2018-11-30 16:47 - 2006-08-15 19:48 - 000000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Hry
2018-11-30 13:09 - 2014-12-03 23:30 - 000000682 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2018-11-30 13:08 - 2011-01-08 00:22 - 000000000 ____D C:\Documents and Settings\admin\Dokumenty\Stažené soubory
2018-11-24 13:24 - 2006-08-19 18:12 - 000002545 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Word.lnk
2018-11-17 06:55 - 2017-11-16 21:55 - 000000000 ____D C:\Documents and Settings\admin\Plocha\Debility

==================== Files in the root of some directories =======

2006-08-19 17:20 - 2012-03-13 13:49 - 000018432 _____ () C:\Documents and Settings\admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-08-02 15:38 - 2018-08-02 15:38 - 000000125 _____ () C:\Documents and Settings\admin\Local Settings\Data aplikací\fusioncache.dat
2007-09-22 10:55 - 2007-09-22 10:55 - 000000305 _____ () C:\Documents and Settings\All Users\Data aplikací\addr_file.html

Some files in TEMP:
====================
2015-08-14 13:29 - 2015-07-29 21:08 - 000681097 _____ (SQLite Development Team) C:\Documents and Settings\admin\Local Settings\temp\sqlite3.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

A tady je Addition.txt

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 09.12.2018
Ran by admin (12-12-2018 15:35:03)
Running from C:\Documents and Settings\admin\Plocha
Microsoft Windows XP Home Edition Service Pack 3 (X86) (2006-08-15 18:52:46)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

admin (S-1-5-21-1960408961-261478967-682003330-1004 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\admin
Administrator (S-1-5-21-1960408961-261478967-682003330-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator
ASPNET (S-1-5-21-1960408961-261478967-682003330-1191 - Limited - Enabled)
Guest (S-1-5-21-1960408961-261478967-682003330-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-1960408961-261478967-682003330-1000 - Limited - Disabled)
SUPPORT_388945a0 (S-1-5-21-1960408961-261478967-682003330-1002 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {7591db91-41f0-48a3-b128-1a293fd8233d}
FW: Avast Antivirus (Disabled) {7591db91-41f0-48a3-b128-1a293fd8233d}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 18.05 (HKLM\...\{23170F69-40C1-2701-1805-000001000000}) (Version: 18.05.00.0 - Igor Pavlov)
7-Zip 9.22beta (HKLM\...\7-Zip) (Version: - )
Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated)
Aktualizace systému Windows Internet Explorer 7 (KB976749) (HKLM\...\KB976749-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace systému Windows Internet Explorer 7 (KB980182) (HKLM\...\KB980182-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení aplikace Windows Media Player (KB911564) (HKLM\...\KB911564) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení aplikace Windows Media Player 6.4 (KB925398) (HKLM\...\KB925398_WMP64) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player 9 (KB936782) (HKLM\...\KB936782_WMP9) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení produktu Windows XP (KB923689) (HKLM\...\KB923689) (Version: - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2183461) (HKLM\...\KB2183461-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2360131) (HKLM\...\KB2360131-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2416400) (HKLM\...\KB2416400-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2482017) (HKLM\...\KB2482017-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2497640) (HKLM\...\KB2497640-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2530548) (HKLM\...\KB2530548-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2544521) (HKLM\...\KB2544521-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2559049) (HKLM\...\KB2559049-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2586448) (HKLM\...\KB2586448-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2618444) (HKLM\...\KB2618444-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2647516) (HKLM\...\KB2647516-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2675157) (HKLM\...\KB2675157-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2699988) (HKLM\...\KB2699988-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2722913) (HKLM\...\KB2722913-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2744842) (HKLM\...\KB2744842-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2761465) (HKLM\...\KB2761465-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2792100) (HKLM\...\KB2792100-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2797052) (HKLM\...\KB2797052-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2799329) (HKLM\...\KB2799329-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2809289) (HKLM\...\KB2809289-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2817183) (HKLM\...\KB2817183-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2829530) (HKLM\...\KB2829530-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2838727) (HKLM\...\KB2838727-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2846071) (HKLM\...\KB2846071-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2862772) (HKLM\...\KB2862772-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2870699) (HKLM\...\KB2870699-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2879017) (HKLM\...\KB2879017-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2888505) (HKLM\...\KB2888505-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2898785) (HKLM\...\KB2898785-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2909921) (HKLM\...\KB2909921-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2925418) (HKLM\...\KB2925418-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2936068) (HKLM\...\KB2936068-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2964358) (HKLM\...\KB2964358-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB938127) (HKLM\...\KB938127-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB939653) (HKLM\...\KB939653-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB942615) (HKLM\...\KB942615-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB944533) (HKLM\...\KB944533-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB950759) (HKLM\...\KB950759-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB953838) (HKLM\...\KB953838-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB956390) (HKLM\...\KB956390-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB958215) (HKLM\...\KB958215-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB960714) (HKLM\...\KB960714-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB961260) (HKLM\...\KB961260-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB963027) (HKLM\...\KB963027-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB969897) (HKLM\...\KB969897-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB972260) (HKLM\...\KB972260-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB974455) (HKLM\...\KB974455-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB976325) (HKLM\...\KB976325-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB978207) (HKLM\...\KB978207-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB982381) (HKLM\...\KB982381-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2909921) (HKLM\...\KB2909921-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB923789) (HKLM\...\KB923789) (Version: - Microsoft Corporation)
Apple Mobile Device Support (HKLM\...\{E1DB0812-2D60-43DB-AE09-6C7027D93B28}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
ArcSoft Software Suite (HKLM\...\{9E397B40-13F7-4CA2-9943-ADB29ACBBFDF}) (Version: - )
Australian Rugby League (HKLM\...\Australian Rugby League_is1) (Version: - GameFabrique)
Autodesk Design Review 2010 (HKLM\...\{55D9E026-DCB0-46FF-B60A-68B972228CF6}) (Version: 10.0.0.108 - Autodesk, Inc.) Hidden
Autodesk Design Review 2010 (HKLM\...\Autodesk Design Review 2010) (Version: 10.0.0.108 - Autodesk, Inc.)
Avast Driver Updater (HKLM\...\{984D8789-07A6-4CD8-9766-35408C67395D}) (Version: 2.4.0 - AVAST Software) Hidden
Avast Driver Updater (HKLM\...\Avast Driver Updater) (Version: 2.4.0 - AVAST Software)
Avast Premier (HKLM\...\Avast Antivirus) (Version: 18.8.2356 - AVAST Software)
Balíček zprostředkovatele služby Microsoft Base Smart Card Cryptographic Service (HKLM\...\KB909520) (Version: - Microsoft Corporation)
Beetle Run for Windows (HKLM\...\Beetle Run for Windows) (Version: - )
Becher Train (HKLM\...\Becher Train_is1) (Version: - )
Bermen 1.1 (HKLM\...\Bermen_is1) (Version: - Island software)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BVE Uchibo Line (HKLM\...\{9BD8D527-A96C-46DB-B076-48D34189B372}) (Version: 2.0.1 - mackoy)
Canon iP4200 (HKLM\...\CANONBJ_Deinstall_CNMCP78.DLL) (Version: - )
Canon Setup Utility 2.0 (HKLM\...\Canon Setup Utility 2.0) (Version: - )
Canon Utilities Easy-PhotoPrint (HKLM\...\Easy-PhotoPrint) (Version: - )
Canon Utilities Easy-PrintToolBox (HKLM\...\Easy-PrintToolBox) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.50 - Piriform)
CD-LabelPrint (HKLM\...\MediaNavigation.CDLabelPrint) (Version: - )
Celestia 1.6.1 (HKLM\...\Celestia_is1) (Version: - Shatters Software)
City Life (HKLM\...\{2FA56ACE-753E-A934-1D7F-9ABD5E561CC4}) (Version: 1.2.0.0 - Monte Cristo)
Czech Soccer Manager (HKLM\...\Czech Soccer Manager) (Version: - )
Czech Soccer Manager 2000 (HKLM\...\Czech Soccer Manager 2000verze 3.0 FINAL (1.7.2000)) (Version: verze 3.0 FINAL (1.7.2000) - Petr Vašíček)
Czech Soccer Manager 2001 (HKLM\...\Czech Soccer Manager 2001) (Version: - )
Czech Soccer Manager 2002 (HKLM\...\Czech Soccer Manager 2002) (Version: - )
Czech Soccer Manager 2002 FE (HKLM\...\Czech Soccer Manager 2002 FE) (Version: - )
Czech Soccer Manager 2002 Final Edition (HKLM\...\Czech Soccer Manager 2002 Final Edition) (Version: - )
Czech Soccer Manager 2002 Final Edition (HKLM\...\Czech Soccer Manager 2002 Final Editionverze 4.0 (31.3.2006)) (Version: verze 4.0 (31.3.2006) - Petr Vašíček)
Czech Soccer Manager 99 (HKLM\...\Czech Soccer Manager 99verze 5.2 FINAL (7.7.1999)) (Version: verze 5.2 FINAL (7.7.1999) - Petr Vašíček)
DemonStar (HKLM\...\DemonStarDeinstKey) (Version: - )
Easy-WebPrint (HKLM\...\Easy-WebPrint) (Version: - )
ECSP MHD Simulator 2007 (HKLM\...\ECSP MHD Simulator 2007) (Version: - )
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - )
Flaps for Windows (HKLM\...\Flaps for Windows) (Version: - )
Football Challenge 2010 (PL) (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\fc10-PL_TVP_MAIN) (Version: - )
Foxit Reader (HKLM\...\Foxit Reader_is1) (Version: 9.3.0.10826 - Foxit Software Inc.)
Free Mp3/Wma/Ogg Converter 4.0.1 (HKLM\...\Free Mp3/Wma/Ogg Converter_is1) (Version: - )
Free PDF to Word Doc Converter v1.1 (HKLM\...\Free PDF to Word Doc Converter_is1) (Version: 1.1 - www.hellopdf.com)
Freeciv 2.0.8 (GTK+ client) (HKLM\...\Freeciv-2.0.8-gtk2) (Version: - )
Frog Hop for Windows (HKLM\...\Frog Hop for Windows ) (Version: - )
Fussball Challenge 2008 (ORF) (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\fc08-AT_ORF_MAIN) (Version: - )
Garmin Communicator Plugin (HKLM\...\{647BB978-2876-487B-9B0E-FDB73F0EA4A2}) (Version: 4.0.4 - Garmin Ltd or its subsidiaries)
Google Drive (HKLM\...\{AC117AF9-316B-4E1D-959E-F0EB85B0DC5F}) (Version: 2.34.7100.0000 - Google, Inc.)
Google Earth Plug-in (HKLM\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HP DeskJet 3700 series Nápověda (HKLM\...\{295D0212-82EF-4A9B-9523-754A430DE721}) (Version: 40.0.0 - HP)
HP Dropbox Plugin (HKLM\...\{0078F518-B5B5-4857-8939-199E752A4190}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM\...\{F260117F-45E4-483E-B10F-C80224558C4D}) (Version: 36.0.41.58587 - HP)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
iPhone Configuration Utility (HKLM\...\{FA54AFB1-5745-4389-B8C1-9F7509672ED1}) (Version: 2.1.0.163 - Apple Inc.)
iTunes (HKLM\...\{868B9974-4F23-494D-B6BC-4FAB92B2755D}) (Version: 12.1.3.6 - Apple Inc.)
Jízdní řád ČD 2019 (HKLM\...\{2FFA4F8E-8D11-4A0C-9C58-4BD03B51DDDA}_is1) (Version: - České dráhy a.s.)
Kat (HKLM\...\Kat) (Version: - )
Legie (HKLM\...\{FB86EDAA-B17D-447E-972B-5580A4C6AE3C}_is1) (Version: - Sudokop.com)
LightScribe 1.4.62.1 (HKLM\...\{ABB2901A-3D0A-4F21-8324-2F13C3EFE163}) (Version: 1.4.62.1 - hxxp://www.lightscribe.com) Hidden
Logitech Desktop Messenger (HKLM\...\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}) (Version: 2.52.18 - Logitech, Inc.)
Logitech SetPoint (HKLM\...\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}) (Version: 2.12 - )
LUMIX Simple Viewer (HKLM\...\{2CDCCE7E-55D5-40CC-AEA0-ABA54713501F}) (Version: 0.99.0000 - )
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 Czech Language Pack (HKLM\...\{5E65E94D-69F2-4850-9E93-6459C53A0F50}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - )
Microsoft .NET Framework 2.0 Language Pack - CSY (HKLM\...\Microsoft .NET Framework 2.0 Language Pack - CSY) (Version: - Microsoft Corporation)
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Office 2000 Professional (HKLM\...\{00010405-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2720 - Microsoft Corporation)
Microsoft Return of Arcade Trial Version (HKLM\...\Return of Arcade Trial) (Version: - )
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mini Golf Pro 1.1 (HKLM\...\Mini Golf Pro_is1) (Version: - S64 Games)
MobileMe Control Panel (HKLM\...\{710BF966-43C8-4216-A8EC-BC4E169FF7C1}) (Version: 3.1.8.0 - Apple Inc.)
Mozilla Firefox 52.9.0 ESR (x86 cs) (HKLM\...\Mozilla Firefox 52.9.0 ESR (x86 cs)) (Version: 52.9.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 38.5.0 - Mozilla)
Mozilla Thunderbird 38.5.0 (x86 cs) (HKLM\...\Mozilla Thunderbird 38.5.0 (x86 cs)) (Version: 38.5.0 - Mozilla)
Mrtvé město (HKLM\...\Mrtvé město_is1) (Version: - NiHiLiS)
Nero OEM (HKLM\...\Nero - Burning Rom!UninstallKey) (Version: - )
NSIS LHM2006 (remove only) (HKLM\...\LHM2006) (Version: - )
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.3 - NVIDIA Corporation)
Oilcap Pro for Windows (HKLM\...\Oilcap Pro for Windows) (Version: - )
OpenOffice.org 3.4.1 (HKLM\...\{1E0AF527-0B8E-4F8A-BA27-CB3C359998C6}) (Version: 3.41.9593 - Apache Software Foundation)
OpenTTD 1.5.3 (HKLM\...\OpenTTD) (Version: 1.5.3 - OpenTTD)
Oprava Hotfix systému Windows Internet Explorer 7 (KB947864) (HKLM\...\KB947864-IE7) (Version: 1 - Microsoft Corporation) Hidden
Oracle of Runes for Windows (HKLM\...\Oracle of Runes for Windows) (Version: - )
ORF-Ski Challenge 2008 (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\SC08-ORF_MAIN) (Version: - )
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 0.9.7 - Frank Heindörfer, Philip Chinery)
PHOTOfunSTUDIO -viewer- (HKLM\...\{9A9DBEBC-C800-4776-A970-D76D6AA405B1}) (Version: 1.00.000 - )
Ping-Pong (HKLM\...\Ping-Pong_is1) (Version: 1.0 - MyPlayCity, Inc.)
Pivot Stickfigure Animator (HKLM\...\{BEAD39CD-901D-4267-8B8B-EAA83CB4B70D}) (Version: 2.2.5 - Peter Bone)
Platform (HKLM\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Hidden
Podpora aplikací Apple (32bitová) (HKLM\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: - )
ProHockeyManager 2005 (HKLM\...\ProHockeyManager 2005) (Version: - )
ProtectDisc Driver, Version 11 (HKLM\...\ProtectDisc Driver 11) (Version: 11.0.0.10 - ProtectDisc Software GmbH)
QuickTime 7 (HKLM\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Real Bowling (HKLM\...\RealBowling_is1) (Version: 1.0 - Media Contact LLC)
Realtek AC'97 Audio (HKLM\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version: 5.23 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.6013 - Realtek Semiconductor Corp.)
Rugby World Cup 95 (HKLM\...\Rugby World Cup 95_is1) (Version: - GameFabrique)
Sada Compatibility Pack pro systém Office 2007 (HKLM\...\{90120000-0020-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Safari (HKLM\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Seznam Software (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\SeznamInstall) (Version: 2.1.29 - Seznam.cz)
Squark for Windows (HKLM\...\Squark for Windows) (Version: - )
Stellarium 0.13.0 (HKLM\...\Stellarium_is1) (Version: 0.13.0 - Stellarium team)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1236 - SUPERAntiSpyware.com)
The lost Castle (HKLM\...\The lost Castle) (Version: - )
Treiber-Deinstallation (HKLM\...\Treiber5_is1) (Version: Version 5.0 - Andreas Huber)
TUGZip 3.4 (HKLM\...\TUGZip_is1) (Version: - Christian Kindahl)
VIA Platforma Ovladače zařízení (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
WebFldrs XP (HKLM\...\{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}) (Version: 9.50.7523 - Microsoft Corporation) Hidden
Widelands build9half (HKLM\...\Widelands_is1) (Version: build9half - Widelands Development Team)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Management Framework Core (HKLM\...\KB968930) (Version: - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - )
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 5.60 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH)
XingMPEG Player (HKLM\...\XingMPEG Player) (Version: - )
Základní software zařízení HP DeskJet 3700 series (HKLM\...\{AEC0E756-8BF5-4857-A2F7-03E72B6318B2}) (Version: 40.1.1032.61591 - HP Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{0713E8A2-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{0713E8D2-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{373FF7F0-EB8B-11CD-8820-08002B2F4F5A}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{58DA8D8A-9D6A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{58DA8D8F-9D6A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{612A8624-0FB3-11CE-8747-524153480004}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{648A5600-2C6E-101B-82B6-000000000014}\InprocServer32 -> C:\WINDOWS\system32\MSCOMM32.OCX (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{6B7E638F-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{97090E2F-3062-4459-855B-014F0D3CDBB1}\InprocServer32 -> C:\Program Files\Windows Desktop Search\deskbar.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{9ED94440-E5E8-101B-B9B5-444553540000}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-10-09] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-10-09] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-10-09] (Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2018-12-08] (AVAST Software)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers1: [Autodesk.DWF.ContextMenu] -> {6C18531F-CA85-45F7-8278-FF33CF0A5964} => C:\Program Files\Common Files\Autodesk Shared\DWF Common\DWFShellExtension.dll [2009-01-13] (Autodesk, Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2018-12-08] (AVAST Software)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x86.dll [2018-09-26] (Foxit Software Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2017-10-09] (Google)
ContextMenuHandlers1: [TzShell] -> {B38FE8E9-5DFC-4D58-8459-1E3AC5165E34} => C:\Program Files\TUGZip\TzShell.dll [2006-05-14] ()
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Documents and Settings\admin\Plocha\win rar 371cz\rarext.dll [2018-06-24] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2018-12-08] (AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2017-10-09] (Google)
ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\WINDOWS\system32\nvshell.dll [2009-03-28] ()
ContextMenuHandlers5: [NvCplDesktopContext] -> {A70C977A-BF00-412C-90B7-034C51DA2439} => C:\WINDOWS\system32\nvcpl.dll [2009-03-28] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2018-12-08] (AVAST Software)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x86.dll [2018-09-26] (Foxit Software Inc.)
ContextMenuHandlers6: [TzShell] -> {B38FE8E9-5DFC-4D58-8459-1E3AC5165E34} => C:\Program Files\TUGZip\TzShell.dll [2006-05-14] ()
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Documents and Settings\admin\Plocha\win rar 371cz\rarext.dll [2018-06-24] (Alexander Roshal)

==================== Scheduled Tasks=============================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_32_0_0_101_Plugin.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\Avast Emergency Update.job => C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe
Task: C:\WINDOWS\Tasks\Avast TUNEUP Update.job => C:\Program Files\AVAST Software\Avast Cleanup\TUNEUpdate.exe
Task: C:\WINDOWS\Tasks\CCleaner Update.job => C:\Program Files\CCleaner\CCUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->\\.\root\subscription:MSFT_UCScenarioControl.Name=\"Microsoft WMI Updating Consumer Scenario Control\"",Filter="\\.\root\subscription:__EventFilter.Name=\"Microsoft WMI Updating Consumer Scenario Control\":
WMI:subscription\__EventFilter->Microsoft WMI Updating Consumer Scenario Control:

Shortcut: C:\Documents and Settings\admin\Nabídka Start\Programy\Billiard Simulator\DarXide Games.lnk -> hxxp://www.darxidegames.co

==================== Loaded Modules (Whitelisted) ==============

2018-12-08 12:45 - 2018-12-08 12:45 - 000872152 _____ () C:\Program Files\Alwil Software\Avast5\anen.dll
2018-12-08 12:45 - 2018-12-08 12:45 - 000596696 _____ () C:\Program Files\Alwil Software\Avast5\streamback.dll
2018-12-12 11:18 - 2018-12-12 11:19 - 005786256 _____ () C:\Program Files\Alwil Software\Avast5\defs\18121200\algo.dll
2018-12-08 12:45 - 2018-12-08 12:45 - 000496344 _____ () C:\Program Files\Alwil Software\Avast5\gui_cache.dll
2018-12-08 12:44 - 2018-12-08 12:44 - 000150744 _____ () C:\Program Files\Alwil Software\Avast5\hns_tools.dll
2018-12-08 12:45 - 2018-12-08 12:45 - 001112280 _____ () C:\Program Files\Alwil Software\Avast5\shepherdsync.dll
2009-02-27 17:26 - 2001-10-28 16:42 - 000116224 _____ () C:\WINDOWS\system32\pdfcmnnt.dll
2009-02-27 17:20 - 2003-09-16 01:19 - 000010240 _____ () C:\WINDOWS\system32\virport.dll
2007-01-04 23:45 - 2002-07-04 09:38 - 000053248 _____ () C:\Program Files\ArcSoft\Software Suite\PhotoImpression\share\pihook.dll
2017-04-20 11:21 - 2017-04-20 11:22 - 048936448 _____ () C:\Program Files\Alwil Software\Avast5\libcef.dll
2018-11-28 17:11 - 2018-11-28 17:11 - 000093136 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2018-01-12 21:24 - 2016-09-12 14:53 - 048936448 _____ () C:\Program Files\AVAST Software\Avast Cleanup\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{1a3e09be-1e45-494b-9174-d7385b45bbf5} => ""=""

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2004-08-18 13:00 - 2018-11-15 17:56 - 000000027 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1960408961-261478967-682003330-1004\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 10.78.196.1 - 10.109.255.254
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName3 -> C:\WINDOWS\system32\ipconf.tsp (Microsoft Corporation)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName4 -> C:\WINDOWS\system32\h323.tsp (Microsoft Corporation)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

DomainProfile\AuthorizedApplications: [C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe] => Enabled:Logitech Desktop Messenger
StandardProfile\AuthorizedApplications: [C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe] => Enabled:Logitech Desktop Messenger
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\admin\Plocha\Hry\Widelands\widelands.exe] => Enabled:widelands
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\admin\Plocha\Hry\Freeciv-2.0.8-gtk2\civserver.exe] => Enabled:civserver
StandardProfile\AuthorizedApplications: [C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe] => Enabled:Java(TM) Platform SE binary
StandardProfile\AuthorizedApplications: [C:\Program Files\Java\jre6\bin\javaw.exe] => Enabled:Java(TM) Platform SE binary
StandardProfile\AuthorizedApplications: [C:\Program Files\Google\Google Earth\plugin\geplugin.exe] => Enabled:Google Earth
StandardProfile\AuthorizedApplications: [C:\Program Files\Bonjour\mDNSResponder.exe] => Enabled:Bonjour Service
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\admin\Plocha\Hry\Ping-Pong\MainP.dat] => Disabled:fullrus
StandardProfile\AuthorizedApplications: [C:\Program Files\iTunes\iTunes.exe] => Enabled:iTunes
StandardProfile\AuthorizedApplications: [C:\Program Files\Google\Chrome\Application\chrome.exe] => Enabled:Google Chrome
StandardProfile\AuthorizedApplications: [C:\Program Files\HP\HP DeskJet 3700 series\Bin\DeviceSetup.exe] => :LocalSubNet:Enabled:Instalace zařízení HP (HP DeskJet 3700 series)
StandardProfile\AuthorizedApplications: [C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPNetworkCommunicatorCom.exe] => :LocalSubNet:Enabled:Síťový komunikační program HP COM (HP DeskJet 3700 series)
StandardProfile\AuthorizedApplications: [C:\Program Files\Mozilla Firefox\firefox.exe] => Enabled:Firefox (C:\Program Files\Mozilla Firefox)
StandardProfile\AuthorizedApplications: [C:\Program Files\CCleaner\CCUpdate.exe] => Enabled:CCleaner Update
StandardProfile\AuthorizedApplications: [C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe] => Enabled:Avast Emergency Update
StandardProfile\GloballyOpenPorts: [5357:TCP] => Enabled:WS-Eventing TCP Port 5357
StandardProfile\GloballyOpenPorts: [5985:TCP] => Disabled:Vzdálená správa systému Windows
StandardProfile\GloballyOpenPorts: [80:TCP] => Disabled:Vzdálená správa systému Windows – režim kompatibility (HTTP-In)

==================== Restore Points =========================

21-11-2018 18:08:56 Kontrolní bod systému
22-11-2018 18:11:42 Kontrolní bod systému
24-11-2018 13:45:50 Kontrolní bod systému
25-11-2018 19:07:57 Kontrolní bod systému
26-11-2018 22:15:41 Kontrolní bod systému
28-11-2018 15:34:21 Kontrolní bod systému
29-11-2018 16:26:32 Kontrolní bod systému
30-11-2018 19:48:13 Kontrolní bod systému
02-12-2018 22:55:29 Kontrolní bod systému
03-12-2018 23:47:19 Kontrolní bod systému
05-12-2018 02:13:50 Kontrolní bod systému
06-12-2018 20:34:00 Kontrolní bod systému
08-12-2018 12:54:55 Installed Windows XP Wdf01009.
09-12-2018 18:03:14 Kontrolní bod systému
10-12-2018 18:10:08 Kontrolní bod systému
12-12-2018 00:21:21 Kontrolní bod systému

==================== Faulty Device Manager Devices =============

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/10/2018 06:52:55 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace BecherTrain.exe, verze 0.0.0.0, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (12/08/2018 12:51:51 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Načtení automatické aktualizace pořadového čísla kořenového seznamu jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt> se nezdařilo. Chyba: Zvolený server nemůže provést požadovanou operaci.

Error: (12/08/2018 12:51:50 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Načtení automatické aktualizace pořadového čísla kořenového seznamu jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt> se nezdařilo. Chyba: Daná operace se vrátila, protože vypršel časový limit.

Error: (12/01/2018 02:46:33 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Načtení automatické aktualizace pořadového čísla kořenového seznamu jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt> se nezdařilo. Chyba: Daná operace se vrátila, protože vypršel časový limit.

Error: (11/17/2018 08:12:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace plugin-container.exe, verze 52.9.0.6746, chybující modul mozglue.dll, verze 52.9.0.6746, adresa chyby 0x0000fb33.
Zpracování události, specifické pro médium ([plugin-container.exe!ws!])

Error: (10/28/2018 09:56:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace TuneupUI.exe, verze 18.2.5796.0, chybující modul unknown, verze 0.0.0.0, adresa chyby 0x6e6f6974.
Zpracování události, specifické pro médium ([TuneupUI.exe!ws!])

Error: (10/23/2018 06:34:00 AM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.

Error: (10/23/2018 06:31:49 AM) (Source: crypt32) (EventID: 8) (User: )
Description: Načtení automatické aktualizace pořadového čísla kořenového seznamu jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt> se nezdařilo. Chyba: Zvolený server nemůže provést požadovanou operaci.


System errors:
=============
Error: (12/12/2018 11:51:45 AM) (Source: 0) (EventID: 1) (User: )
Description: Event-ID 1

Error: (12/12/2018 11:48:54 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Služba brány aplikačního rozhraní byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/12/2018 11:48:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (12/12/2018 11:48:52 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Avast Cleanup Premium byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.

Error: (12/12/2018 11:48:52 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Zařazování tisku byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/12/2018 11:08:20 AM) (Source: 0) (EventID: 1) (User: )
Description: Event-ID 1

Error: (12/12/2018 12:23:38 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Zařazování tisku byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/11/2018 09:31:16 AM) (Source: 0) (EventID: 1) (User: )
Description: Event-ID 1


==================== Memory info ===========================

Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 3800+
Percentage of memory in use: 46%
Total physical RAM: 895.23 MB
Available physical RAM: 481.72 MB
Total Virtual: 2166.3 MB
Available Virtual: 1465.95 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:186.3 GB) (Free:147.81 GB) NTFS ==>[drive with boot components (Windows XP)]


==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 186.3 GB) (Disk ID: 1AE61AE5)
Partition 1: (Active) - (Size=186.3 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Re: SuperAntiSypware free edition našel PUP.SlimWare/Variant

Napsal: 12 pro 2018 16:09
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
IFEO\bootsafe.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\foxitreader.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\itunes.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\runsas.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\superantispyware.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\unins000.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\unins001.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF HKLM\...\Firefox\Extensions: [jid1-r1tDuNiNb4SEww@jetpack] - C:\Program Files\Alwil Software\Avast5\pam\FF => not found
FF ExtraCheck: C:\Program Files\mozilla firefox\Nastavenia.cfg [2004-12-31] <==== ATTENTION
CHR HKLM\...\Chrome\Extension: [emhginjpijfggbofeediiojmdlmlkoik] - C:\Program Files\Alwil Software\Avast5\pam\Chrome\pam.crx <not found>
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx <not found>
S4 IntelIde; no ImagePath
U3 TlntSvr; no ImagePath
C:\Documents and Settings\admin\Local Settings\temp
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Documents and Settings\admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
StandardProfile\AuthorizedApplications: [C:\Program Files\Bonjour\mDNSResponder.exe] => Enabled:Bonjour Service

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: SuperAntiSypware free edition našel PUP.SlimWare/Variant

Napsal: 12 pro 2018 23:04
od TomášzePlzně
Po skončení akce se restartovalo pc a žádný log se neobjevil.

Re: SuperAntiSypware free edition našel PUP.SlimWare/Variant

Napsal: 13 pro 2018 10:41
od Rudy
V C:\Documents and Settings\admin\Plocha bude soubor fixlog.txt. To je on.

Re: SuperAntiSypware free edition našel PUP.SlimWare/Variant

Napsal: 13 pro 2018 10:55
od TomášzePlzně
Fix result of Farbar Recovery Scan Tool (x86) Version: 09.12.2018
Ran by admin (12-12-2018 22:41:26) Run:1
Running from C:\Documents and Settings\admin\Plocha
Loaded Profiles: admin (Available Profiles: admin & Administrator)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start

CloseProcesses:
IFEO\bootsafe.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\foxitreader.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\itunes.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\runsas.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\superantispyware.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\unins000.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\unins001.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF HKLM\...\Firefox\Extensions: [jid1-r1tDuNiNb4SEww@jetpack] - C:\Program Files\Alwil Software\Avast5\pam\FF => not found
FF ExtraCheck: C:\Program Files\mozilla firefox\Nastavenia.cfg [2004-12-31] <==== ATTENTION
CHR HKLM\...\Chrome\Extension: [emhginjpijfggbofeediiojmdlmlkoik] - C:\Program Files\Alwil Software\Avast5\pam\Chrome\pam.crx <not found>
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx <not found>
S4 IntelIde; no ImagePath
U3 TlntSvr; no ImagePath
C:\Documents and Settings\admin\Local Settings\temp
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Documents and Settings\admin\Local Settings\Data aplikac\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
StandardProfile\AuthorizedApplications: [C:\Program Files\Bonjour\mDNSResponder.exe] => Enabled:Bonjour Service

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bootsafe.exe => removed successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\foxitreader.exe => removed successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\itunes.exe => removed successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\runsas.exe => removed successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\superantispyware.exe => removed successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\unins000.exe => removed successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\unins001.exe => removed successfully.
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully.
"HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully.
"HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully.
"HKLM\Software\Mozilla\Firefox\Extensions\\jid1-r1tDuNiNb4SEww@jetpack" => removed successfully.
C:\Program Files\mozilla firefox\Nastavenia.cfg => moved successfully
HKLM\SOFTWARE\Google\Chrome\Extensions\emhginjpijfggbofeediiojmdlmlkoik => removed successfully.
HKLM\SOFTWARE\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => removed successfully.
HKLM\System\CurrentControlSet\Services\IntelIde => removed successfully.
IntelIde => service removed successfully.
HKLM\System\CurrentControlSet\Services\TlntSvr => removed successfully.
TlntSvr => service removed successfully.
C:\Documents and Settings\admin\Local Settings\temp => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
"C:\Documents and Settings\admin\Local Settings\Data aplikac\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini" => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GDriveSharedOverlay => removed successfully.
HKLM\Software\Classes\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\Bonjour\mDNSResponder.exe" => removed successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 9335 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache => 39952 B
Java, Flash, Steam htmlcache => 1258 B
Windows/system/dllcache/drivers => 34135573 B
Edge => 0 B
Chrome => 687963731 B
Firefox => 24635796 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Documents and Settings => 0 B
Default User => 0 B
All Users => 0 B
systemprofile => 631172443 B
LocalService => 66440 B
NetworkService => 2639165 B
admin => 76897750 B
Administrator => 0 B

RecycleBin => 0 B
EmptyTemp: => 1.4 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 22:43:16 ====

Re: SuperAntiSypware free edition našel PUP.SlimWare/Variant

Napsal: 13 pro 2018 15:37
od Rudy
OK. Log FRST by již měl být čistý.

Re: SuperAntiSypware free edition našel PUP.SlimWare/Variant

Napsal: 13 pro 2018 16:28
od TomášzePlzně
Ok, takže už jenom mám vymazat z plochy FRST a všechny jeho logy a odinstalovat adwcleaner?
Jinak děkuji za pomoc.

Re: SuperAntiSypware free edition našel PUP.SlimWare/Variant

Napsal: 13 pro 2018 17:41
od Rudy
Přesně tak. ADW odinstlovat a vše ostatní smazat. Nemáte zač! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz