﻿Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:01-07-2014
Ran by Ronek (administrator) on RONNY on 02-07-2014 18:38:53
Running from C:\Documents and Settings\Ronek\Plocha
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 7
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(VisualTaskTips.com) C:\Program Files\VisualTaskTips\VisualTaskTips.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Lee-Soft.com) C:\Program Files\extra\ViOrb\ViOrb.exe
() C:\Program Files\extra\True Transparency\TrueTransparency.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Nero AG) C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
(DT Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTLite.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jqs.exe
(Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
(Prolific Technology Inc.) C:\WINDOWS\system32\IoctlSvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Nero AG) C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16861184 2008-04-10] (Realtek Semiconductor Corp.)
HKLM\...\Run: [VisualTaskTips] => C:\Program Files\VisualTaskTips\VisualTaskTips.exe [65536 2008-08-15] (VisualTaskTips.com)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [866584 2006-11-03] (Microsoft Corporation)
HKLM\...\Run: [ViOrb] => C:\Program Files\extra\ViOrb\ViOrb.exe [167936 2008-06-15] (Lee-Soft.com)
HKLM\...\Run: [True transparacy] => C:\Program Files\extra\True Transparency\TrueTransparency.exe [372224 2008-06-24] ()
HKLM\...\Run: [TransBar] => C:\Program Files\extra\TransBar\TransBar.exe [93696 2005-06-01] (AKSoftware)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [33648 2007-08-24] (Microsoft Corporation)
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [570664 2008-02-28] (Nero AG)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\qttask.exe [421888 2010-03-17] (Apple Inc.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [39792 2008-01-11] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254696 2011-04-08] (Sun Microsystems, Inc.)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [689744 2014-04-29] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-2000478354-1343024091-1801674531-1003\...\Run: [TrueTransparency] => C:\Program Files\extra\True Transparency\TrueTransparency.exe [372224 2008-06-24] ()
HKU\S-1-5-21-2000478354-1343024091-1801674531-1003\...\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [1828136 2008-02-28] (Nero AG)
HKU\S-1-5-21-2000478354-1343024091-1801674531-1003\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [357696 2010-04-01] (DT Soft Ltd)
HKU\S-1-5-21-2000478354-1343024091-1801674531-1003\...\Run: [Google Update] => C:\Documents and Settings\Ronek\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [116648 2012-11-30] (Google Inc.)
Startup: C:\Documents and Settings\Ronek\Nabídka Start\Programy\Po spuštění\_uninst_setup_9.0.0.722_15.09.2010_12-24.exe.lnk
ShortcutTarget: _uninst_setup_9.0.0.722_15.09.2010_12-24.exe.lnk -> C:\Documents and Settings\Ronek\Local Settings\temp\_uninst_setup_9.0.0.722_15.09.2010_12-24.exe.bat (No File)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/#utm_source=icq&utm_medium=generic
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = http://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKLM - (No Name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} -  No File
SearchScopes: HKCU - DefaultScope {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = http://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = http://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
BHO: IE7Pro BHO - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll (IE7Pro.com)
BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - QT Breadcrumbs Address Bar - {af83e43c-dd2b-4787-826b-31b17dee52ed} - C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks: Microsoft AntiMalware ShellExecuteHook - {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll [83224 2006-11-03] (Microsoft Corporation)
ShellExecuteHooks:  - {AEB6717E-7E19-11d0-97EE-00C04FD91972} -  No File [ ]
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 21 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default
FF DefaultSearchEngine: ICQ Search
FF SelectedSearchEngine: Google
FF Homepage: hxxp://seznam.cz/
FF Keyword.URL: hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.1.9&q=
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\2.0.31005.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.11.2852 - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nppl3260;version=6.0.12.46 - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.1662 - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.46 - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin HKCU: @facebook.com/FBPlugin,version=1.0.3 - C:\Documents and Settings\Ronek\Data aplikací\Facebook\npfbplugin_1_0_3.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Documents and Settings\Ronek\Local Settings\Data aplikací\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Documents and Settings\Ronek\Local Settings\Data aplikací\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll (BitComet)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npLegitCheckPlugin.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npnul32.dll (mozilla.org)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF SearchPlugin: C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\searchplugins\icqplugin-1.xml
FF SearchPlugin: C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\searchplugins\icqplugin-10.xml
FF SearchPlugin: C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\searchplugins\icqplugin-11.xml
FF SearchPlugin: C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\searchplugins\icqplugin-12.xml
FF SearchPlugin: C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\searchplugins\icqplugin-2.xml
FF SearchPlugin: C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\searchplugins\icqplugin-3.xml
FF SearchPlugin: C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\searchplugins\icqplugin-4.xml
FF SearchPlugin: C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\searchplugins\icqplugin-5.xml
FF SearchPlugin: C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\searchplugins\icqplugin-6.xml
FF SearchPlugin: C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\searchplugins\icqplugin-7.xml
FF SearchPlugin: C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\searchplugins\icqplugin-8.xml
FF SearchPlugin: C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\searchplugins\icqplugin-9.xml
FF SearchPlugin: C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\searchplugins\icqplugin.gif
FF SearchPlugin: C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\searchplugins\icqplugin.src
FF SearchPlugin: C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\searchplugins\icqplugin.xml
FF SearchPlugin: C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\searchplugins\searchplugins-backup
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
FF Extension: Microsoft .NET Framework Assistant - C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-05-15]
FF Extension: ICQ Toolbar - C:\Documents and Settings\Ronek\Data aplikací\Mozilla\Firefox\Profiles\ps06t9s7.default\Extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [2011-07-22]
FF Extension: ICQ Toolbar - C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [2011-05-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010-05-17]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} [2012-04-25]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-08-28]
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2012-04-25]

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR StartupUrls: "hxxp://www.google.com/"
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Documents and Settings\Ronek\Local Settings\Data aplikací\Google\Chrome\Application\34.0.1847.131\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Documents and Settings\Ronek\Local Settings\Data aplikací\Google\Chrome\Application\34.0.1847.131\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\Ronek\Local Settings\Data aplikací\Google\Chrome\Application\34.0.1847.131\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.230.5) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll (Sun Microsystems, Inc.)
CHR Plugin: (Java(TM) Platform SE 6 U23) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (BitCometAgent) - C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll (BitComet)
CHR Plugin: (Windows Genuine Advantage) - C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2003) - C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll (RealNetworks, Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.6) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.6) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.6) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.6) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.6) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.6) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.6) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\2.0.31005.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (Shockwave for Director) - C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (Angry Birds) - C:\Documents and Settings\Ronek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2012-11-17]
CHR Extension: (FB Refresh) - C:\Documents and Settings\Ronek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\bdlfdaajmclngiomogmleihllaejcnni [2012-08-21]
CHR Extension: (YouTube) - C:\Documents and Settings\Ronek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2011-12-27]
CHR Extension: (Rebecca Taylor) - C:\Documents and Settings\Ronek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\eahpkkfpjpdcfdkbpeoibdhfadicnhdj [2013-06-16]
CHR Extension: (Webcam Toy) - C:\Documents and Settings\Ronek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2013-04-20]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\Ronek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-01]
CHR Extension: (Gmail) - C:\Documents and Settings\Ronek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2011-12-27]
CHR StartMenuInternet: Google Chrome - C:\Documents and Settings\Ronek\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe

========================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440400 2014-04-29] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440400 2014-04-29] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1017424 2014-04-29] (Avira Operations GmbH & Co. KG)
S3 ClipSrv; C:\WINDOWS\system32\clipsrv.exe [58880 2008-08-15] (Microsoft Corporation) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [153376 2012-04-25] (Sun Microsystems, Inc.)
S3 mnmsrvc; C:\WINDOWS\system32\mnmsrvc.exe [53248 2008-08-15] (Microsoft Corporation) [File not signed]
S3 MSDTC; C:\WINDOWS\system32\msdtc.exe [31744 2008-08-15] (Microsoft Corporation) [File not signed]
R2 PLFlash DeviceIoControl Service; C:\WINDOWS\system32\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [13592 2006-11-03] (Microsoft Corporation)
S3 WmdmPmSN; C:\WINDOWS\system32\mspmsnsv.dll [27136 2008-07-28] (Microsoft Corporation) [File not signed]
S3 WMPNetworkSvc; C:\Program Files\Windows Media Player\WMPNetwk.exe [913920 2007-01-05] (Microsoft Corporation) [File not signed]
R2 WudfSvc; C:\WINDOWS\System32\WUDFSvc.dll [55808 2008-07-28] (Microsoft Corporation) [File not signed]

==================== Drivers (Whitelisted) ====================

R3 AR5211; C:\WINDOWS\System32\DRIVERS\ar5211.sys [547904 2007-12-13] (Atheros Communications, Inc.)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [90400 2014-04-29] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [135648 2014-04-29] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37352 2014-04-29] (Avira Operations GmbH & Co. KG)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R0 iastor78; C:\WINDOWS\system32\Drivers\iastor78.sys [308248 2008-08-15] (Intel Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [691696 2010-05-16] () [File not signed]
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2014-04-29] (Avira GmbH)
S3 WpdUsb; C:\WINDOWS\System32\DRIVERS\wpdusb.sys [38528 2008-07-28] (Microsoft Corporation) [File not signed]
R0 WudfPf; C:\WINDOWS\System32\DRIVERS\WudfPf.sys [77568 2008-07-28] (Microsoft Corporation) [File not signed]
S3 WudfRd; C:\WINDOWS\System32\DRIVERS\wudfrd.sys [82944 2008-07-28] (Microsoft Corporation) [File not signed]
U3 awtvflpx; C:\WINDOWS\system32\Drivers\awtvflpx.sys [0 ] (Microsoft Corporation)
S3 EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys [X]
S4 IntelIde; No ImagePath
U1 WS2IFSL; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-02 18:38 - 2014-07-02 18:39 - 00023929 _____ () C:\Documents and Settings\Ronek\Plocha\FRST.txt
2014-07-02 18:38 - 2014-07-02 18:39 - 00000000 ____D () C:\FRST
2014-07-02 18:29 - 2014-07-02 18:30 - 00019834 _____ () C:\WINDOWS\iis6.log
2014-07-02 18:29 - 2014-07-02 18:30 - 00018550 _____ () C:\WINDOWS\FaxSetup.log
2014-07-02 18:29 - 2014-07-02 18:30 - 00011553 _____ () C:\WINDOWS\ocgen.log
2014-07-02 18:29 - 2014-07-02 18:30 - 00008465 _____ () C:\WINDOWS\tsoc.log
2014-07-02 18:29 - 2014-07-02 18:30 - 00006144 _____ () C:\WINDOWS\comsetup.log
2014-07-02 18:29 - 2014-07-02 18:30 - 00005702 _____ () C:\WINDOWS\msmqinst.log
2014-07-02 18:29 - 2014-07-02 18:30 - 00003723 _____ () C:\WINDOWS\ntdtcsetup.log
2014-07-02 18:29 - 2014-07-02 18:30 - 00003249 _____ () C:\WINDOWS\netfxocm.log
2014-07-02 18:29 - 2014-07-02 18:30 - 00001355 _____ () C:\WINDOWS\imsins.log
2014-07-02 18:29 - 2014-07-02 18:30 - 00001275 _____ () C:\WINDOWS\MedCtrOC.log
2014-07-02 18:29 - 2014-07-02 18:30 - 00001158 _____ () C:\WINDOWS\ocmsn.log
2014-07-02 18:29 - 2014-07-02 18:30 - 00000933 _____ () C:\WINDOWS\tabletoc.log
2014-07-02 18:29 - 2014-07-02 18:30 - 00000927 _____ () C:\WINDOWS\msgsocm.log
2014-07-02 18:29 - 2014-07-02 18:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2922229$
2014-07-02 18:29 - 2014-07-02 18:29 - 00007444 _____ () C:\WINDOWS\updspapi.log
2014-07-02 18:29 - 2014-07-02 18:29 - 00001355 _____ () C:\WINDOWS\imsins.BAK
2014-07-02 18:29 - 2014-07-02 18:29 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-07-02 18:29 - 2014-07-02 18:29 - 00000000 _____ () C:\WINDOWS\setupact.log
2014-07-02 18:28 - 2014-07-02 18:29 - 00009679 _____ () C:\WINDOWS\KB2964358-IE7.log
2014-07-02 18:21 - 2014-07-02 18:30 - 00022483 _____ () C:\WINDOWS\KB2922229.log
2014-07-02 18:12 - 2014-07-02 18:29 - 00113387 _____ () C:\WINDOWS\KB2936068-IE7.log
2014-07-02 18:09 - 2014-07-02 18:11 - 01073664 _____ (Farbar) C:\Documents and Settings\Ronek\Plocha\FRST.exe

==================== One Month Modified Files and Folders =======

2014-07-02 18:39 - 2014-07-02 18:38 - 00023929 _____ () C:\Documents and Settings\Ronek\Plocha\FRST.txt
2014-07-02 18:39 - 2014-07-02 18:38 - 00000000 ____D () C:\FRST
2014-07-02 18:39 - 2010-09-06 15:53 - 00000000 ____D () C:\Documents and Settings\Ronek\Local Settings\temp
2014-07-02 18:38 - 2008-10-03 01:25 - 00000000 ____D () C:\Documents and Settings\Ronek\Plocha
2014-07-02 18:38 - 2008-10-03 01:09 - 01887820 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-02 18:37 - 2014-04-29 17:15 - 00000330 ____H () C:\WINDOWS\Tasks\MP Scheduled Scan.job
2014-07-02 18:34 - 2014-04-29 15:53 - 00000222 _____ () C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2014-07-02 18:34 - 2011-01-08 19:00 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-07-02 18:34 - 2011-01-08 19:00 - 00000048 _____ () C:\WINDOWS\wiaservc.log
2014-07-02 18:34 - 2008-10-03 01:19 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-07-02 18:30 - 2014-07-02 18:29 - 00019834 _____ () C:\WINDOWS\iis6.log
2014-07-02 18:30 - 2014-07-02 18:29 - 00018550 _____ () C:\WINDOWS\FaxSetup.log
2014-07-02 18:30 - 2014-07-02 18:29 - 00011553 _____ () C:\WINDOWS\ocgen.log
2014-07-02 18:30 - 2014-07-02 18:29 - 00008465 _____ () C:\WINDOWS\tsoc.log
2014-07-02 18:30 - 2014-07-02 18:29 - 00006144 _____ () C:\WINDOWS\comsetup.log
2014-07-02 18:30 - 2014-07-02 18:29 - 00005702 _____ () C:\WINDOWS\msmqinst.log
2014-07-02 18:30 - 2014-07-02 18:29 - 00003723 _____ () C:\WINDOWS\ntdtcsetup.log
2014-07-02 18:30 - 2014-07-02 18:29 - 00003249 _____ () C:\WINDOWS\netfxocm.log
2014-07-02 18:30 - 2014-07-02 18:29 - 00001355 _____ () C:\WINDOWS\imsins.log
2014-07-02 18:30 - 2014-07-02 18:29 - 00001275 _____ () C:\WINDOWS\MedCtrOC.log
2014-07-02 18:30 - 2014-07-02 18:29 - 00001158 _____ () C:\WINDOWS\ocmsn.log
2014-07-02 18:30 - 2014-07-02 18:29 - 00000933 _____ () C:\WINDOWS\tabletoc.log
2014-07-02 18:30 - 2014-07-02 18:29 - 00000927 _____ () C:\WINDOWS\msgsocm.log
2014-07-02 18:30 - 2014-07-02 18:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2922229$
2014-07-02 18:30 - 2014-07-02 18:21 - 00022483 _____ () C:\WINDOWS\KB2922229.log
2014-07-02 18:30 - 2008-10-03 01:19 - 00032634 _____ () C:\WINDOWS\SchedLgU.Txt
2014-07-02 18:29 - 2014-07-02 18:29 - 00007444 _____ () C:\WINDOWS\updspapi.log
2014-07-02 18:29 - 2014-07-02 18:29 - 00001355 _____ () C:\WINDOWS\imsins.BAK
2014-07-02 18:29 - 2014-07-02 18:29 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-07-02 18:29 - 2014-07-02 18:29 - 00000000 _____ () C:\WINDOWS\setupact.log
2014-07-02 18:29 - 2014-07-02 18:28 - 00009679 _____ () C:\WINDOWS\KB2964358-IE7.log
2014-07-02 18:29 - 2014-07-02 18:12 - 00113387 _____ () C:\WINDOWS\KB2936068-IE7.log
2014-07-02 18:28 - 2013-08-18 18:30 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-07-02 18:22 - 2008-10-03 01:25 - 00000178 ___SH () C:\Documents and Settings\Ronek\ntuser.ini
2014-07-02 18:19 - 2012-11-30 20:15 - 00001026 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2000478354-1343024091-1801674531-1003UA.job
2014-07-02 18:18 - 2011-12-27 17:44 - 00002290 _____ () C:\Documents and Settings\Ronek\Plocha\Google Chrome.lnk
2014-07-02 18:11 - 2014-07-02 18:09 - 01073664 _____ (Farbar) C:\Documents and Settings\Ronek\Plocha\FRST.exe
2014-07-02 18:07 - 2010-09-06 15:53 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\temp
2014-07-02 18:06 - 2012-11-30 20:15 - 00000974 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2000478354-1343024091-1801674531-1003Core.job
2014-07-02 18:03 - 2014-04-29 16:14 - 00002397 _____ () C:\WINDOWS\setupapi.log
2014-07-02 17:48 - 2001-10-25 16:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl

Some content of TEMP:
====================
C:\Documents and Settings\Ronek\Local Settings\temp\avgnt.exe
C:\Documents and Settings\Ronek\Local Settings\temp\RtkBtMnt.exe


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe
[2008-08-15 21:42] - [2008-08-15 21:42] - 1482240 ____A (Microsoft Corporation) f0c7cffd1165068388311c793e32c4cc     

C:\WINDOWS\system32\winlogon.exe
[2008-08-15 21:48] - [2008-08-15 21:48] - 0557056 ____A (Microsoft Corporation) 12a799ad9415ae9c8abcc5f75e9cf034     

C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll
[2008-08-15 21:48] - [2008-08-15 21:48] - 0578560 ____A (Microsoft Corporation) ccb32d10c69a89822e9134c0c4894be1     

C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================