Nevyžádané reklamy a pomalý počitač. Prosím o kontrolu logu

[Ales]

Prosím o kontrolu logu, v prohlížečích mi vyskakují nevyžádané reklamy a počítač je pomalý. Dále mi po určité době nelze smazat nově vytvořené ikony z plochy

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-01-2014
Ran by Alešák (administrator) on RAKETA on 27-01-2014 09:22:12
Running from C:\Users\Alešák\Desktop
Windows 7 Home Premium (X64) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(The Firebird Project) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe
() C:\Program Files (x86)\Kooperativa\Services\KoopPDFServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
() C:\Windows\SysWOW64\Rezip.exe
(SAMSUNG Electronics) C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Gemfor s.r.o.) C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(The Firebird Project) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbserver.exe
(Hewlett-Packard Company) C:\Program Files\HP\HP LaserJet Professional M1530 MFP Series\Fax Driver\hppfaxprintersrv.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(Gemfor s.r.o.) C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Users\Alešák\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Oracle Corporation) C:\Windows\System32\javaw.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(Unicorn Systems) C:\Program Files (x86)\ČP\CPMODUpdater\CPMODUpdater.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe
() C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Ask) C:\Program Files (x86)\Ask.com\Updater\Updater.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Hewlett Packard) C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Desktop.exe
(forum.viry.cz) C:\Users\Alešák\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [NvCplDaemon] - C:\Windows\system32\NvCpl.dll [17412200 2010-05-05] (NVIDIA Corporation)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10144288 2010-04-07] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2074408 2010-02-26] (Synaptics Incorporated)
HKLM\...\Run: [HP LaserJet Professional M1530 MFP Series Fax] - C:\Program Files\HP\HP LaserJet Professional M1530 MFP Series\Fax Driver\hppfaxprintersrv.exe [3707704 2010-04-09] (Hewlett-Packard Company)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2918656 2011-01-12] (ESET)
HKLM-x32\...\Run: [NortonOnlineBackup] - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1112920 2010-03-05] (Symantec Corporation)
HKLM-x32\...\Run: [UpdateLBPShortCut] - C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-06-03] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] - C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePDRShortCut] - C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl8] - C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [PDVD8LanguageShortcut] - C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePPShortCut] - C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePSTShortCut] - C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2009-07-21] (CyberLink Corp.)
HKLM-x32\...\Run: [UCam_Menu] - C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [ToolboxFX] - C:\Program Files (x86)\HP\ToolboxFX\bin\HPTLBXFX.exe [58936 2010-04-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [38872 2012-07-31] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [ApnUpdater] - C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1648264 2013-04-25] (Ask)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [746176 2013-10-30] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Alešák\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-04-21] (Google Inc.)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
HKCU\...\Run: [T-Mobile Communication Centre] - C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [1355792 2011-03-08] (Gemfor s.r.o.)
HKCU\...\Run: [CPMODUpdater] - C:\Program Files (x86)\ČP\CPMODUpdater\CPMODUpdater.exe [51712 2013-10-15] (Unicorn Systems)
HKCU\...\Run: [SkyDrive] - C:\Users\Alešák\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257136 2013-10-10] (Microsoft Corporation)
HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKCU\...\Run: [PCSpeedUp] - C:\Program Files (x86)\Zrychleni Pocitace\PCSUNotifier.exe [188680 2012-08-22] ()
HKCU\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_170_Plugin.exe -update plugin [839560 2013-12-11] (Adobe Systems Incorporated)
MountPoints2: {5a8107c0-deb4-11e0-bad5-806e6f6e6963} - F:\autorun.exe
MountPoints2: {6e6944c3-ad6c-11e2-b14c-4cedde7eda5b} - G:\HPLauncher.exe
MountPoints2: {a7801c07-a264-11e2-ac23-4cedde7eda5b} - G:\AutoRun.exe
HKU\Aleš\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [95848 2010-05-06] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [90216 2010-05-06] (NVIDIA Corporation)
Startup: C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Kooperativa - PDF Server.lnk
ShortcutTarget: Kooperativa - PDF Server.lnk -> C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2786678
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung.msn.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://samsung.msn.com
URLSearchHook: HKCU - UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM-x32 - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKCU - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKCU - {E8FF0535-1DBE-4183-BE09-98CAF94E5B78} URL = http://websearch.ask.com/redirect?clien ... 08664BEF7D
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: PriceGong - Price Comparison - {1631550F-191D-4826-B069-D9439253D926} - C:\Program Files (x86)\PriceGong\2.6.12\PriceGongIE.dll (PriceGong)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default
FF user.js: detected! => C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\user.js
FF SearchEngineOrder.1: Ask.com Search
FF Homepage: hxxp://www.google.cz/
FF Keyword.URL: hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&q=
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Alešák\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Alešák\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\searchplugins\askcomsearch.xml
FF SearchPlugin: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Torntv V6.0 - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com [2013-12-07]
FF Extension: Ask Toolbar - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\toolbar@ask.com [2013-01-28]
FF Extension: PriceGong - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829} [2013-12-07]
FF Extension: uTorrentBar Community Toolbar - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} [2013-02-10]
FF Extension: GoPhotoIt - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\gophoto@gophoto.it.xpi [2013-08-08]
FF HKLM-x32\...\Firefox\Extensions: [{B7082FAA-CB62-4872-9106-E42DD88EDE45}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2010-11-18]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2011-08-05]

Chrome:
=======
CHR HomePage: hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=48
CHR RestoreOnStartup: "hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=48"
CHR DefaultSearchURL: {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Users\Ale\u0161\u00E1k\AppData\Local\Google\Chrome\Application\31.0.1650.57\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.220.4) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U22) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.0.60129.0\npctrl.dll No File
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Ale\u0161\u00E1k\AppData\Local\Google\Chrome\Application\31.0.1650.57\pdf.dll No File
CHR Plugin: (Google Gears 0.5.33.0) - C:\Users\Ale\u0161\u00E1k\AppData\Local\Google\Chrome\Application\31.0.1650.57\gears.dll No File
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Ale\u0161\u00E1k\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (Peněženka Google) - C:\Users\Alešák\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-26]
CHR HKLM-x32\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\ALEK~1\AppData\Local\Temp\ccex.crx [2013-11-26]
CHR HKLM-x32\...\Chrome\Extension: [bkomkajifikmkfnjgphkjcfeepbnojok] - C:\Program Files (x86)\PriceGong\2.6.12\pricegong.crx [2013-11-13]
CHR HKLM-x32\...\Chrome\Extension: [pfmopbbadnfoelckkcmjjeaaegjpjjbk] - C:\Program Files (x86)\Gophoto.it\gophotoit16.crx [2013-08-08]
CHR StartMenuInternet: Google Chrome - C:\Users\Alešák\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

R2 ameisvc; C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe [122608 2011-03-08] (Gemfor s.r.o.)
S3 EhttpSrv; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [42360 2011-01-12] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [810144 2011-01-12] (ESET)
R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe [65536 2009-10-06] (The Firebird Project)
R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbserver.exe [1532000 2009-10-06] (The Firebird Project)
R2 KoopPdfService; C:\Program Files (x86)\Kooperativa\Services\KoopPDFServer.exe [2454016 2012-11-20] ()
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [203280 2009-01-23] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2782552 2010-03-05] (Symantec Corporation)
R2 PCSUService; C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe [289544 2012-08-22] ()
R2 Rezip; C:\Windows\SysWOW64\Rezip.exe [311296 2009-03-05] ()
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-07-07] ()

==================== Drivers (Whitelisted) ====================

S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [53816 2009-03-07] (Samsung Electronics Co., Ltd.)
R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [170640 2010-12-21] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [141264 2010-12-21] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [125296 2010-12-21] (ESET)
S3 Huawei; C:\Windows\System32\DRIVERS\ewdcsc.sys [29696 2009-12-15] (Huawei Tech. Co., Ltd.)
S3 hwusbdev; C:\Windows\System32\DRIVERS\ewusbdev.sys [114304 2009-12-15] (Huawei Technologies Co., Ltd.)
S3 rtport; C:\Windows\SysWOW64\drivers\rtport.sys [15144 2011-01-13] (Windows (R) 2003 DDK 3790 provider)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564792 2012-02-19] (Duplex Secure Ltd.)
R2 SSPORT; C:\Windows\SysWOW64\Drivers\SSPORT.sys [11576 2009-10-28] (Samsung Electronics)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
U3 aqh3test; C:\Windows\System32\Drivers\aqh3test.sys [0 ] (Intel Corporation)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [243200 2009-12-15] (Huawei Technologies Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-27 09:22 - 2014-01-27 09:22 - 00026794 _____ C:\Users\Alešák\Desktop\FRST.txt
2014-01-27 09:22 - 2014-01-27 09:22 - 00000000 ____D C:\FRST
2014-01-27 09:21 - 2014-01-27 09:21 - 00112640 _____ (forum.viry.cz) C:\Users\Alešák\Desktop\FRSTLauncher.exe
2014-01-27 09:19 - 2014-01-27 09:19 - 02078208 _____ (Farbar) C:\Users\Alešák\Desktop\FRST64.exe
2014-01-27 09:14 - 2014-01-27 09:14 - 00001162 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-27 09:14 - 2014-01-27 09:14 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-27 09:12 - 2014-01-27 09:12 - 07243968 _____ (TeamViewer GmbH) C:\Users\Alešák\Desktop\TeamViewer_Setup.exe
2014-01-24 07:44 - 2014-01-24 07:44 - 05934592 _____ C:\Users\Alešák\Documents\PriMa_OVB_tpl_v1 01.xls
2014-01-22 13:55 - 2014-01-22 13:55 - 00003059 _____ C:\Users\Alešák\Desktop\OVB Simulace.lnk
2014-01-22 13:55 - 2014-01-22 13:55 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Simulace_2009
2014-01-17 08:10 - 2014-01-17 08:10 - 00005175 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-17 08:10 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-17 08:10 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-17 08:10 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-17 08:10 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-16 23:55 - 2014-01-16 23:55 - 00005962 _____ C:\Windows\PFRO.log
2014-01-04 08:34 - 2014-01-04 08:35 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\KA10
2014-01-04 08:32 - 2014-01-04 08:35 - 00000000 ____D C:\Program Files (x86)\KA10
2014-01-04 08:32 - 2014-01-04 08:32 - 00001883 _____ C:\Users\Public\Desktop\Autopojištění 2012.lnk
2014-01-04 08:32 - 2014-01-04 08:32 - 00000000 ____D C:\Data-KA10
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2014-01-04 08:18 - 2014-01-23 18:56 - 01853986 _____ C:\Users\Alešák\Desktop\21282_65379_PriMa_3G_v2_00.xlsm
2014-01-02 13:35 - 2014-01-14 18:03 - 06427049 _____ C:\Users\Alešák\Desktop\Mercury Mini.xlsm
2014-01-02 13:35 - 2014-01-02 13:35 - 06709953 _____ C:\Users\Alešák\Desktop\Mercury.xlsm
2013-12-28 10:29 - 2013-07-21 22:14 - 00016327 ____N C:\Users\Alešák\Desktop\Přípravka 2012-13 seznam.xlsx
2013-12-28 10:24 - 2013-12-28 10:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

==================== One Month Modified Files and Folders =======

2014-01-27 09:22 - 2014-01-27 09:22 - 00026794 _____ C:\Users\Alešák\Desktop\FRST.txt
2014-01-27 09:22 - 2014-01-27 09:22 - 00000000 ____D C:\FRST
2014-01-27 09:21 - 2014-01-27 09:21 - 00112640 _____ (forum.viry.cz) C:\Users\Alešák\Desktop\FRSTLauncher.exe
2014-01-27 09:19 - 2014-01-27 09:19 - 02078208 _____ (Farbar) C:\Users\Alešák\Desktop\FRST64.exe
2014-01-27 09:14 - 2014-01-27 09:14 - 00001162 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-27 09:14 - 2014-01-27 09:14 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-27 09:13 - 2011-07-21 18:23 - 00003966 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{2C8BAA35-73CA-407A-AA43-E1F11B8833AB}
2014-01-27 09:12 - 2014-01-27 09:12 - 07243968 _____ (TeamViewer GmbH) C:\Users\Alešák\Desktop\TeamViewer_Setup.exe
2014-01-27 09:12 - 2011-04-21 11:55 - 00000966 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002UA.job
2014-01-27 08:53 - 2012-04-03 17:43 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-27 08:45 - 2011-10-13 10:27 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-27 08:38 - 2010-11-19 02:32 - 01913448 _____ C:\Windows\WindowsUpdate.log
2014-01-27 08:32 - 2013-12-07 10:57 - 00002174 _____ C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job
2014-01-27 08:27 - 2013-12-07 10:57 - 00001298 _____ C:\Windows\Tasks\Torntv V6.0-updater.job
2014-01-26 23:27 - 2011-04-21 11:55 - 00000914 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002Core.job
2014-01-26 20:57 - 2013-12-07 10:59 - 00021995 _____ C:\Users\Alešák\daemonprocess.txt
2014-01-26 19:00 - 2012-01-03 18:19 - 00011198 _____ C:\Users\Alešák\AppData\Roaming\SmarThruOptions.xml
2014-01-26 18:12 - 2010-11-19 03:23 - 00666672 _____ C:\Windows\system32\perfh005.dat
2014-01-26 18:12 - 2010-11-19 03:23 - 00140336 _____ C:\Windows\system32\perfc005.dat
2014-01-26 18:12 - 2009-07-14 06:13 - 01577482 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-26 18:06 - 2012-12-18 13:45 - 00000000 ____D C:\Users\Alešák\Documents\Soubory aplikace Outlook
2014-01-26 16:30 - 2011-10-13 10:27 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-24 16:03 - 2013-12-13 18:21 - 00002804 _____ C:\Windows\setupact.log
2014-01-24 07:44 - 2014-01-24 07:44 - 05934592 _____ C:\Users\Alešák\Documents\PriMa_OVB_tpl_v1 01.xls
2014-01-23 18:56 - 2014-01-04 08:18 - 01853986 _____ C:\Users\Alešák\Desktop\21282_65379_PriMa_3G_v2_00.xlsm
2014-01-22 14:52 - 2013-12-05 22:05 - 00000000 ____D C:\Program Files (x86)\Zrychleni Pocitace
2014-01-22 14:49 - 2009-07-14 05:45 - 00014144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-22 14:49 - 2009-07-14 05:45 - 00014144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-22 14:48 - 2011-03-29 21:02 - 00000000 ____D C:\Users\Alešák\Desktop\Kalkulačka
2014-01-22 14:45 - 2013-10-10 14:14 - 00000000 ___RD C:\Users\Alešák\SkyDrive
2014-01-22 14:43 - 2011-03-29 20:53 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2014-01-22 14:41 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-22 13:55 - 2014-01-22 13:55 - 00003059 _____ C:\Users\Alešák\Desktop\OVB Simulace.lnk
2014-01-22 13:55 - 2014-01-22 13:55 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Simulace_2009
2014-01-17 08:10 - 2014-01-17 08:10 - 00005175 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-17 08:10 - 2013-11-26 12:53 - 00000000 ____D C:\ProgramData\Oracle
2014-01-17 08:10 - 2011-03-30 08:29 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-16 23:55 - 2014-01-16 23:55 - 00005962 _____ C:\Windows\PFRO.log
2014-01-16 11:22 - 2011-03-28 14:43 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-16 11:22 - 2009-07-14 03:34 - 00000510 _____ C:\Windows\win.ini
2014-01-16 11:12 - 2013-07-14 12:05 - 00000000 ____D C:\Windows\system32\MRT
2014-01-16 07:41 - 2011-04-12 16:22 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-14 18:03 - 2014-01-02 13:35 - 06427049 _____ C:\Users\Alešák\Desktop\Mercury Mini.xlsm
2014-01-12 20:54 - 2011-03-29 20:59 - 00000000 ____D C:\Users\Alešák\Documents\Složka Bluetooth Exchange
2014-01-08 16:46 - 2013-10-02 12:38 - 07555584 _____ C:\Users\Alešák\Desktop\Conseq_kalkulace_OVB_2011_5.xls
2014-01-04 08:35 - 2014-01-04 08:34 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\KA10
2014-01-04 08:35 - 2014-01-04 08:32 - 00000000 ____D C:\Program Files (x86)\KA10
2014-01-04 08:32 - 2014-01-04 08:32 - 00001883 _____ C:\Users\Public\Desktop\Autopojištění 2012.lnk
2014-01-04 08:32 - 2014-01-04 08:32 - 00000000 ____D C:\Data-KA10
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2014-01-03 13:54 - 2013-02-10 19:22 - 00001094 _____ C:\Users\Alešák\Desktop\Kooperativa - Perspektiva 7BN Extern.lnk
2014-01-02 13:54 - 2012-05-14 06:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-02 13:35 - 2014-01-02 13:35 - 06709953 _____ C:\Users\Alešák\Desktop\Mercury.xlsm
2013-12-31 14:10 - 2011-04-05 21:36 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Generali pojišťovna
2013-12-31 14:08 - 2013-06-14 14:16 - 00000000 ____D C:\GEN
2013-12-28 10:24 - 2013-12-28 10:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-28 10:20 - 2013-12-07 10:59 - 00000000 ____D C:\Users\Alešák\AppData\Local\Mobogenie

Some content of TEMP:
====================
C:\Users\Aleš\AppData\Local\Temp\MSNCDBC.exe
C:\Users\Aleš\AppData\Local\Temp\ose00000.exe
C:\Users\Alešák\AppData\Local\Temp\evrecqjj.dll
C:\Users\Alešák\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Alešák\AppData\Local\Temp\m2am0vyt.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002Core.job => C:\Users\Aleaák\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002UA.job => C:\Users\Aleaák\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PC SpeedUp Service Deactivator.job => C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe
Task: C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-firefoxinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\Torntv V6.0-updater.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-updater.exe <==== ATTENTION

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: ESET NOD32 Antivirus 4.2 (Enabled - Out of date) {77DEAFED-8149-104B-25A1-21771CA47CD1}
AS: ESET NOD32 Antivirus 4.2 (Enabled - Out of date) {CCBF4E09-A773-1FC5-1F11-1A056723366C}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Ale�k\Desktop" je 2019 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

[vyosek]

Zdravim

Jen se zeptam, na ten NOD32 mate zakoupenou licenci?? Jelikoz vypada zastarale

[Ales]

Nemám licenci a je hodně zastaralý

[vyosek]

Tudiz je pouzivan v rozporu s licencnimi podminkami

Pred pokracovanim, vas musim pozadat o odstraneni NELEGALNIHO Esetu. Tento muj "pozadavek" vychazi z platnych pravidel fora http://forum.viry.cz/viewtopic.php?f=12&t=115512, ktere jste vy i ja povinnen dodrzovat

Pomáhat NELZE:
2) Pokud stroj uživatele obsahuje nelegální hostitelský čí ochranný software
(operační systém, antivir, firewall, atd.), je nutné navést uživatele k nápravě, např. skrze neplacený software,
a začít řešit, až v době kdy je PC "v pořádku". V případě že uživatel nechce na pravidla přistoupit,
je nutné jej vyzvat ať fórum opustí, a vrátí se až je splní.

Takze pokud chcete pomoci, tak jej odinstalujte, nainstalujte free reseni (napr. Avast Free), napiste a budeme pokracovat

[Ales]

Antivir odstranen...

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-01-2014
Ran by Alešák (administrator) on RAKETA on 27-01-2014 10:02:28
Running from C:\Users\Alešák\Desktop
Windows 7 Home Premium (X64) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(The Firebird Project) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe
() C:\Program Files (x86)\Kooperativa\Services\KoopPDFServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
() C:\Windows\SysWOW64\Rezip.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Gemfor s.r.o.) C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(The Firebird Project) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbserver.exe
(SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(SAMSUNG Electronics) C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard Company) C:\Program Files\HP\HP LaserJet Professional M1530 MFP Series\Fax Driver\hppfaxprintersrv.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(Gemfor s.r.o.) C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe
(Unicorn Systems) C:\Program Files (x86)\ČP\CPMODUpdater\CPMODUpdater.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Users\Alešák\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
() C:\Program Files (x86)\Zrychleni Pocitace\PCSUNotifier.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Oracle Corporation) C:\Windows\System32\javaw.exe
() C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\ToolboxFX\bin\HPTLBXFX.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Ask) C:\Program Files (x86)\Ask.com\Updater\Updater.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Desktop.exe
(forum.viry.cz) C:\Users\Alešák\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [NvCplDaemon] - C:\Windows\system32\NvCpl.dll [17412200 2010-05-05] (NVIDIA Corporation)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10144288 2010-04-07] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2074408 2010-02-26] (Synaptics Incorporated)
HKLM\...\Run: [HP LaserJet Professional M1530 MFP Series Fax] - C:\Program Files\HP\HP LaserJet Professional M1530 MFP Series\Fax Driver\hppfaxprintersrv.exe [3707704 2010-04-09] (Hewlett-Packard Company)
HKLM-x32\...\Run: [NortonOnlineBackup] - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1112920 2010-03-05] (Symantec Corporation)
HKLM-x32\...\Run: [UpdateLBPShortCut] - C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-06-03] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] - C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePDRShortCut] - C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl8] - C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [PDVD8LanguageShortcut] - C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePPShortCut] - C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePSTShortCut] - C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2009-07-21] (CyberLink Corp.)
HKLM-x32\...\Run: [UCam_Menu] - C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [ToolboxFX] - C:\Program Files (x86)\HP\ToolboxFX\bin\HPTLBXFX.exe [58936 2010-04-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [38872 2012-07-31] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [ApnUpdater] - C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1648264 2013-04-25] (Ask)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [746176 2013-10-30] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Alešák\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-04-21] (Google Inc.)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
HKCU\...\Run: [T-Mobile Communication Centre] - C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [1355792 2011-03-08] (Gemfor s.r.o.)
HKCU\...\Run: [CPMODUpdater] - C:\Program Files (x86)\ČP\CPMODUpdater\CPMODUpdater.exe [51712 2013-10-15] (Unicorn Systems)
HKCU\...\Run: [SkyDrive] - C:\Users\Alešák\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257136 2013-10-10] (Microsoft Corporation)
HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKCU\...\Run: [PCSpeedUp] - C:\Program Files (x86)\Zrychleni Pocitace\PCSUNotifier.exe [188680 2012-08-22] ()
MountPoints2: {5a8107c0-deb4-11e0-bad5-806e6f6e6963} - F:\autorun.exe
MountPoints2: {6e6944c3-ad6c-11e2-b14c-4cedde7eda5b} - G:\HPLauncher.exe
MountPoints2: {a7801c07-a264-11e2-ac23-4cedde7eda5b} - G:\AutoRun.exe
HKU\Aleš\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [95848 2010-05-06] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [90216 2010-05-06] (NVIDIA Corporation)
Startup: C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Kooperativa - PDF Server.lnk
ShortcutTarget: Kooperativa - PDF Server.lnk -> C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2786678
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung.msn.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://samsung.msn.com
URLSearchHook: HKCU - UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM-x32 - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKCU - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKCU - {E8FF0535-1DBE-4183-BE09-98CAF94E5B78} URL = http://websearch.ask.com/redirect?clien ... 08664BEF7D
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: PriceGong - Price Comparison - {1631550F-191D-4826-B069-D9439253D926} - C:\Program Files (x86)\PriceGong\2.6.12\PriceGongIE.dll (PriceGong)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default
FF user.js: detected! => C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\user.js
FF SearchEngineOrder.1: Ask.com Search
FF Homepage: hxxp://www.google.cz/
FF Keyword.URL: hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&q=
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Alešák\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Alešák\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\searchplugins\askcomsearch.xml
FF SearchPlugin: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Torntv V6.0 - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com [2013-12-07]
FF Extension: Ask Toolbar - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\toolbar@ask.com [2013-01-28]
FF Extension: PriceGong - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829} [2013-12-07]
FF Extension: uTorrentBar Community Toolbar - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} [2013-02-10]
FF Extension: GoPhotoIt - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\gophoto@gophoto.it.xpi [2013-08-08]
FF HKLM-x32\...\Firefox\Extensions: [{B7082FAA-CB62-4872-9106-E42DD88EDE45}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2010-11-18]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

Chrome:
=======
CHR HomePage: hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=48
CHR RestoreOnStartup: "hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=48"
CHR DefaultSearchURL: {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Users\Ale\u0161\u00E1k\AppData\Local\Google\Chrome\Application\31.0.1650.57\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.220.4) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U22) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.0.60129.0\npctrl.dll No File
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Ale\u0161\u00E1k\AppData\Local\Google\Chrome\Application\31.0.1650.57\pdf.dll No File
CHR Plugin: (Google Gears 0.5.33.0) - C:\Users\Ale\u0161\u00E1k\AppData\Local\Google\Chrome\Application\31.0.1650.57\gears.dll No File
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Ale\u0161\u00E1k\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (Peněženka Google) - C:\Users\Alešák\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-26]
CHR HKLM-x32\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\ALEK~1\AppData\Local\Temp\ccex.crx [2013-11-26]
CHR HKLM-x32\...\Chrome\Extension: [bkomkajifikmkfnjgphkjcfeepbnojok] - C:\Program Files (x86)\PriceGong\2.6.12\pricegong.crx [2013-11-13]
CHR HKLM-x32\...\Chrome\Extension: [pfmopbbadnfoelckkcmjjeaaegjpjjbk] - C:\Program Files (x86)\Gophoto.it\gophotoit16.crx [2013-08-08]
CHR StartMenuInternet: Google Chrome - C:\Users\Alešák\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

R2 ameisvc; C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe [122608 2011-03-08] (Gemfor s.r.o.)
R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe [65536 2009-10-06] (The Firebird Project)
R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbserver.exe [1532000 2009-10-06] (The Firebird Project)
R2 KoopPdfService; C:\Program Files (x86)\Kooperativa\Services\KoopPDFServer.exe [2454016 2012-11-20] ()
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [203280 2009-01-23] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2782552 2010-03-05] (Symantec Corporation)
R2 PCSUService; C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe [289544 2012-08-22] ()
R2 Rezip; C:\Windows\SysWOW64\Rezip.exe [311296 2009-03-05] ()
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-07-07] ()

==================== Drivers (Whitelisted) ====================

S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [53816 2009-03-07] (Samsung Electronics Co., Ltd.)
S3 Huawei; C:\Windows\System32\DRIVERS\ewdcsc.sys [29696 2009-12-15] (Huawei Tech. Co., Ltd.)
S3 hwusbdev; C:\Windows\System32\DRIVERS\ewusbdev.sys [114304 2009-12-15] (Huawei Technologies Co., Ltd.)
S3 rtport; C:\Windows\SysWOW64\drivers\rtport.sys [15144 2011-01-13] (Windows (R) 2003 DDK 3790 provider)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564792 2012-02-19] (Duplex Secure Ltd.)
R2 SSPORT; C:\Windows\SysWOW64\Drivers\SSPORT.sys [11576 2009-10-28] (Samsung Electronics)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
U3 a76vfs8o; C:\Windows\System32\Drivers\a76vfs8o.sys [0 ] (Advanced Micro Devices)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [243200 2009-12-15] (Huawei Technologies Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-27 09:59 - 2014-01-27 09:59 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\TeamViewer
2014-01-27 09:28 - 2014-01-27 09:28 - 00006937 _____ C:\Users\Alešák\Desktop\Addition.zip
2014-01-27 09:22 - 2014-01-27 10:03 - 00025917 _____ C:\Users\Alešák\Desktop\FRST.txt
2014-01-27 09:22 - 2014-01-27 09:22 - 00000000 ____D C:\FRST
2014-01-27 09:21 - 2014-01-27 09:21 - 00112640 _____ (forum.viry.cz) C:\Users\Alešák\Desktop\FRSTLauncher.exe
2014-01-27 09:19 - 2014-01-27 09:19 - 02078208 _____ (Farbar) C:\Users\Alešák\Desktop\FRST64.exe
2014-01-27 09:14 - 2014-01-27 09:14 - 00001162 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-27 09:14 - 2014-01-27 09:14 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-27 09:12 - 2014-01-27 09:12 - 07243968 _____ (TeamViewer GmbH) C:\Users\Alešák\Desktop\TeamViewer_Setup.exe
2014-01-24 07:44 - 2014-01-24 07:44 - 05934592 _____ C:\Users\Alešák\Documents\PriMa_OVB_tpl_v1 01.xls
2014-01-22 13:55 - 2014-01-22 13:55 - 00003059 _____ C:\Users\Alešák\Desktop\OVB Simulace.lnk
2014-01-22 13:55 - 2014-01-22 13:55 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Simulace_2009
2014-01-17 08:10 - 2014-01-17 08:10 - 00005175 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-17 08:10 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-17 08:10 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-17 08:10 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-17 08:10 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-16 23:55 - 2014-01-16 23:55 - 00005962 _____ C:\Windows\PFRO.log
2014-01-04 08:34 - 2014-01-04 08:35 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\KA10
2014-01-04 08:32 - 2014-01-04 08:35 - 00000000 ____D C:\Program Files (x86)\KA10
2014-01-04 08:32 - 2014-01-04 08:32 - 00001883 _____ C:\Users\Public\Desktop\Autopojištění 2012.lnk
2014-01-04 08:32 - 2014-01-04 08:32 - 00000000 ____D C:\Data-KA10
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2014-01-04 08:18 - 2014-01-23 18:56 - 01853986 _____ C:\Users\Alešák\Desktop\21282_65379_PriMa_3G_v2_00.xlsm
2014-01-02 13:35 - 2014-01-14 18:03 - 06427049 _____ C:\Users\Alešák\Desktop\Mercury Mini.xlsm
2014-01-02 13:35 - 2014-01-02 13:35 - 06709953 _____ C:\Users\Alešák\Desktop\Mercury.xlsm
2013-12-28 10:29 - 2013-07-21 22:14 - 00016327 ____N C:\Users\Alešák\Desktop\Přípravka 2012-13 seznam.xlsx
2013-12-28 10:24 - 2013-12-28 10:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

==================== One Month Modified Files and Folders =======

2014-01-27 10:03 - 2014-01-27 09:22 - 00025917 _____ C:\Users\Alešák\Desktop\FRST.txt
2014-01-27 10:02 - 2010-11-19 02:32 - 01921405 _____ C:\Windows\WindowsUpdate.log
2014-01-27 10:00 - 2011-07-21 18:23 - 00003966 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{2C8BAA35-73CA-407A-AA43-E1F11B8833AB}
2014-01-27 09:59 - 2014-01-27 09:59 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\TeamViewer
2014-01-27 09:59 - 2013-10-10 14:14 - 00000000 ___RD C:\Users\Alešák\SkyDrive
2014-01-27 09:58 - 2011-03-29 21:48 - 00114776 _____ C:\Users\Alešák\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-27 09:57 - 2013-12-07 10:57 - 00002174 _____ C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job
2014-01-27 09:57 - 2013-12-07 10:57 - 00001298 _____ C:\Windows\Tasks\Torntv V6.0-updater.job
2014-01-27 09:57 - 2012-12-18 13:45 - 00000000 ____D C:\Users\Alešák\Documents\Soubory aplikace Outlook
2014-01-27 09:57 - 2011-10-13 10:27 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-27 09:57 - 2011-03-29 20:53 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2014-01-27 09:56 - 2013-12-13 18:21 - 00002860 _____ C:\Windows\setupact.log
2014-01-27 09:56 - 2013-12-05 22:05 - 00000000 ____D C:\Program Files (x86)\Zrychleni Pocitace
2014-01-27 09:56 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-27 09:56 - 2009-07-14 05:45 - 00429976 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-27 09:54 - 2013-12-07 10:59 - 00022127 _____ C:\Users\Alešák\daemonprocess.txt
2014-01-27 09:53 - 2012-04-03 17:43 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-27 09:45 - 2011-10-13 10:27 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-27 09:28 - 2014-01-27 09:28 - 00006937 _____ C:\Users\Alešák\Desktop\Addition.zip
2014-01-27 09:22 - 2014-01-27 09:22 - 00000000 ____D C:\FRST
2014-01-27 09:21 - 2014-01-27 09:21 - 00112640 _____ (forum.viry.cz) C:\Users\Alešák\Desktop\FRSTLauncher.exe
2014-01-27 09:19 - 2014-01-27 09:19 - 02078208 _____ (Farbar) C:\Users\Alešák\Desktop\FRST64.exe
2014-01-27 09:14 - 2014-01-27 09:14 - 00001162 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-27 09:14 - 2014-01-27 09:14 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-27 09:12 - 2014-01-27 09:12 - 07243968 _____ (TeamViewer GmbH) C:\Users\Alešák\Desktop\TeamViewer_Setup.exe
2014-01-27 09:12 - 2011-04-21 11:55 - 00000966 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002UA.job
2014-01-26 23:27 - 2011-04-21 11:55 - 00000914 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002Core.job
2014-01-26 19:00 - 2012-01-03 18:19 - 00011198 _____ C:\Users\Alešák\AppData\Roaming\SmarThruOptions.xml
2014-01-26 18:12 - 2010-11-19 03:23 - 00666672 _____ C:\Windows\system32\perfh005.dat
2014-01-26 18:12 - 2010-11-19 03:23 - 00140336 _____ C:\Windows\system32\perfc005.dat
2014-01-26 18:12 - 2009-07-14 06:13 - 01577482 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-24 07:44 - 2014-01-24 07:44 - 05934592 _____ C:\Users\Alešák\Documents\PriMa_OVB_tpl_v1 01.xls
2014-01-23 18:56 - 2014-01-04 08:18 - 01853986 _____ C:\Users\Alešák\Desktop\21282_65379_PriMa_3G_v2_00.xlsm
2014-01-22 14:49 - 2009-07-14 05:45 - 00014144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-22 14:49 - 2009-07-14 05:45 - 00014144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-22 14:48 - 2011-03-29 21:02 - 00000000 ____D C:\Users\Alešák\Desktop\Kalkulačka
2014-01-22 13:55 - 2014-01-22 13:55 - 00003059 _____ C:\Users\Alešák\Desktop\OVB Simulace.lnk
2014-01-22 13:55 - 2014-01-22 13:55 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Simulace_2009
2014-01-17 08:10 - 2014-01-17 08:10 - 00005175 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-17 08:10 - 2013-11-26 12:53 - 00000000 ____D C:\ProgramData\Oracle
2014-01-17 08:10 - 2011-03-30 08:29 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-16 23:55 - 2014-01-16 23:55 - 00005962 _____ C:\Windows\PFRO.log
2014-01-16 11:22 - 2011-03-28 14:43 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-16 11:22 - 2009-07-14 03:34 - 00000510 _____ C:\Windows\win.ini
2014-01-16 11:12 - 2013-07-14 12:05 - 00000000 ____D C:\Windows\system32\MRT
2014-01-16 07:41 - 2011-04-12 16:22 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-14 18:03 - 2014-01-02 13:35 - 06427049 _____ C:\Users\Alešák\Desktop\Mercury Mini.xlsm
2014-01-12 20:54 - 2011-03-29 20:59 - 00000000 ____D C:\Users\Alešák\Documents\Složka Bluetooth Exchange
2014-01-08 16:46 - 2013-10-02 12:38 - 07555584 _____ C:\Users\Alešák\Desktop\Conseq_kalkulace_OVB_2011_5.xls
2014-01-04 08:35 - 2014-01-04 08:34 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\KA10
2014-01-04 08:35 - 2014-01-04 08:32 - 00000000 ____D C:\Program Files (x86)\KA10
2014-01-04 08:32 - 2014-01-04 08:32 - 00001883 _____ C:\Users\Public\Desktop\Autopojištění 2012.lnk
2014-01-04 08:32 - 2014-01-04 08:32 - 00000000 ____D C:\Data-KA10
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2014-01-03 13:54 - 2013-02-10 19:22 - 00001094 _____ C:\Users\Alešák\Desktop\Kooperativa - Perspektiva 7BN Extern.lnk
2014-01-02 13:54 - 2012-05-14 06:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-02 13:35 - 2014-01-02 13:35 - 06709953 _____ C:\Users\Alešák\Desktop\Mercury.xlsm
2013-12-31 14:10 - 2011-04-05 21:36 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Generali pojišťovna
2013-12-31 14:08 - 2013-06-14 14:16 - 00000000 ____D C:\GEN
2013-12-28 10:24 - 2013-12-28 10:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-28 10:20 - 2013-12-07 10:59 - 00000000 ____D C:\Users\Alešák\AppData\Local\Mobogenie

Some content of TEMP:
====================
C:\Users\Aleš\AppData\Local\Temp\MSNCDBC.exe
C:\Users\Aleš\AppData\Local\Temp\ose00000.exe
C:\Users\Alešák\AppData\Local\Temp\evrecqjj.dll
C:\Users\Alešák\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Alešák\AppData\Local\Temp\m2am0vyt.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002Core.job => C:\Users\Aleaák\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002UA.job => C:\Users\Aleaák\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PC SpeedUp Service Deactivator.job => C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe
Task: C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-firefoxinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\Torntv V6.0-updater.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-updater.exe <==== ATTENTION

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\Temp:4CF61E54
AlternateDataStreams: C:\ProgramData\Temp:798A3728
AlternateDataStreams: C:\ProgramData\Temp:E36F5B57
AlternateDataStreams: C:\ProgramData\Temp:E7BA7168

==================== Security Center ==================

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Ale�k\Desktop" je 2019 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

[vyosek]

A to budeme lecit nezabezpecene PC?? Nebo jak to mate namysleno Ja jsem myslim podminky napsal jasne, pokud se jim nechete prizpusobit, ja Vas nenutim, tlacitko Odhlasit mate vlevo nahore.

[Ales]

Omlouvám se.

Bohužel nejsem zdatný s jinou než uživatelskou schopností pracovat s PC. Jeden známý mi ukázal pouze, jak vyjet nějaký kod, který jsem Vám zaslal. NOD jsem odinstaloval, jak jste psal. Mám problém s počítačem, že je pomalý, často se seká a při prohlížení internetových stránek vyskakují reklamní okna. Byl bych velmi vděčný, když mi jakkoliv pomůžete a navedete co dělat.
Děkuji moc

[vyosek]

Nainstalujte Avast Free http://www.avast.com/get/gWR5mo92

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

• Ulozte nejlepe na plochu
• Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
• Probehne vytvoreni zalohy a nasledne prohledavani
• Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

[Ales]

Dobrý den,

1) nainstaloval jsem Avast podle vašich rad a nechal projet počítačem
2) v 2. kroce jste chtěl poslat log, který vyjede viz níže a 3. krok dopošlu

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 7 Home Premium x64
Ran by Aleç k on Łt 28.01.2014 at 15:52:59,53
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\pcspeedup
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-2882767032-2900810182-58851670-1002\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440}



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\1clickdownload
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installedbrowserextensions
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\smarttweak
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\yahoopartnertoolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduitsearchscopes
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\pricegong
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\smartbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\dt soft\daemon tools toolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\1clickdownload
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskSLib_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskSLib_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskSLib_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskSLib_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{E8FF0535-1DBE-4183-BE09-98CAF94E5B78}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}



~~~ Files

Successfully deleted: [File] "C:\Windows\Tasks\pc speedup service deactivator.job"



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Aleç k\AppData\Roaming\opencandy"
Successfully deleted: [Folder] "C:\Users\Aleç k\appdata\local\conduit"
Successfully deleted: [Folder] "C:\Users\Aleç k\appdata\local\opencandy"
Successfully deleted: [Folder] "C:\Users\Aleç k\appdata\locallow\conduit"
Successfully deleted: [Folder] "C:\Program Files (x86)\conduit"
Successfully deleted: [Folder] "C:\Program Files (x86)\torntv.com"
Successfully deleted: [Folder] "C:\Users\Aleç k\AppData\Roaming\microsoft\windows\start menu\programs\torntv.com"
Successfully deleted: [Folder] "C:\Users\Aleç k\documents\pcspeedup"
Successfully deleted: [Empty Folder] C:\Users\Aleç k\appdata\local\{89FE0890-F386-4AEF-B091-9FAF6F381A4F}
Successfully deleted: [Empty Folder] C:\Users\Aleç k\appdata\local\{8EEDDDDC-E9EA-4B9E-8A7F-7D2F28338075}
Successfully deleted: [Empty Folder] C:\Users\Aleç k\appdata\local\{9D814DDF-7A71-4231-B77E-D301E4C2B865}
Successfully deleted: [Empty Folder] C:\Users\Aleç k\appdata\local\{C021F423-301A-42A8-803F-FA653590450B}
Successfully deleted: [Folder] "C:\ProgramData\ask"



~~~ FireFox

Successfully deleted: [File] C:\Users\Aleç k\AppData\Roaming\mozilla\firefox\profiles\zyukda3g.default\searchplugins\askcom.xml
Successfully deleted: [File] C:\Users\Aleç k\AppData\Roaming\mozilla\firefox\profiles\zyukda3g.default\searchplugins\askcomsearch.xml
Successfully deleted: [File] C:\Users\Aleç k\AppData\Roaming\mozilla\firefox\profiles\zyukda3g.default\searchplugins\conduit.xml
Successfully deleted: [Folder] C:\Users\Aleç k\AppData\Roaming\mozilla\firefox\profiles\zyukda3g.default\conduitcommon
Successfully deleted: [Folder] C:\Users\Aleç k\AppData\Roaming\mozilla\firefox\profiles\zyukda3g.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com
Successfully deleted the following from C:\Users\Aleç k\AppData\Roaming\mozilla\firefox\profiles\zyukda3g.default\prefs.js

user_pref("CT2786678..clientLogIsEnabled", true);
user_pref("CT2786678..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
user_pref("CT2786678..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
user_pref("CT2786678.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
user_pref("CT2786678.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
user_pref("CT2786678.AppTrackingLastCheckTime", "Mon Nov 19 2012 21:49:54 GMT+0100");
user_pref("CT2786678.BrowserCompStateIsOpen_129579220236217502", true);
user_pref("CT2786678.BrowserCompStateIsOpen_130067977588633691", true);
user_pref("CT2786678.BrowserCompStateIsOpen_1359634298000", true);
user_pref("CT2786678.CTID", "CT2786678");
user_pref("CT2786678.CurrentServerDate", "30-6-2013");
user_pref("CT2786678.DSChangedManually", true);
user_pref("CT2786678.DSInstall", true);
user_pref("CT2786678.DSProtectChoice", true);
user_pref("CT2786678.DSProtectCount", 2);
user_pref("CT2786678.DialogsAlignMode", "LTR");
user_pref("CT2786678.DialogsGetterLastCheckTime", "Sun Jun 30 2013 15:51:08 GMT+0200");
user_pref("CT2786678.DownloadReferralCookieData", "");
user_pref("CT2786678.EMailNotifierPollDate", "Tue Dec 20 2011 14:13:52 GMT+0100");
user_pref("CT2786678.FeedLastCount5690698542593514850", 158);
user_pref("CT2786678.FeedPollDate2429156812186649977", "Tue Dec 20 2011 14:13:53 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156813040823546", "Sat Dec 24 2011 20:00:35 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156813130095866", "Tue Dec 20 2011 14:13:52 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156813224203613", "Tue Dec 20 2011 14:13:52 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156813230837251", "Tue Dec 20 2011 14:13:53 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156813454291735", "Sat Dec 24 2011 20:00:35 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156813729834876", "Tue Dec 20 2011 14:13:52 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156813860870021", "Tue Dec 20 2011 14:13:53 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156814264681793", "Sat Dec 24 2011 20:00:35 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156814863075366", "Tue Dec 20 2011 14:13:53 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156815257761081", "Tue Dec 20 2011 14:13:52 GMT+0100");
user_pref("CT2786678.FeedTTL2429156813040823546", 15);
user_pref("CT2786678.FeedTTL2429156813130095866", 10);
user_pref("CT2786678.FeedTTL2429156813454291735", 5);
user_pref("CT2786678.FeedTTL2429156814264681793", 5);
user_pref("CT2786678.FirstServerDate", "20-12-2011");
user_pref("CT2786678.FirstTime", true);
user_pref("CT2786678.FirstTimeFF3", true);
user_pref("CT2786678.FixPageNotFoundErrors", true);
user_pref("CT2786678.GroupingServerCheckInterval", 1440);
user_pref("CT2786678.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
user_pref("CT2786678.HPInstall", true);
user_pref("CT2786678.HasUserGlobalKeys", true);
user_pref("CT2786678.HomePageProtectorEnabled", false);
user_pref("CT2786678.HomepageBeforeUnload", "hxxp://www.google.cz/");
user_pref("CT2786678.Initialize", true);
user_pref("CT2786678.InitializeCommonPrefs", true);
user_pref("CT2786678.InstallationAndCookieDataSentCount", 3);
user_pref("CT2786678.InstallationId", "ConduitXPEIntegration");
user_pref("CT2786678.InstallationType", "ConduitXPEIntegration");
user_pref("CT2786678.InstalledDate", "Tue Dec 20 2011 14:13:52 GMT+0100");
user_pref("CT2786678.IsAlertDBUpdated", true);
user_pref("CT2786678.IsGrouping", false);
user_pref("CT2786678.IsInitSetupIni", true);
user_pref("CT2786678.IsMulticommunity", false);
user_pref("CT2786678.IsOpenThankYouPage", true);
user_pref("CT2786678.IsOpenUninstallPage", false);
user_pref("CT2786678.IsProtectorsInit", true);
user_pref("CT2786678.LanguagePackLastCheckTime", "Sun Jun 30 2013 10:09:45 GMT+0200");
user_pref("CT2786678.LanguagePackReloadIntervalMM", 1440);
user_pref("CT2786678.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
user_pref("CT2786678.LastLogin_3.10.0.1", "Sat Apr 21 2012 12:03:27 GMT+0200");
user_pref("CT2786678.LastLogin_3.12.0.7", "Fri May 11 2012 11:44:35 GMT+0200");
user_pref("CT2786678.LastLogin_3.12.2.3", "Sat Jun 16 2012 22:12:34 GMT+0200");
user_pref("CT2786678.LastLogin_3.13.0.6", "Sat Jul 14 2012 12:38:20 GMT+0200");
user_pref("CT2786678.LastLogin_3.14.1.0", "Wed Sep 05 2012 23:04:43 GMT+0200");
user_pref("CT2786678.LastLogin_3.15.1.0", "Fri Nov 09 2012 11:53:17 GMT+0100");
user_pref("CT2786678.LastLogin_3.16.0.3", "Sun Feb 10 2013 16:31:56 GMT+0100");
user_pref("CT2786678.LastLogin_3.18.0.7", "Sun Jun 30 2013 22:06:30 GMT+0200");
user_pref("CT2786678.LastLogin_3.8.1.0", "Fri Jan 06 2012 16:34:23 GMT+0100");
user_pref("CT2786678.LastLogin_3.9.0.3", "Mon Mar 26 2012 10:28:03 GMT+0200");
user_pref("CT2786678.LatestVersion", "3.18.0.7");
user_pref("CT2786678.Locale", "en");
user_pref("CT2786678.MCDetectTooltipHeight", "83");
user_pref("CT2786678.MCDetectTooltipShow", false);
user_pref("CT2786678.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
user_pref("CT2786678.MCDetectTooltipWidth", "295");
user_pref("CT2786678.MyStuffEnabledAtInstallation", true);
user_pref("CT2786678.OriginalFirstVersion", "3.8.1.0");
user_pref("CT2786678.SHRINK_TOOLBAR", 1);
user_pref("CT2786678.SavedHomepage", "hxxp://www.google.cz/");
user_pref("CT2786678.SearchBoxWidth", 100);
user_pref("CT2786678.SearchCaption", "uTorrentBar Customized Web Search");
user_pref("CT2786678.SearchEngineBeforeUnload", "uTorrentBar Customized Web Search");
user_pref("CT2786678.SearchFromAddressBarIsInit", true);
user_pref("CT2786678.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&q=");
user_pref("CT2786678.SearchInNewTabEnabled", true);
user_pref("CT2786678.SearchInNewTabIntervalMM", 1440);
user_pref("CT2786678.SearchInNewTabLastCheckTime", "Sun Jun 30 2013 22:06:29 GMT+0200");
user_pref("CT2786678.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
user_pref("CT2786678.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usage.ashx?ctid=EB_TOOLBAR_ID");
user_pref("CT2786678.SearchProtectorEnabled", false);
user_pref("CT2786678.SearchProtectorToolbarDisabled", true);
user_pref("CT2786678.SendProtectorDataViaLogin", true);
user_pref("CT2786678.ServiceMapLastCheckTime", "Sun Jun 30 2013 18:45:37 GMT+0200");
user_pref("CT2786678.SettingsLastCheckTime", "Sun Jun 30 2013 10:09:42 GMT+0200");
user_pref("CT2786678.SettingsLastUpdate", "1372576959");
user_pref("CT2786678.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=13");
user_pref("CT2786678.ThirdPartyComponentsInterval", 504);
user_pref("CT2786678.ThirdPartyComponentsLastCheck", "Wed Jan 16 2013 06:24:34 GMT+0100");
user_pref("CT2786678.ThirdPartyComponentsLastUpdate", "1331805997");
user_pref("CT2786678.ToolbarDisabled", false);
user_pref("CT2786678.ToolbarShrinkedFromSetup", false);
user_pref("CT2786678.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2786678");
user_pref("CT2786678.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com
user_pref("CT2786678.UserID", "UN17415014701096421");
user_pref("CT2786678.ValidationData_Search", 2);
user_pref("CT2786678.ValidationData_Toolbar", 2);
user_pref("CT2786678.WeatherNetwork", "");
user_pref("CT2786678.WeatherPollDate", "Sat Dec 24 2011 20:40:35 GMT+0100");
user_pref("CT2786678.WeatherUnit", "C");
user_pref("CT2786678.alertChannelId", "1178763");
user_pref("CT2786678.approveUntrustedApps", false);
user_pref("CT2786678.autoDisableScopes", -1);
user_pref("CT2786678.backendstorage./9b+7e+x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e,x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e-x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e.:2z527", "2423");
user_pref("CT2786678.backendstorage./9b+7e.x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e/x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e06cg5el8:", "6E6D6B6D6C706F746E73");
user_pref("CT2786678.backendstorage./9b+7e06cg5el;8i:k", "247E2D2F226A747371737276757A7479242F4B49474F42357D5D5C3D");
user_pref("CT2786678.backendstorage./9b+7e0x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e1x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e2x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e3x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e4x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e5x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e6x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e7x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e8x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e9x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e:x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e;x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e<x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e=x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e>x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e?x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e@x305", "2423");
user_pref("CT2786678.backendstorage./9b+7eax305", "2423");
user_pref("CT2786678.backendstorage./9b+7ebe3g=;d9n9=d", "372C2D326975762E3A3C7B3A39434A494841434B265146492965504656496571734D337D56545138505C");
user_pref("CT2786678.backendstorage./9b+7ebx305", "2423");
user_pref("CT2786678.backendstorage./9b+7ecx305", "2423");
user_pref("CT2786678.backendstorage./9b+7edx305", "2423");
user_pref("CT2786678.backendstorage./9b+7etx305", "2423");
user_pref("CT2786678.backendstorage./9b-0?3g>d", "6A3C3D3F407144447A4571477620494D2077254D527D242A215755275A595A295D5D2D5C");
user_pref("CT2786678.backendstorage./9b-0?3g@6:5;", "");
user_pref("CT2786678.backendstorage./9b-0?3gfa7ef", "2B2E2C3D");
user_pref("CT2786678.backendstorage./9b-3=3eccja=f>", "247E333D2C452F4135276F297B7E7D21202F26313E4249357D37382F3A494D5D513F283338435D6554695B65546D57695D5D686365533C70766C6675
user_pref("CT2786678.backendstorage./9b/>01=9a6k6<im;krie@pdawm", "6E6A68707374757677");
user_pref("CT2786678.backendstorage./9b3=>@44i48?", "372C2D326975763342363341484778213F3E484F4E4D4648502B564B4E2E5959595F4C564F3764535750");
user_pref("CT2786678.backendstorage./9b5ba==9cjag", "3B3D3F6D404170727A7348737475474A4B20507E4F");
user_pref("CT2786678.backendstorage./9b6b11g4c56b>f;p;anr@p", "6E6D6B6D6C706F746F74747874");
user_pref("CT2786678.backendstorage./9b9643g3/9e", "6A");
user_pref("CT2786678.backendstorage./9b;45>:bi9i7ie", "2B2E2C3D");
user_pref("CT2786678.backendstorage./9b<:222h64<", "393F352F3E");
user_pref("CT2786678.backendstorage./9b<:222h64<l8daj", "6D70706F7674717976762A7A7672787675207C");
user_pref("CT2786678.backendstorage./9b=+03eh8h8j?:", "4443");
user_pref("CT2786678.backendstorage./9b?+e2a52d8", "372C2D326975762E3A3C7B3A39434A494841434B2651464929655046566470727951555E5E52");
user_pref("CT2786678.backendstorage./9b?b0d:8aj62<h", "6D");
user_pref("CT2786678.backendstorage./9ba@0<0bi6a7gn:6@l?", "6E6B");
user_pref("CT2786678.backendstorage.cbfirsttime", "5475652044656320323020323031312031343A31333A353820474D542B30313030");
user_pref("CT2786678.backendstorage.facebook_mode", "32");
user_pref("CT2786678.backendstorage.facebook_user_locale", "656E");
user_pref("CT2786678.backendstorage.mam_gk_appsdata", "7B2261707073223A5B7B226964223A225072696365476F6E67222C2275726C223A22687474703A2F2F7072696365676F6E672E636F6E647569746170
user_pref("CT2786678.backendstorage.mam_gk_appsdefaultenabled", "74727565");
user_pref("CT2786678.backendstorage.mam_gk_appstate_couponbuddy", "6F6E");
user_pref("CT2786678.backendstorage.mam_gk_appstate_pricegong", "6F6E");
user_pref("CT2786678.backendstorage.mam_gk_appstatereporttime", "31333635383530353437393337");
user_pref("CT2786678.backendstorage.mam_gk_configuration", "7B22636F6E66696775726174696F6E223A5B7B226964223A22436F75706F6E4275646479222C22637269746572696173223A5B7B22637269746
user_pref("CT2786678.backendstorage.mam_gk_currentversion", "312E342E342E36");
user_pref("CT2786678.backendstorage.mam_gk_first_time", "31");
user_pref("CT2786678.backendstorage.mam_gk_lastlogintime", "31333635383530353437393335");
user_pref("CT2786678.backendstorage.mam_gk_localization", "7B22676164676574436F6E74656E74506F6C696379223A7B2254657874223A22436F6E74656E7420506F6C696379227D2C226761646765744465
user_pref("CT2786678.backendstorage.mam_gk_settings1.4.4.6", "7B22537461747573223A22737563636565646564222C2244617461223A7B22696E74657276616C223A3234302C227374616D70223A2232313
user_pref("CT2786678.backendstorage.mam_gk_showclosebutton", "74727565");
user_pref("CT2786678.backendstorage.mam_gk_showwelcomegadget", "66616C7365");
user_pref("CT2786678.backendstorage.mam_gk_userid", "65306230333838322D376363662D346437622D383966662D656333396435636465656533");
user_pref("CT2786678.backendstorage.pairingkey", "41344231363033343242463637424641424441363234383942373138444342393142413533464445");
user_pref("CT2786678.backendstorage.pg_enable", "74727565");
user_pref("CT2786678.backendstorage.scriptsource", "687474703A2F2F3132372E302E302E313A31303030302F6775692F");
user_pref("CT2786678.backendstorage.searchappstate", "31");
user_pref("CT2786678.backendstorage.searchapptracking", "31");
user_pref("CT2786678.backendstorage.url_history0001", "687474703A2F2F7777772E66616365626F6F6B2E636F6D2F3F7265663D746E5F746E6D6E3A3A3A636C69636B68616E646C65723A3A3A313336353736
user_pref("CT2786678.backendstorage.uttorrents", "7B226275696C64223A32353832342C226C6162656C223A5B5D2C22746F7272656E7473223A5B5B22334134424531443438433331444641363242463532393
user_pref("CT2786678.components.1000034", false);
user_pref("CT2786678.components.1000234", false);
user_pref("CT2786678.components.129295698017012804", false);
user_pref("CT2786678.components.129309485163350924", false);
user_pref("CT2786678.components.129309489763975460", false);
user_pref("CT2786678.components.129315411424256896", false);
user_pref("CT2786678.components.129526967958500204", false);
user_pref("CT2786678.components.129579220236217502", false);
user_pref("CT2786678.components.129789450454597254", false);
user_pref("CT2786678.components.5690698542593514850", false);
user_pref("CT2786678.globalFirstTimeInfoLastCheckTime", "Mon Jan 28 2013 13:28:16 GMT+0100");
user_pref("CT2786678.homepageProtectorEnableByLogin", true);
user_pref("CT2786678.initDone", true);
user_pref("CT2786678.isAppTrackingManagerOn", false);
user_pref("CT2786678.myStuffEnabled", true);
user_pref("CT2786678.myStuffPublihserMinWidth", 400);
user_pref("CT2786678.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
user_pref("CT2786678.myStuffServiceIntervalMM", 1440);
user_pref("CT2786678.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
user_pref("CT2786678.oldAppsList", "129295695672325902,129295695672325903,1000234,129789450454597254,1000034,129526967958500204,129309489763975460,5690698542593514850,12930948
user_pref("CT2786678.revertSettingsEnabled", true);
user_pref("CT2786678.searchProtectorDialogDelayInSec", 10);
user_pref("CT2786678.searchProtectorEnableByLogin", true);
user_pref("CT2786678.testingCtid", "");
user_pref("CT2786678.toolbarAppMetaDataLastCheckTime", "Sun Jun 30 2013 13:08:16 GMT+0200");
user_pref("CT2786678.toolbarContextMenuLastCheckTime", "Wed Jan 16 2013 06:24:35 GMT+0100");
user_pref("CT2786678.usagesFlag", 2);
user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=13");
user_pref("CommunityToolbar.ConduitSearchList", "uTorrentBar Customized Web Search");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=en", "C5ZJe6gL80JBW5CuLy+wkg==");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=en", "mfQ70fvlD2zuBxSBj8rQqA==");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=en", "k9un27OkAvkwB2ZmvXxTnA==");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=en", "4BgM4MhF/sOgPsDNmIs3Yw==");
user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Aleaák\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\zyukda3g.default\\conduitCommon\\modules\\3.16.0.3");
user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.16.0.3");
user_pref("CommunityToolbar.MiniIPageGadgetSize.hxxp://facebook.conduitapps.com/v3.13/gadget.html", "670x469");
user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
user_pref("CommunityToolbar.ToolbarsList", "CT2786678");
user_pref("CommunityToolbar.ToolbarsList2", "CT2786678");
user_pref("CommunityToolbar.ToolbarsList4", "CT2786678");
user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Sat Dec 24 2011 16:42:20 GMT+0100");
user_pref("CommunityToolbar.globalUserId", "b36b1c1c-5c9e-4706-9c01-c7c7a0d2d741");
user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2786678");
user_pref("CommunityToolbar.originalHomepage", "hxxp://www.google.cz/");
user_pref("CommunityToolbar.originalSearchEngine", "Ask.com");
user_pref("browser.search.defaultthis.engineName", "uTorrentBar Customized Web Search");
user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&SearchSource=3&q={searchTerms}");
user_pref("extensions.crossrider.bic", "142cc7e8a445adcbf0d2dd06571c1735");
Emptied folder: C:\Users\Aleç k\AppData\Roaming\mozilla\firefox\profiles\zyukda3g.default\minidumps [112 files]



~~~ Chrome

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [Blacklisted Policy]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Łt 28.01.2014 at 16:03:20,69
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[Ales]

zasílám 3. krok

# AdwCleaner v3.017 - Report created 28/01/2014 at 16:19:33
# Updated 12/01/2014 by Xplode
# Operating System : Windows 7 Home Premium (64 bits)
# Username : Alešák - RAKETA
# Running from : C:\Users\Alešák\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : pcsuservice

***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files (x86)\Gophoto.it
Folder Deleted : C:\Program Files (x86)\Mobogenie
Folder Deleted : C:\Users\Aleš\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Alešák\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Alešák\AppData\Local\PackageAware
Folder Deleted : C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Folder Deleted : C:\Users\Alešák\Documents\Mobogenie
File Deleted : C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\gophoto@gophoto.it.xpi
File Deleted : C:\Users\Aleš\AppData\Roaming\Mozilla\Firefox\Profiles\79qvq2td.default\user.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Classes\pokki
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ISOS_is1
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [CPMODUpdater]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B89F5C49-51DB-4974-AB5A-E25901AA339C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E9B5B0D2-D08A-49FC-8B5C-159B60BAA268}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie
Key Deleted : [x64] HKLM\SOFTWARE\Speedchecker Limited

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7600.17267


-\\ Mozilla Firefox v26.0 (cs)

[ File : C:\Users\Aleš\AppData\Roaming\Mozilla\Firefox\Profiles\79qvq2td.default\prefs.js ]

Line Deleted : user_pref("browser.search.selectedEngine", "Ask.com");
Line Deleted : user_pref("browser.search.order.1", "Ask.com");
Line Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Line Deleted : user_pref("browser.search.defaultenginename", "Ask.com");
Line Deleted : user_pref("extensions.asktb.ff-original-keyword-url", "");

[ File : C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\prefs.js ]

Line Deleted : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Aleaák\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\zyukda3g.default\\conduitCommon\\modules\\3.16.0.3");
Line Deleted : user_pref("extensions.enabledItems", "{B7082FAA-CB62-4872-9106-E42DD88EDE45}:2.8,{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22,toolbar@ask.com:3.11.3.15590,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.1[...]

-\\ Google Chrome v

[ File : C:\Users\Alešák\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage

*************************

AdwCleaner[R0].txt - [3458 octets] - [28/01/2014 16:07:47]
AdwCleaner[S0].txt - [3421 octets] - [28/01/2014 16:19:33]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3481 octets] ##########

[vyosek]

Poprosim o novy log z FRSTLauncheru

[Ales]

Přeposílám:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-01-2014
Ran by Alešák (administrator) on RAKETA on 29-01-2014 08:46:13
Running from C:\Users\Alešák\Desktop
Windows 7 Home Premium (X64) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(The Firebird Project) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe
() C:\Program Files (x86)\Kooperativa\Services\KoopPDFServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
() C:\Windows\SysWOW64\Rezip.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Gemfor s.r.o.) C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
(The Firebird Project) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbserver.exe
(SAMSUNG Electronics) C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
(SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard Company) C:\Program Files\HP\HP LaserJet Professional M1530 MFP Series\Fax Driver\hppfaxprintersrv.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Gemfor s.r.o.) C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Users\Alešák\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Oracle Corporation) C:\Windows\System32\javaw.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Unicorn Systems) C:\Program Files (x86)\ČP\CPMODUpdater\CPMODUpdater.exe
() C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [NvCplDaemon] - C:\Windows\system32\NvCpl.dll [17412200 2010-05-05] (NVIDIA Corporation)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10144288 2010-04-07] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2074408 2010-02-26] (Synaptics Incorporated)
HKLM\...\Run: [HP LaserJet Professional M1530 MFP Series Fax] - C:\Program Files\HP\HP LaserJet Professional M1530 MFP Series\Fax Driver\hppfaxprintersrv.exe [3707704 2010-04-09] (Hewlett-Packard Company)
HKLM-x32\...\Run: [NortonOnlineBackup] - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1112920 2010-03-05] (Symantec Corporation)
HKLM-x32\...\Run: [UpdateLBPShortCut] - C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-06-03] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] - C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePDRShortCut] - C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl8] - C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [PDVD8LanguageShortcut] - C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePPShortCut] - C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePSTShortCut] - C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2009-07-21] (CyberLink Corp.)
HKLM-x32\...\Run: [UCam_Menu] - C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [ToolboxFX] - C:\Program Files (x86)\HP\ToolboxFX\bin\HPTLBXFX.exe [58936 2010-04-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [38872 2012-07-31] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-01-27] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Alešák\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-04-21] (Google Inc.)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
HKCU\...\Run: [T-Mobile Communication Centre] - C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [1355792 2011-03-08] (Gemfor s.r.o.)
HKCU\...\Run: [SkyDrive] - C:\Users\Alešák\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257136 2013-10-10] (Microsoft Corporation)
HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
MountPoints2: {5a8107c0-deb4-11e0-bad5-806e6f6e6963} - F:\autorun.exe
MountPoints2: {6e6944c3-ad6c-11e2-b14c-4cedde7eda5b} - G:\HPLauncher.exe
MountPoints2: {a7801c07-a264-11e2-ac23-4cedde7eda5b} - G:\AutoRun.exe
HKU\Aleš\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [95848 2010-05-06] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [90216 2010-05-06] (NVIDIA Corporation)
Startup: C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Kooperativa - PDF Server.lnk
ShortcutTarget: Kooperativa - PDF Server.lnk -> C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung.msn.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://samsung.msn.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default
FF NewTab: www.google.com
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: www.google.com
FF Keyword.URL: hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Alešák\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Alešák\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Torntv V6.0 - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com [2014-01-28]
FF HKLM-x32\...\Firefox\Extensions: [{B7082FAA-CB62-4872-9106-E42DD88EDE45}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2010-11-18]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-01-27]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "www.google.com"
CHR DefaultSearchURL: {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Users\Alešák\AppData\Local\Google\Chrome\Application\32.0.1700.76\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.220.4) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U22) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.0.60129.0\npctrl.dll No File
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Alešák\AppData\Local\Google\Chrome\Application\32.0.1700.76\pdf.dll ()
CHR Plugin: (Google Gears 0.5.33.0) - C:\Users\Alešák\AppData\Local\Google\Chrome\Application\32.0.1700.76\gears.dll No File
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Alešák\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (avast! Online Security) - C:\Users\Alešák\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-01-27]
CHR Extension: (Google Wallet) - C:\Users\Alešák\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-26]
CHR HKLM-x32\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\ALEK~1\AppData\Local\Temp\ccex.crx [2013-11-26]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-01-27]
CHR StartMenuInternet: Google Chrome - C:\Users\Alešák\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

R2 ameisvc; C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe [122608 2011-03-08] (Gemfor s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-27] (AVAST Software)
R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe [65536 2009-10-06] (The Firebird Project)
R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbserver.exe [1532000 2009-10-06] (The Firebird Project)
R2 KoopPdfService; C:\Program Files (x86)\Kooperativa\Services\KoopPDFServer.exe [2454016 2012-11-20] ()
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [203280 2009-01-23] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2782552 2010-03-05] (Symantec Corporation)
R2 Rezip; C:\Windows\SysWOW64\Rezip.exe [311296 2009-03-05] ()
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-07-07] ()

==================== Drivers (Whitelisted) ====================

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-27] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2014-01-27] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-01-27] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-01-27] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-01-27] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-01-27] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-01-27] ()
S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [53816 2009-03-07] (Samsung Electronics Co., Ltd.)
S3 Huawei; C:\Windows\System32\DRIVERS\ewdcsc.sys [29696 2009-12-15] (Huawei Tech. Co., Ltd.)
S3 hwusbdev; C:\Windows\System32\DRIVERS\ewusbdev.sys [114304 2009-12-15] (Huawei Technologies Co., Ltd.)
S3 rtport; C:\Windows\SysWOW64\drivers\rtport.sys [15144 2011-01-13] (Windows (R) 2003 DDK 3790 provider)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564792 2012-02-19] (Duplex Secure Ltd.)
R2 SSPORT; C:\Windows\SysWOW64\Drivers\SSPORT.sys [11576 2009-10-28] (Samsung Electronics)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
U3 auncmew6; C:\Windows\System32\Drivers\auncmew6.sys [0 ] (Advanced Micro Devices)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [243200 2009-12-15] (Huawei Technologies Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-29 08:42 - 2014-01-29 08:42 - 00000000 ____D C:\Users\Alešák\Desktop\FRST-OlderVersion
2014-01-28 16:07 - 2014-01-28 16:19 - 00000000 ____D C:\AdwCleaner
2014-01-28 16:07 - 2014-01-28 16:07 - 01236282 _____ C:\Users\Alešák\Desktop\adwcleaner.exe
2014-01-28 16:03 - 2014-01-28 16:03 - 00024989 _____ C:\Users\Alešák\Desktop\JRT.txt
2014-01-28 15:52 - 2014-01-28 15:52 - 00000000 ____D C:\Windows\ERUNT
2014-01-28 15:51 - 2014-01-28 15:52 - 01037068 _____ (Thisisu) C:\Users\Alešák\Desktop\JRT.exe
2014-01-27 22:27 - 2014-01-28 16:23 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2014-01-27 22:27 - 2014-01-27 22:27 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-01-27 22:27 - 2014-01-27 22:27 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\AVAST Software
2014-01-27 22:27 - 2014-01-27 22:26 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-01-27 22:27 - 2014-01-27 22:26 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-01-27 22:27 - 2014-01-27 22:26 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-01-27 22:27 - 2014-01-27 22:26 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2014-01-27 22:27 - 2014-01-27 22:26 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-01-27 22:27 - 2014-01-27 22:26 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-01-27 22:27 - 2014-01-27 22:26 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-01-27 22:27 - 2014-01-27 22:26 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2014-01-27 22:26 - 2014-01-27 22:26 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-01-27 22:26 - 2014-01-27 22:26 - 00000000 ____D C:\Program Files\AVAST Software
2014-01-27 22:25 - 2014-01-27 22:25 - 00000000 ____D C:\ProgramData\AVAST Software
2014-01-27 22:21 - 2014-01-27 22:25 - 90582312 _____ (AVAST Software) C:\Users\Alešák\Desktop\avast_free_antivirus_setup_rcn.exe
2014-01-27 10:03 - 2014-01-29 08:44 - 00034393 _____ C:\Users\Alešák\Desktop\Addition.txt
2014-01-27 09:59 - 2014-01-27 09:59 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\TeamViewer
2014-01-27 09:28 - 2014-01-27 09:28 - 00006937 _____ C:\Users\Alešák\Desktop\Addition.zip
2014-01-27 09:22 - 2014-01-29 08:46 - 00023438 _____ C:\Users\Alešák\Desktop\FRST.txt
2014-01-27 09:22 - 2014-01-29 08:46 - 00000000 ____D C:\FRST
2014-01-27 09:19 - 2014-01-29 08:42 - 02079744 _____ (Farbar) C:\Users\Alešák\Desktop\FRST64.exe
2014-01-27 09:14 - 2014-01-27 09:14 - 00001162 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-27 09:14 - 2014-01-27 09:14 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-27 09:12 - 2014-01-27 09:12 - 07243968 _____ (TeamViewer GmbH) C:\Users\Alešák\Desktop\TeamViewer_Setup.exe
2014-01-24 07:44 - 2014-01-24 07:44 - 05934592 _____ C:\Users\Alešák\Documents\PriMa_OVB_tpl_v1 01.xls
2014-01-22 13:55 - 2014-01-22 13:55 - 00003059 _____ C:\Users\Alešák\Desktop\OVB Simulace.lnk
2014-01-22 13:55 - 2014-01-22 13:55 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Simulace_2009
2014-01-17 08:10 - 2014-01-17 08:10 - 00005175 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-17 08:10 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-17 08:10 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-17 08:10 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-17 08:10 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-16 23:55 - 2014-01-28 16:20 - 00006626 _____ C:\Windows\PFRO.log
2014-01-04 08:34 - 2014-01-04 08:35 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\KA10
2014-01-04 08:32 - 2014-01-04 08:35 - 00000000 ____D C:\Program Files (x86)\KA10
2014-01-04 08:32 - 2014-01-04 08:32 - 00001883 _____ C:\Users\Public\Desktop\Autopojištění 2012.lnk
2014-01-04 08:32 - 2014-01-04 08:32 - 00000000 ____D C:\Data-KA10
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2014-01-04 08:18 - 2014-01-23 18:56 - 01853986 _____ C:\Users\Alešák\Desktop\21282_65379_PriMa_3G_v2_00.xlsm
2014-01-02 13:35 - 2014-01-14 18:03 - 06427049 _____ C:\Users\Alešák\Desktop\Mercury Mini.xlsm
2014-01-02 13:35 - 2014-01-02 13:35 - 06709953 _____ C:\Users\Alešák\Desktop\Mercury.xlsm

==================== One Month Modified Files and Folders =======

2014-01-29 08:46 - 2014-01-27 09:22 - 00023438 _____ C:\Users\Alešák\Desktop\FRST.txt
2014-01-29 08:46 - 2014-01-27 09:22 - 00000000 ____D C:\FRST
2014-01-29 08:45 - 2011-10-13 10:27 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-29 08:45 - 2011-07-21 18:23 - 00003966 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{2C8BAA35-73CA-407A-AA43-E1F11B8833AB}
2014-01-29 08:44 - 2014-01-27 10:03 - 00034393 _____ C:\Users\Alešák\Desktop\Addition.txt
2014-01-29 08:42 - 2014-01-29 08:42 - 00000000 ____D C:\Users\Alešák\Desktop\FRST-OlderVersion
2014-01-29 08:42 - 2014-01-27 09:19 - 02079744 _____ (Farbar) C:\Users\Alešák\Desktop\FRST64.exe
2014-01-29 08:32 - 2012-12-18 13:45 - 00000000 ____D C:\Users\Alešák\Documents\Soubory aplikace Outlook
2014-01-29 08:14 - 2009-07-14 05:45 - 00014144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-29 08:14 - 2009-07-14 05:45 - 00014144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-29 08:12 - 2011-04-21 11:55 - 00000966 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002UA.job
2014-01-29 08:12 - 2011-04-21 11:55 - 00000914 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002Core.job
2014-01-29 08:09 - 2010-11-19 02:32 - 01979292 _____ C:\Windows\WindowsUpdate.log
2014-01-29 08:03 - 2013-12-07 10:57 - 00002174 _____ C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job
2014-01-29 07:58 - 2013-12-07 10:57 - 00001298 _____ C:\Windows\Tasks\Torntv V6.0-updater.job
2014-01-29 07:58 - 2012-04-03 17:43 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-28 17:26 - 2012-01-03 18:19 - 00011268 _____ C:\Users\Alešák\AppData\Roaming\SmarThruOptions.xml
2014-01-28 16:24 - 2013-10-10 14:14 - 00000000 ___RD C:\Users\Alešák\SkyDrive
2014-01-28 16:23 - 2014-01-27 22:27 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2014-01-28 16:22 - 2011-03-29 20:53 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2014-01-28 16:21 - 2011-10-13 10:27 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-28 16:20 - 2014-01-16 23:55 - 00006626 _____ C:\Windows\PFRO.log
2014-01-28 16:20 - 2013-12-13 18:21 - 00002972 _____ C:\Windows\setupact.log
2014-01-28 16:20 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-28 16:19 - 2014-01-28 16:07 - 00000000 ____D C:\AdwCleaner
2014-01-28 16:07 - 2014-01-28 16:07 - 01236282 _____ C:\Users\Alešák\Desktop\adwcleaner.exe
2014-01-28 16:03 - 2014-01-28 16:03 - 00024989 _____ C:\Users\Alešák\Desktop\JRT.txt
2014-01-28 15:52 - 2014-01-28 15:52 - 00000000 ____D C:\Windows\ERUNT
2014-01-28 15:52 - 2014-01-28 15:51 - 01037068 _____ (Thisisu) C:\Users\Alešák\Desktop\JRT.exe
2014-01-28 15:21 - 2013-12-07 10:59 - 00023735 _____ C:\Users\Alešák\daemonprocess.txt
2014-01-28 08:10 - 2013-12-05 22:05 - 00000000 ____D C:\Program Files (x86)\Zrychleni Pocitace
2014-01-27 23:19 - 2013-12-07 10:57 - 00000000 ____D C:\Program Files (x86)\Torntv V6.0
2014-01-27 22:27 - 2014-01-27 22:27 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-01-27 22:27 - 2014-01-27 22:27 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\AVAST Software
2014-01-27 22:26 - 2014-01-27 22:27 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-01-27 22:26 - 2014-01-27 22:27 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-01-27 22:26 - 2014-01-27 22:27 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-01-27 22:26 - 2014-01-27 22:27 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2014-01-27 22:26 - 2014-01-27 22:27 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-01-27 22:26 - 2014-01-27 22:27 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-01-27 22:26 - 2014-01-27 22:27 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-01-27 22:26 - 2014-01-27 22:27 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2014-01-27 22:26 - 2014-01-27 22:26 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-01-27 22:26 - 2014-01-27 22:26 - 00000000 ____D C:\Program Files\AVAST Software
2014-01-27 22:25 - 2014-01-27 22:25 - 00000000 ____D C:\ProgramData\AVAST Software
2014-01-27 22:25 - 2014-01-27 22:21 - 90582312 _____ (AVAST Software) C:\Users\Alešák\Desktop\avast_free_antivirus_setup_rcn.exe
2014-01-27 10:32 - 2010-11-19 03:23 - 00666672 _____ C:\Windows\system32\perfh005.dat
2014-01-27 10:32 - 2010-11-19 03:23 - 00140336 _____ C:\Windows\system32\perfc005.dat
2014-01-27 10:32 - 2009-07-14 06:13 - 01577482 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-27 10:09 - 2011-03-30 08:40 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\vlc
2014-01-27 09:59 - 2014-01-27 09:59 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\TeamViewer
2014-01-27 09:58 - 2011-03-29 21:48 - 00114776 _____ C:\Users\Alešák\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-27 09:56 - 2009-07-14 05:45 - 00429976 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-27 09:28 - 2014-01-27 09:28 - 00006937 _____ C:\Users\Alešák\Desktop\Addition.zip
2014-01-27 09:14 - 2014-01-27 09:14 - 00001162 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-27 09:14 - 2014-01-27 09:14 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-27 09:12 - 2014-01-27 09:12 - 07243968 _____ (TeamViewer GmbH) C:\Users\Alešák\Desktop\TeamViewer_Setup.exe
2014-01-24 07:44 - 2014-01-24 07:44 - 05934592 _____ C:\Users\Alešák\Documents\PriMa_OVB_tpl_v1 01.xls
2014-01-23 18:56 - 2014-01-04 08:18 - 01853986 _____ C:\Users\Alešák\Desktop\21282_65379_PriMa_3G_v2_00.xlsm
2014-01-22 14:48 - 2011-03-29 21:02 - 00000000 ____D C:\Users\Alešák\Desktop\Kalkulačka
2014-01-22 13:55 - 2014-01-22 13:55 - 00003059 _____ C:\Users\Alešák\Desktop\OVB Simulace.lnk
2014-01-22 13:55 - 2014-01-22 13:55 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Simulace_2009
2014-01-17 08:10 - 2014-01-17 08:10 - 00005175 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-17 08:10 - 2013-11-26 12:53 - 00000000 ____D C:\ProgramData\Oracle
2014-01-17 08:10 - 2011-03-30 08:29 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-16 11:22 - 2011-03-28 14:43 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-16 11:22 - 2009-07-14 03:34 - 00000510 _____ C:\Windows\win.ini
2014-01-16 11:12 - 2013-07-14 12:05 - 00000000 ____D C:\Windows\system32\MRT
2014-01-16 07:41 - 2011-04-12 16:22 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-14 18:03 - 2014-01-02 13:35 - 06427049 _____ C:\Users\Alešák\Desktop\Mercury Mini.xlsm
2014-01-12 20:54 - 2011-03-29 20:59 - 00000000 ____D C:\Users\Alešák\Documents\Složka Bluetooth Exchange
2014-01-08 16:46 - 2013-10-02 12:38 - 07555584 _____ C:\Users\Alešák\Desktop\Conseq_kalkulace_OVB_2011_5.xls
2014-01-04 08:35 - 2014-01-04 08:34 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\KA10
2014-01-04 08:35 - 2014-01-04 08:32 - 00000000 ____D C:\Program Files (x86)\KA10
2014-01-04 08:32 - 2014-01-04 08:32 - 00001883 _____ C:\Users\Public\Desktop\Autopojištění 2012.lnk
2014-01-04 08:32 - 2014-01-04 08:32 - 00000000 ____D C:\Data-KA10
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2014-01-03 13:54 - 2013-02-10 19:22 - 00001094 _____ C:\Users\Alešák\Desktop\Kooperativa - Perspektiva 7BN Extern.lnk
2014-01-02 13:54 - 2012-05-14 06:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-02 13:35 - 2014-01-02 13:35 - 06709953 _____ C:\Users\Alešák\Desktop\Mercury.xlsm
2013-12-31 14:10 - 2011-04-05 21:36 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Generali pojišťovna
2013-12-31 14:08 - 2013-06-14 14:16 - 00000000 ____D C:\GEN

Some content of TEMP:
====================
C:\Users\Aleš\AppData\Local\Temp\MSNCDBC.exe
C:\Users\Aleš\AppData\Local\Temp\ose00000.exe
C:\Users\Alešák\AppData\Local\Temp\evrecqjj.dll
C:\Users\Alešák\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Alešák\AppData\Local\Temp\m2am0vyt.dll
C:\Users\Alešák\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-01 13:29

==================== End Of Log ============================

[vyosek]

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  HKLM-x32\...\Run: [UpdateLBPShortCut] - C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
  HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-06-03] (CyberLink)
  HKLM-x32\...\Run: [UpdateP2GoShortCut] - C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
  HKLM-x32\...\Run: [UpdatePDRShortCut] - C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
  HKLM-x32\...\Run: [RemoteControl8] - C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-04-15] (CyberLink Corp.)
  HKLM-x32\...\Run: [PDVD8LanguageShortcut] - C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
  HKLM-x32\...\Run: [UpdatePPShortCut] - C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
  HKLM-x32\...\Run: [UpdatePSTShortCut] - C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2009-07-21] (CyberLink Corp.)
  HKLM-x32\...\Run: [UCam_Menu] - C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
  HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
  HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [38872 2012-07-31] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-11] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
  HKCU\...\Run: [Google Update] - C:\Users\Alešák\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-04-21] (Google Inc.)
  HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
  HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
  MountPoints2: {5a8107c0-deb4-11e0-bad5-806e6f6e6963} - F:\autorun.exe
  MountPoints2: {6e6944c3-ad6c-11e2-b14c-4cedde7eda5b} - G:\HPLauncher.exe
  MountPoints2: {a7801c07-a264-11e2-ac23-4cedde7eda5b} - G:\AutoRun.exe
  HKU\Aleš\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
  Startup: C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Kooperativa - PDF Server.lnk
  
  HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung.msn.com
  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://samsung.msn.com
  BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
  BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
  BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
  Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
  Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
  Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
  Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
  
  FF Keyword.URL: hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
  FF NetworkProxy: "type", 0
  FF Extension: Torntv V6.0 - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com [2014-01-28]
  FF HKLM-x32\...\Firefox\Extensions: [{B7082FAA-CB62-4872-9106-E42DD88EDE45}] - C:\Program Files (x86)\McAfee\SiteAdvisor
  FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2010-11-18]
  FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
  
  CHR HKLM-x32\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\ALEK~1\AppData\Local\Temp\ccex.crx [2013-11-26]
  
  R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [203280 2009-01-23] ()
  S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
  
  C:\Program Files\McAfee Security Scan
  C:\Program Files (x86)\McAfee
  2014-01-29 08:42 - 2014-01-29 08:42 - 00000000 ____D C:\Users\Alešák\Desktop\FRST-OlderVersion
  2014-01-28 16:07 - 2014-01-28 16:07 - 01236282 _____ C:\Users\Alešák\Desktop\adwcleaner.exe
  2014-01-28 16:03 - 2014-01-28 16:03 - 00024989 _____ C:\Users\Alešák\Desktop\JRT.txt
  2014-01-28 15:51 - 2014-01-28 15:52 - 01037068 _____ (Thisisu) C:\Users\Alešák\Desktop\JRT.exe
  2014-01-27 22:21 - 2014-01-27 22:25 - 90582312 _____ (AVAST Software) C:\Users\Alešák\Desktop\avast_free_antivirus_setup_rcn.exe
  2014-01-27 09:28 - 2014-01-27 09:28 - 00006937 _____ C:\Users\Alešák\Desktop\Addition.zip
  2014-01-27 09:22 - 2014-01-29 08:46 - 00023438 _____ C:\Users\Alešák\Desktop\FRST.txt
  2014-01-28 08:10 - 2013-12-05 22:05 - 00000000 ____D C:\Program Files (x86)\Zrychleni Pocitace
  2014-01-27 23:19 - 2013-12-07 10:57 - 00000000 ____D C:\Program Files (x86)\Torntv V6.0
  C:\Users\Aleš\AppData\Local\Temp\MSNCDBC.exe
  C:\Users\Aleš\AppData\Local\Temp\ose00000.exe
  C:\Users\Alešák\AppData\Local\Temp\evrecqjj.dll
  C:\Users\Alešák\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
  C:\Users\Alešák\AppData\Local\Temp\m2am0vyt.dll
  C:\Users\Alešák\AppData\Local\Temp\Quarantine.exe
  
  Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002Core.job => C:\Users\Aleaák\AppData\Local\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002UA.job => C:\Users\Aleaák\AppData\Local\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\PC SpeedUp Service Deactivator.job => C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe
  Task: C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-firefoxinstaller.exe <==== ATTENTION
  Task: C:\Windows\Tasks\Torntv V6.0-updater.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-updater.exe <==== ATTENTION
  
  AlternateDataStreams: C:\ProgramData\Temp:4CF61E54
  AlternateDataStreams: C:\ProgramData\Temp:798A3728
  AlternateDataStreams: C:\ProgramData\Temp:E36F5B57
  AlternateDataStreams: C:\ProgramData\Temp:E7BA7168
  
  Hosts:
  CMD: shutdown /r /f /t 2
  
  End

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[Ales]

přikládám:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 29-01-2014
Ran by Alešák at 2014-01-29 13:20:11 Run:1
Running from C:\Users\Alešák\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM-x32\...\Run: [UpdateLBPShortCut] - C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-06-03] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] - C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePDRShortCut] - C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl8] - C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [PDVD8LanguageShortcut] - C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePPShortCut] - C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePSTShortCut] - C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2009-07-21] (CyberLink Corp.)
HKLM-x32\...\Run: [UCam_Menu] - C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [38872 2012-07-31] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Alešák\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-04-21] (Google Inc.)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
MountPoints2: {5a8107c0-deb4-11e0-bad5-806e6f6e6963} - F:\autorun.exe
MountPoints2: {6e6944c3-ad6c-11e2-b14c-4cedde7eda5b} - G:\HPLauncher.exe
MountPoints2: {a7801c07-a264-11e2-ac23-4cedde7eda5b} - G:\AutoRun.exe
HKU\Aleš\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
Startup: C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Kooperativa - PDF Server.lnk

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung.msn.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://samsung.msn.com
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()

FF Keyword.URL: hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF NetworkProxy: "type", 0
FF Extension: Torntv V6.0 - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com [2014-01-28]
FF HKLM-x32\...\Firefox\Extensions: [{B7082FAA-CB62-4872-9106-E42DD88EDE45}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2010-11-18]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

CHR HKLM-x32\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\ALEK~1\AppData\Local\Temp\ccex.crx [2013-11-26]

R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [203280 2009-01-23] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)

C:\Program Files\McAfee Security Scan
C:\Program Files (x86)\McAfee
2014-01-29 08:42 - 2014-01-29 08:42 - 00000000 ____D C:\Users\Alešák\Desktop\FRST-OlderVersion
2014-01-28 16:07 - 2014-01-28 16:07 - 01236282 _____ C:\Users\Alešák\Desktop\adwcleaner.exe
2014-01-28 16:03 - 2014-01-28 16:03 - 00024989 _____ C:\Users\Alešák\Desktop\JRT.txt
2014-01-28 15:51 - 2014-01-28 15:52 - 01037068 _____ (Thisisu) C:\Users\Alešák\Desktop\JRT.exe
2014-01-27 22:21 - 2014-01-27 22:25 - 90582312 _____ (AVAST Software) C:\Users\Alešák\Desktop\avast_free_antivirus_setup_rcn.exe
2014-01-27 09:28 - 2014-01-27 09:28 - 00006937 _____ C:\Users\Alešák\Desktop\Addition.zip
2014-01-27 09:22 - 2014-01-29 08:46 - 00023438 _____ C:\Users\Alešák\Desktop\FRST.txt
2014-01-28 08:10 - 2013-12-05 22:05 - 00000000 ____D C:\Program Files (x86)\Zrychleni Pocitace
2014-01-27 23:19 - 2013-12-07 10:57 - 00000000 ____D C:\Program Files (x86)\Torntv V6.0
C:\Users\Aleš\AppData\Local\Temp\MSNCDBC.exe
C:\Users\Aleš\AppData\Local\Temp\ose00000.exe
C:\Users\Alešák\AppData\Local\Temp\evrecqjj.dll
C:\Users\Alešák\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Alešák\AppData\Local\Temp\m2am0vyt.dll
C:\Users\Alešák\AppData\Local\Temp\Quarantine.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002Core.job => C:\Users\Aleaák\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002UA.job => C:\Users\Aleaák\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PC SpeedUp Service Deactivator.job => C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe
Task: C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-firefoxinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\Torntv V6.0-updater.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-updater.exe <==== ATTENTION

AlternateDataStreams: C:\ProgramData\Temp:4CF61E54
AlternateDataStreams: C:\ProgramData\Temp:798A3728
AlternateDataStreams: C:\ProgramData\Temp:E36F5B57
AlternateDataStreams: C:\ProgramData\Temp:E7BA7168

Hosts:
CMD: shutdown /r /f /t 2

End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UpdateLBPShortCut => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\CLMLServer => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UpdateP2GoShortCut => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UpdatePDRShortCut => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\RemoteControl8 => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\PDVD8LanguageShortcut => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UpdatePPShortCut => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UpdatePSTShortCut => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UCam_Menu => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\BCSSync => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\RESTART_STICKY_NOTES => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5a8107c0-deb4-11e0-bad5-806e6f6e6963} => Key deleted successfully.
HKCR\CLSID\{5a8107c0-deb4-11e0-bad5-806e6f6e6963} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6e6944c3-ad6c-11e2-b14c-4cedde7eda5b} => Key deleted successfully.
HKCR\CLSID\{6e6944c3-ad6c-11e2-b14c-4cedde7eda5b} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a7801c07-a264-11e2-ac23-4cedde7eda5b} => Key deleted successfully.
HKCR\CLSID\{a7801c07-a264-11e2-ac23-4cedde7eda5b} => Key not found.
HKU\Aleš\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => Value deleted successfully.
C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Kooperativa - PDF Server.lnk => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => Key deleted successfully.
HKCR\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} => Value deleted successfully.
HKCR\CLSID\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} => Key deleted successfully.
HKCR\PROTOCOLS\Handler\sacore => Key deleted successfully.
HKCR\CLSID\{5513F07E-936B-4E52-9B00-067394E91CC5} => Key deleted successfully.
HKCR\Wow6432Node\PROTOCOLS\Handler\sacore => Key not found.
HKCR\Wow6432Node\CLSID\{5513F07E-936B-4E52-9B00-067394E91CC5} => Key deleted successfully.
Firefox Keyword.URL deleted successfully.
Firefox Proxy settings were reset.
C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com => Moved successfully.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45} => Value deleted successfully.

"C:\Program Files (x86)\McAfee\SiteAdvisor" directory move:

C:\Program Files (x86)\McAfee\SiteAdvisor\apengine.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\chrome.manifest => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\cntscan.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\content.dat => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\default.txt => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\elist.dat => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\ffplg.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\ieplg.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\ieplg64.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\install.rdf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\McBrwctl.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\mcfrmwk.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\mcplgUI.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\McSACorePS.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\msacmain.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Oem.txt => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sac.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sac64.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sachook.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sacimg.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sacomm.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sacomm64.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sacore.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sacore.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sacres.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\safelocalization.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sahook.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\saplugin.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sares.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\saset.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sasets.ini => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\saupkeep.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\subst.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\uninstall.exe => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McBrwctl.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mcplgUI.dll => Moved successfully.
Could not move "C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McSACorePS.dll" => Scheduled to move on reboot.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\balloon_logo.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\balloon_logo_plus.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_black.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_disabled.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_green.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_green_lock.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_grey.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_grey_lock.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_hs.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_hs_lock.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_red.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_red_lock.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_yellow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_yellow_lock.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\contents.rdf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\download_careful.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\download_unsafe.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\down_arrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\g.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\gl.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\gllc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\glrc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\gr.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\green.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\greenbubble.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\greendownarrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\greenuparrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\gul.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\gulc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\gurc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\hackersafe.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\hs.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\main.js => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\mainff.js => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\protection.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\r.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\red.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\redbubble.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\reddownarrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\reduparrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\rl.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\rllc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\rlrc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\rr.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\rul.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\rulc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\rurc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\safe-facet-green.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\safe-facet-red.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\safe-facet-white.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\safe-facet-yellow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\safe.xul => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\safesearch.dat => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\safesearch.js => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\saffplg.js => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\siteadvisor.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\untested.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\whitebubble.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\whitedownarrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\whiteuparrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\xdown.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\xup.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\y.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yellow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yellowbubble.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yellowdownarrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yellowuparrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yl.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yllc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\ylrc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yr.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yul.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yulc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yurc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\zh-TW\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\zh-TW\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\zh-CN\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\zh-CN\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\tr-TR\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\tr-TR\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\sv-SE\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\sv-SE\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\sr-sr\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\sr-sr\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\sk-SK\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\sk-SK\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\ru-RU\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\ru-RU\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\pt-PT\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\pt-PT\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\pt-BR\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\pt-BR\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\pl-PL\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\pl-PL\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\no-NO\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\no-NO\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\nl-NL\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\nl-NL\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\nb-NO\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\nb-NO\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\ko-KR\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\ko-KR\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\ja-JP\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\ja-JP\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\it-IT\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\it-IT\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\hu-HU\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\hu-HU\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\hr-hr\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\hr-hr\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\fr-FR\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\fr-FR\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\fr-CA\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\fr-CA\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\fi-FI\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\fi-FI\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-PE\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-PE\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-MX\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-MX\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-ES\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-ES\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-CL\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-CL\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-AR\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-AR\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-US\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-US\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-IE\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-IE\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-GB\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-GB\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-CA\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-CA\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-AU\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-AU\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\el-GR\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\el-GR\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\de-DE\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\de-DE\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\da-DK\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\da-DK\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\cs-CZ\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\cs-CZ\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Components\IMcFFPlg.xpt => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Components\McFFPlg.dll => Moved successfully.
Could not move "C:\Program Files (x86)\McAfee\SiteAdvisor" directory. => Scheduled to move on reboot.

HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com => Value deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\bejbohlohkkgompgecdcbbglkpjfjgdj => Key deleted successfully.
"C:\Users\ALEK~1\AppData\Local\Temp\ccex.crx" => File/Directory not found.
McAfee SiteAdvisor Service => Service deleted successfully.
McComponentHostService => Service deleted successfully.
C:\Program Files\McAfee Security Scan => Moved successfully.

"C:\Program Files (x86)\McAfee" directory move:

C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McSACorePS.dll => Moved successfully.
Could not move "C:\Program Files (x86)\McAfee" directory. => Scheduled to move on reboot.

C:\Users\Alešák\Desktop\FRST-OlderVersion => Moved successfully.
C:\Users\Alešák\Desktop\adwcleaner.exe => Moved successfully.
C:\Users\Alešák\Desktop\JRT.txt => Moved successfully.
C:\Users\Alešák\Desktop\JRT.exe => Moved successfully.
C:\Users\Alešák\Desktop\avast_free_antivirus_setup_rcn.exe => Moved successfully.
C:\Users\Alešák\Desktop\Addition.zip => Moved successfully.
C:\Users\Alešák\Desktop\FRST.txt => Moved successfully.
C:\Program Files (x86)\Zrychleni Pocitace => Moved successfully.
C:\Program Files (x86)\Torntv V6.0 => Moved successfully.
C:\Users\Aleš\AppData\Local\Temp\MSNCDBC.exe => Moved successfully.
C:\Users\Aleš\AppData\Local\Temp\ose00000.exe => Moved successfully.
C:\Users\Alešák\AppData\Local\Temp\evrecqjj.dll => Moved successfully.
C:\Users\Alešák\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe => Moved successfully.
C:\Users\Alešák\AppData\Local\Temp\m2am0vyt.dll => Moved successfully.
C:\Users\Alešák\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002UA.job => Moved successfully.
C:\Windows\Tasks\PC SpeedUp Service Deactivator.job not found.
C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job => Moved successfully.
C:\Windows\Tasks\Torntv V6.0-updater.job => Moved successfully.
C:\ProgramData\Temp => ":4CF61E54" ADS removed successfully.
C:\ProgramData\Temp => ":798A3728" ADS removed successfully.
C:\ProgramData\Temp => ":E36F5B57" ADS removed successfully.
C:\ProgramData\Temp => ":E7BA7168" ADS removed successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r /f /t 2 =========


========= End of CMD: =========


=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-01-29 13:24:40)<=

C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McSACorePS.dll => Is moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor => Is moved successfully.
C:\Program Files (x86)\McAfee => Is moved successfully.

==== End of Fixlog ====

[vyosek]

Jak se chova PC??