Nejde vypnout počítač obvyklým způsobem

[Refree]

Zdravim, mám problém s vypnutím počítače, mám starý XP, jdu přez nabídku - vypnout a nic se neděje, pak musim restartovat navtrdo objeví se mi tabulka dám vynout a pak to jde. a taky když kliknu na prohlížeč kterýkoliv otevře se mi několikrát.
Prosím o radu. Děkuji

[Rudy]

Zdravím!
Těžko říci proč se to děje, většinou to ale není virový problém. Někdy to způsobují aktualizace systému. Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

[Refree]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-07-2015
Ran by uzivatel (administrator) on RADOVAN on 10-07-2015 19:31:48
Running from C:\Documents and Settings\uzivatel\Dokumenty\Viry.cz
Loaded Profiles: uzivatel (Available Profiles: uzivatel)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(UASSOFT.COM) C:\Program Files\Mouse Driver\KMWDSrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Rocket Division Software) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Nokia) C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Gainward Co.) C:\Program Files\EXPERTool\TBPANEL.exe
() C:\Documents and Settings\uzivatel\Data aplikací\Seznam.cz\bin\szndesktop.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Desktop Search\WindowsSearch.exe
(Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16857600 2008-03-31] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [69632 2008-03-31] (Realtek Semiconductor Corp.)
HKLM\...\Run: [nwiz] => nwiz.exe /install
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-06-29] (Avast Software s.r.o.)
HKLM\...\Run: [WireLessMouse] => C:\Program Files\Trust\Trust R-series Mouse And Keyboard\StartAutorun.exe MouseDrv.exe
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [PC Suite Tray] => C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [GAINWARD] => C:\Program Files\EXPERTool\TBPanel.exe [2177576 2008-06-04] (Gainward Co.)
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [cz.seznam.software.szndesktop] => C:\Documents and Settings\uzivatel\Data aplikací\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [AlcoholAutomount] => C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [220544 2007-07-02] (Alcohol Soft Development Team)
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [BD4D3F19C0E2D913F2435A456B4DD0B5CC4EE466._service_run] => C:\Program Files\Google\Chrome\Application\chrome.exe [813896 2015-07-07] (Google Inc.)
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [cz.seznam.software.autoupdate] => C:\Documents and Settings\uzivatel\Data aplikací\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk [2015-06-09]
ShortcutTarget: Windows Search.lnk -> C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-06-29] (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Bar = www.bing.com
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {0B7C38B7-9B4F-4418-9873-FA8FDAFE1EAC} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {1849FBCE-EAF5-4B4C-89B4-09AE7F2519DF} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {36EFB826-423B-4895-A811-2820C084DCF9} URL = http://search.seznam.cz/?q={searchTerms ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {3CE5367F-DBD2-425E-8424-8C6621DC905F} URL = http://www.mapy.cz/?query={searchTerms} ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {426CC094-D33E-4C62-AB1B-BC47558B834E} URL = http://en.wikipedia.org/w/index.php?tit ... earchTerms}
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {8FBE9963-84DF-4433-9EE0-8E0262A801CA} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {AC61CE1F-E252-48BB-9DAD-B2A6277A380B} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {C54740F3-F2A1-4EC5-BE68-D63A8FB52179} URL = http://encyklopedie.seznam.cz/search?q= ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {CE61D7A7-1E47-4D9C-A983-B219F3DD0107} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {D7F39480-63DC-4B41-8D89-ADB329F6CCE1} URL = http://www.novinky.cz/hledej?w={searchT ... arch_16194
BHO: No Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> No File
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-01-24] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-29] (Avast Software s.r.o.)
BHO: No Name -> {ae60e6ed-49dd-4099-8b5e-386a4908d5d5} -> No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-01-24] (Oracle Corporation)
BHO: Shopping Suggestion. -> {e7e8ed77-2fba-4ec6-bc07-65de4de6709f} -> C:\WINDOWS\system32\mscoree.dll [2009-11-07] (Microsoft Corporation)
Toolbar: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2008-04-14] (Společnost Microsoft)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.adobe.com/pub/shockwa ... wflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
ShellExecuteHooks: Microsoft AntiMalware ShellExecuteHook - {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll [83224 2006-11-03] (Microsoft Corporation)
Tcpip\..\Interfaces\{1E87C220-1C3D-4A12-87CE-51ACB6CAF337}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{4C5509A4-30C4-4FEC-8A6F-4CABF1D08928}: [DhcpNameServer] 94.74.192.252 94.74.192.244

FireFox:
========
FF ProfilePath: C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6yzwh7v1.default
FF NewTab: www.google.com
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Seznam
FF Homepage: hxxp://www.seznam.cz/
FF Keyword.URL: https://www.google.com/search
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll [2013-12-11] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw.dll [2011-08-02] (Adobe Systems, Inc.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2011-10-17] (Google)
FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\WINDOWS\system32\npDeployJava1.dll [2013-01-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.11.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-01-24] (Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll [2014-02-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @pack.google.com/Google Updater;version=14 -> C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll [2011-09-18] (Google)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-12-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-12-09] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin: yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1 -> C:\Program Files\Yahoo!\Common\npyaxmpb.dll [2006-11-03] (Yahoo! Inc.)
FF Plugin HKU\S-1-5-21-1390067357-1788223648-725345543-1004: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll [2012-02-22] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF SearchPlugin: C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6yzwh7v1.default\searchplugins\conduit.xml [2012-02-19]
FF SearchPlugin: C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6yzwh7v1.default\searchplugins\daemon-search.xml [2010-10-03]
FF Extension: Flash Video Downloader - YouTube HD Downloader [4K] - C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6yzwh7v1.default\Extensions\artur.dubovoy@gmail.com [2015-06-30]
FF Extension: Microsoft .NET Framework Assistant - C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6yzwh7v1.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-10-30]
FF Extension: Seznam lištička - C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6yzwh7v1.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2015-06-30]
FF Extension: Skype extension for Firefox - C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2015-07-06]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-06-29]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-01-25]

Chrome:
=======
CHR Profile: C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Seznam Lištička - Email) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2015-06-30]
CHR Extension: (Seznam Lištička - Slovník) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2015-06-30]
CHR Extension: (Lamborghini Sesto Elemento Theme) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb [2015-06-30]
CHR Extension: (Google Wallet) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-30]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2015-06-30]
CHR HKLM\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - No Path Or update_url value
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-06-29]
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - No Path Or update_url value
CHR HKLM\...\Chrome\Extension: [nhogbcndagiknbfomjgdeghehkljalhi] - C:\Program Files\GreyGray\nhogbcndagiknbfomjgdeghehkljalhi.crx [2013-12-07]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - No Path Or update_url value

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-06-29] (Avast Software s.r.o.)
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2009-06-29] (Macrovision Europe Ltd.) [File not signed]
S2 gupdate1ca300516f91db8; C:\Program Files\Google\Update\GoogleUpdate.exe [107848 2015-06-29] (Google Inc.)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [170912 2013-01-24] (Oracle Corporation)
R2 KMWDSERVICE; C:\Program Files\Mouse Driver\KMWDSrv.exe [208896 2008-03-29] (UASSOFT.COM) [File not signed]
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [45272 2005-10-14] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [File not signed]
S4 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [75064 2014-02-12] ()
R2 StarWindServiceAE; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [275968 2007-05-28] (Rocket Division Software) [File not signed]
U4 avast! Firewall; "C:\Program Files\AVAST Software\Avast\afwServ.exe" [X]
S2 Hamachi2Svc; "C:\Program Files\LogMeIn Hamachi\hamachi-2.exe" -s [X]
S2 HWDeviceService.exe; "C:\Documents and Settings\All Users\Data aplikací\DatacardService\HWDeviceService.exe" -/service [X]
S4 NetDDE; %SystemRoot%\system32\netdde.exe [X]
S4 NetDDEdsdm; %SystemRoot%\system32\netdde.exe [X]
S2 O2 Internet. RunOuc; C:\Program Files\O2 Internet\UpdateDog\ouc.exe [X]
S4 PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [X]
S2 WinDefend; No ImagePath
S2 WSearch; No ImagePath

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24144 2015-06-29] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [74976 2015-06-29] (Avast Software s.r.o.)
R0 aswNdis; C:\WINDOWS\System32\DRIVERS\aswNdis.sys [12112 2013-09-25] (ALWIL Software)
R1 AswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55200 2015-06-29] (Avast Software s.r.o.)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49904 2015-06-29] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [787760 2015-06-29] (Avast Software s.r.o.)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [428120 2015-06-29] (Avast Software s.r.o.)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57888 2015-06-29] (Avast Software s.r.o.)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [209048 2015-06-29] ()
S3 Cardex; C:\WINDOWS\system32\drivers\TBPANEL.SYS [12256 2007-03-16] (Windows (R) 2000 DDK provider)
R3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [25280 2010-07-18] (LogMeIn, Inc.)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2007-10-31] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2007-10-31] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2007-10-31] (HP)
R3 KMWDFilter; C:\WINDOWS\System32\Drivers\KMWDFilter.SYS [17024 2008-03-22] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 MagicTune; C:\WINDOWS\System32\drivers\MTiCtwl.sys [13312 2006-08-28] () [File not signed]
R1 NCPro; C:\WINDOWS\system32\drivers\MTictwl.sys [13312 2006-08-28] () [File not signed]
R2 NwlnkIpx; C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys [88320 2008-04-13] (Microsoft Corporation)
R2 NwlnkNb; C:\WINDOWS\System32\DRIVERS\nwlnknb.sys [63232 2006-03-02] (Microsoft Corporation)
R2 NwlnkSpx; C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys [55936 2006-03-02] (Microsoft Corporation)
S3 Ser2pl; C:\WINDOWS\System32\DRIVERS\ser2pl.sys [43264 2003-07-16] (Prolific Technology Inc.) [File not signed]
R0 sfdrv01; C:\WINDOWS\System32\drivers\sfdrv01.sys [51200 2006-03-26] (Protection Technology (StarForce)) [File not signed]
R0 sfhlp02; C:\WINDOWS\System32\drivers\sfhlp02.sys [6656 2006-03-13] (Protection Technology (StarForce)) [File not signed]
R0 sfsync04; C:\WINDOWS\System32\drivers\sfsync04.sys [50176 2006-03-24] (Protection Technology (StarForce)) [File not signed]
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [477240 2012-05-07] (Duplex Secure Ltd.)
R2 TBPanel; C:\WINDOWS\system32\Drivers\TBPanel.sys [12256 2007-03-16] (Windows (R) 2000 DDK provider)
U3 ay0gq27p; C:\WINDOWS\system32\Drivers\ay0gq27p.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
U4 aswKbd; \??\C:\WINDOWS\system32\drivers\aswKbd.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS [X]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_cdcecm; system32\DRIVERS\ew_jucdcecm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
S4 IntelIde; No ImagePath
S3 kbfiltr; system32\DRIVERS\kbfiltr.sys [X]
S3 MSICDSetup; \??\D:\CDriver.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U3 TlntSvr; No ImagePath
S3 USBAAPL; System32\Drivers\usbaapl.sys [X]
U3 akc21uxg; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-10 19:24 - 2015-07-10 19:31 - 00000000 ____D C:\FRST
2015-07-10 16:55 - 2015-07-10 18:04 - 00000636 _____ C:\WINDOWS\setupapi.log
2015-07-06 21:45 - 2015-07-06 21:45 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-07-05 11:49 - 2015-07-07 23:42 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2015-07-05 11:15 - 2015-07-05 11:15 - 00000000 ____D C:\Program Files\Steam
2015-07-01 23:19 - 2015-07-02 22:32 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Sniper elite
2015-07-01 06:49 - 2015-07-01 06:49 - 00000000 ____D C:\WINDOWS\system32\dwjobs
2015-07-01 06:49 - 2015-07-01 06:49 - 00000000 ____D C:\log
2015-06-30 21:07 - 2015-06-30 21:07 - 00000000 ____D C:\WINDOWS\jumpshot.com
2015-06-30 00:00 - 2015-06-30 00:00 - 00000000 ____D C:\Documents and Settings\Default User\Local Settings\Data aplikací\Google
2015-06-29 23:52 - 2015-07-10 18:59 - 00000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-29 23:52 - 2015-07-10 18:03 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-29 21:48 - 2015-06-29 21:48 - 00291312 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\aswBoot.exe
2015-06-29 21:48 - 2015-06-29 21:48 - 00043112 _____ (Avast Software s.r.o.) C:\WINDOWS\avastSS.scr
2015-06-29 21:48 - 2015-06-29 21:48 - 00024144 _____ C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-06-29 21:48 - 2015-06-29 21:48 - 00001724 _____ C:\Documents and Settings\All Users\Plocha\Avast Free Antivirus.lnk
2015-06-29 21:48 - 2015-06-29 21:48 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\AVAST Software
2015-06-19 10:32 - 2015-06-19 13:10 - 00000000 ____D C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Temporary Projects

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-10 19:32 - 2013-01-30 01:36 - 00000000 ____D C:\Documents and Settings\uzivatel\Local Settings\temp
2015-07-10 19:31 - 2009-01-19 00:09 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Viry.cz
2015-07-10 19:30 - 2009-05-16 23:43 - 00000472 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{994E7CE8-57C0-4E17-8613-EE85D18A5B4E}.job
2015-07-10 19:21 - 2008-07-31 15:34 - 01500783 _____ C:\WINDOWS\WindowsUpdate.log
2015-07-10 18:49 - 2013-02-02 23:13 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-07-10 18:09 - 2013-12-17 01:14 - 00000000 ____D C:\Documents and Settings\uzivatel\Data aplikací\Seznam.cz
2015-07-10 18:03 - 2014-03-27 11:48 - 00000228 _____ C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-07-10 18:03 - 2013-01-25 15:34 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-07-10 18:03 - 2008-08-01 10:52 - 00000104 _____ C:\WINDOWS\system32\nvapps.xml
2015-07-10 18:03 - 2008-07-31 15:40 - 00032598 _____ C:\WINDOWS\SchedLgU.Txt
2015-07-10 17:15 - 2013-01-30 01:36 - 00000000 ____D C:\Documents and Settings\NetworkService\Local Settings\temp
2015-07-10 17:15 - 2011-01-30 09:39 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-07-10 17:15 - 2011-01-30 09:39 - 00000049 _____ C:\WINDOWS\wiaservc.log
2015-07-10 17:14 - 2008-07-31 15:40 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-07-10 00:31 - 2013-06-11 20:22 - 00000000 ____D C:\Documents and Settings\uzivatel\Plocha\Kristýna
2015-07-10 00:29 - 2013-12-07 01:34 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Origin
2015-07-10 00:22 - 2013-12-07 01:34 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Origin
2015-07-10 00:22 - 2013-12-07 01:33 - 00000000 ____D C:\Program Files\Origin
2015-07-09 21:14 - 2010-07-27 21:48 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Záloha registru
2015-07-09 21:12 - 2008-07-31 15:41 - 00000000 ____D C:\Documents and Settings\uzivatel
2015-07-09 20:16 - 2008-10-30 18:17 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Command and Conquer Generals Zero Hour Data
2015-07-08 21:39 - 2008-07-31 23:25 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-07-08 21:39 - 2008-07-31 15:41 - 00000000 ____D C:\Documents and Settings\uzivatel\Plocha
2015-07-08 21:23 - 2010-03-13 01:50 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Stažené soubory
2015-07-08 21:01 - 2009-09-07 23:50 - 00001848 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2015-07-08 20:27 - 2014-03-27 11:48 - 00000222 _____ C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-07-07 23:42 - 2008-07-31 15:34 - 00000000 ____D C:\WINDOWS\system32\DirectX
2015-07-07 22:58 - 2006-03-02 14:00 - 00012598 _____ C:\WINDOWS\system32\wpa.dbl
2015-07-06 22:49 - 2011-01-09 01:21 - 00000000 ____D C:\Documents and Settings\uzivatel\Data aplikací\vlc
2015-07-06 22:45 - 2008-10-07 18:07 - 00000229 _____ C:\WINDOWS\NeroDigital.ini
2015-07-06 22:45 - 2008-08-05 20:26 - 00184320 _____ C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-07-06 22:02 - 2012-04-26 04:17 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-07-05 14:37 - 2012-04-09 09:56 - 00000000 ____D C:\Call of Duty- Modern Warfare 3
2015-07-05 14:22 - 2013-01-19 13:47 - 00000924 _____ C:\WINDOWS\Tasks\Google Software Updater.job
2015-07-05 11:58 - 2013-12-17 01:13 - 00000000 ____D C:\Program Files\GreyGray
2015-07-04 02:22 - 2008-10-11 00:41 - 00000330 ____H C:\WINDOWS\Tasks\MP Scheduled Scan.job
2015-07-02 22:32 - 2008-07-31 15:33 - 00000000 ____D C:\WINDOWS\system32\Restore
2015-07-01 23:20 - 2008-07-31 15:41 - 00000000 ___RD C:\Documents and Settings\uzivatel\Dokumenty
2015-06-30 00:24 - 2008-07-31 23:25 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-06-30 00:00 - 2013-01-25 15:36 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Drive
2015-06-30 00:00 - 2008-07-31 23:25 - 00000000 ___HD C:\Documents and Settings\Default User\Local Settings\Data aplikací
2015-06-29 23:59 - 2008-07-31 15:41 - 00000000 ___HD C:\Documents and Settings\uzivatel\Local Settings\Data aplikací
2015-06-29 21:50 - 2013-01-25 18:02 - 00002347 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Adobe Reader XI.lnk
2015-06-29 21:48 - 2013-11-26 01:47 - 00209048 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-06-29 21:48 - 2013-11-26 01:47 - 00049904 _____ C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-06-29 21:48 - 2013-11-26 01:46 - 00074976 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-06-29 21:48 - 2013-01-25 15:34 - 00428120 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswsp.sys
2015-06-29 21:48 - 2013-01-25 15:34 - 00057888 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswTdi.sys
2015-06-29 21:48 - 2013-01-25 15:34 - 00055200 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswRdr.sys
2015-06-29 21:47 - 2013-01-25 15:34 - 00787760 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-06-28 18:19 - 2013-01-27 20:22 - 00000000 ____D C:\Documents and Settings\uzivatel\Plocha\Tabulky office
2015-06-20 15:42 - 2013-12-17 01:14 - 00000000 ____D C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\genienext
2015-06-20 15:42 - 2013-12-17 01:13 - 00000000 ____D C:\Program Files\Mobogenie
2015-06-20 15:42 - 2013-12-17 01:13 - 00000000 ____D C:\Documents and Settings\uzivatel\Data aplikací\SwvUpdater
2015-06-20 15:42 - 2013-12-17 01:12 - 00000000 ____D C:\Program Files\VLC Player GPU+
2015-06-20 13:20 - 2008-07-31 15:41 - 00000178 ___SH C:\Documents and Settings\uzivatel\ntuser.ini
2015-06-20 12:56 - 2008-10-28 17:51 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Command and Conquer Generals Data
2015-06-19 13:10 - 2008-07-31 15:41 - 00000000 __RHD C:\Documents and Settings\uzivatel\Data aplikací
2015-06-19 09:41 - 2015-06-09 08:01 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Visual Studio 2008
2015-06-18 01:03 - 2008-12-04 03:59 - 00000000 ____D C:\WINDOWS\Minidump
2015-06-15 14:02 - 2008-07-31 23:22 - 00000281 __RSH C:\boot.ini
2015-06-15 14:02 - 2006-03-02 14:00 - 00000762 _____ C:\WINDOWS\win.ini
2015-06-15 14:02 - 2006-03-02 14:00 - 00000227 _____ C:\WINDOWS\system.ini

==================== Files in the root of some directories =======

2008-10-07 18:08 - 2008-12-05 06:06 - 0000116 ____C () C:\Documents and Settings\uzivatel\Data aplikací\default.pls
2011-06-27 01:17 - 2012-02-22 16:17 - 0000151 _____ () C:\Documents and Settings\uzivatel\Data aplikací\default.rss
2008-12-21 03:52 - 2010-10-19 02:12 - 0138056 ____C () C:\Documents and Settings\uzivatel\Data aplikací\PnkBstrK.sys
2008-08-05 20:26 - 2015-07-06 22:45 - 0184320 _____ () C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2008-10-08 13:55 - 2008-10-08 13:55 - 0000128 ____C () C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\fusioncache.dat
2011-03-07 08:39 - 2013-12-09 18:11 - 0093418 _____ () C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\SRDownloader.err
2011-03-07 02:52 - 2013-12-09 18:11 - 0001608 _____ () C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\SRDownloader.nast

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of log ============================

[Rudy]

Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[Refree]

# AdwCleaner v4.208 - Log vytvořen 10/07/2015 v 20:39:13
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-07-10.1 [Server]
# Operační system : Microsoft Windows XP Service Pack 3 (x86)
# Uživatelské jméno : uzivatel - RADOVAN
# Spuštěno z : C:\Documents and Settings\uzivatel\Dokumenty\Viry.cz\Nová složka (2)\adwcleaner_4.208.exe
# Nastavení : Čištění

***** [ Služby ] *****


***** [ Soubory / Složky ] *****

Složka Smazáno : C:\Documents and Settings\All Users\Data aplikací\Fighters
Složka Smazáno : C:\Documents and Settings\All Users\Nabídka Start\Programy\Fighters
Složka Smazáno : C:\Program Files\GreyGray
Složka Smazáno : C:\Program Files\Mobogenie
Složka Smazáno : C:\Program Files\Zrychleni Pocitace
Složka Smazáno : C:\Program Files\Fighters
Složka Smazáno : C:\Program Files\Shopping Suggestion
Složka Smazáno : C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\BS_Player
Složka Smazáno : C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Conduit
Složka Smazáno : C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\DoubleD
Složka Smazáno : C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\genienext
Složka Smazáno : C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Internet Saving Optimizer
Složka Smazáno : C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Media Access Startup
Složka Smazáno : C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Mobogenie
Složka Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\newnext.me
Složka Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\SwvUpdater
Složka Smazáno : C:\Documents and Settings\uzivatel\Nabídka Start\Programy\Mobogenie
Složka Smazáno : C:\Documents and Settings\uzivatel\Dokumenty\Mobogenie
Složka Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
Složka Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\Extensions\{C50CA3C4-5656-43C2-A061-13E717F73FC8}
[!] Složka Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\Extensions\{D394D188-BAC7-4e03-8FAF-389A4D7EC6F4}.xpi
Složka Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6yzwh7v1.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
Složka Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\Extensions\{7c5c0f58-e061-457d-9033-77307f5ed00c}
Složka Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\Extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}
Soubor Smazáno : C:\WINDOWS\system32\roboot.exe
Soubor Smazáno : C:\Documents and Settings\uzivatel\daemonprocess.txt
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Microsoft\Internet Explorer\Quick Launch\Mobogenie.lnk
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6yzwh7v1.default\searchplugins\Conduit.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\Conduit.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6yzwh7v1.default\searchplugins\daemon-search.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\winamp-search.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-1.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-10.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-11.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-12.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-13.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-14.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-15.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-16.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-17.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-18.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-19.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-2.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-20.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-21.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-22.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-23.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-24.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-25.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-26.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-3.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-4.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-5.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-6.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-7.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-8.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin-9.xml
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin.gif
Soubor Smazáno : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\qf4eal5w.default\searchplugins\icqplugin.xml

***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****

Klíč Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\nhogbcndagiknbfomjgdeghehkljalhi
Klíč Smazáno : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Klíč Smazáno : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Klíč Smazáno : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E7E8ED77-2FBA-4EC6-BC07-65DE4DE6709F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE60E6ED-49DD-4099-8B5E-386A4908D5D5}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E8ED77-2FBA-4EC6-BC07-65DE4DE6709F}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE60E6ED-49DD-4099-8B5E-386A4908D5D5}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E7E8ED77-2FBA-4EC6-BC07-65DE4DE6709F}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E7E8ED77-2FBA-4EC6-BC07-65DE4DE6709F}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Klíč Smazáno : HKCU\Software\dt soft\daemon tools toolbar
Klíč Smazáno : HKCU\Software\YahooPartnerToolbar
Klíč Smazáno : HKCU\Software\Fighters
Klíč Smazáno : HKLM\SOFTWARE\ICQ\ICQToolbar
Klíč Smazáno : HKLM\SOFTWARE\Fighters
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Yahoo! Companion

***** [ Prohlížeče ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v38.0.5 (x86 cs)

[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682.HomepageBeforeUnload", "hxxp://search.conduit.com/?ctid=CT2776682&SearchSource=13");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682.InstallationType", "ConduitXPEIntegration");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682.SearchCaption", "BrotherSoft Extreme Customized Web Search");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682.SearchEngine", "Searchhxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2776682&octid=EB_ORIGINAL_CTID&SearchSource=1");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682.SearchEngineBeforeUnload", "BrotherSoft Extreme Customized Web Search");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2776682&SearchSource=2&q=");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT2776682&SearchSource=13");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2776682");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682.backendstorage.autocompletepro_enable", "31");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682.backendstorage.autocompletepro_enable_auto", "31");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CT2776682.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2776682&SearchSource=13");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ConduitSearchList", "BrotherSoft Extreme Customized Web Search");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=en", "wVmmvqqOMqrv5xct1cJIHg==");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=en", "0uSPYx+Kl2jpu8sJZMeHjw==");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=en", "Dclc8oo4TTv7+mAkSlUSWg==");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=en", "K4Vqu91uAzWURlxJRdXJOg==");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Documents and Settings\\uzivatel\\Data aplikací\\Mozilla\\Firefox\\Profiles\\6yzwh7v1.default\\conduitCommon\\modules\\3.10.0.1");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.10.0.1");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.MiniIPageGadgetSize.hxxp://storage.conduit.com/MarketPlace/47/ca/47cb29cf-905c-43b4-9f0e-c27aa0e0eeca//dc989713-fce6-4a85-acbe-6a0c6af9169f.html", "740x527");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://search.seznam.cz/?sourceid=FF_5&q=");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList", "CT2776682");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList2", "CT2776682");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList4", "CT2776682");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.globalUserId", "f410fc47-308e-41ae-a850-f079708c10f9");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2776682");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Mon Feb 20 2012 10:59:02 GMT+0100");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Wed Feb 22 2012 11:23:22 GMT+0100");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.locale", "en");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Wed Feb 22 2012 11:20:07 GMT+0100");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.notifications.userId", "07201297-67ad-44e7-b2b8-47dabb7f7be9");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.originalHomepage", "hxxp://www.seznam.cz/");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.originalSearchEngine", "chrome://browser-region/locale/region.properties");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultthis.engineName", "BrotherSoft Extreme Customized Web Search");
[6yzwh7v1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.fvd_single.surfcanyon.ramp.start_time", "1394042742352");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CT1640187.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CT1640187.CTPBaseServerUrl", "hxxp://services.conduit.com/");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CT1640187.Server", "hxxp://users.conduit.com");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CT1750559.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CT1750559.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CT1750559.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CT1750559.SearchEngine", "Searchhxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT1750559&octid=EB_ORIGINAL_CTID&SearchSource=1");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CT1750559.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&q=");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CT1750559.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CT1750559.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CT1750559.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CT1750559.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CT1750559.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CT1750559.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://www.gamingharbor.com/search.do?desktopsmiley&keyword=");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList", "CT1750559");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.ToolbarsList2", "CT1750559");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.alertInfoInterval", 60);
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Fri Mar 12 2010 17:14:14 GMT+0100");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.locale", "en");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Fri Mar 12 2010 17:14:14 GMT+0100");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1234821600");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.showTrayIcon", false);
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("CommunityToolbar.alert.userId", "{2951545d-1414-4ffd-a3cd-c20332574e34}");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultthis.engineName", "BS Player Customized Web Search");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=3&q={searchTerms}");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.order.1", "Crawler Search");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("extensions.enabledItems", "{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}:2.5.6.0,{c50ca3c4-5656-43c2-a061-13e717f73fc8}:3.0.8,{800b5000-a755-47e1-992b-48a1c1357f07}:1.1.4.1,{CAFEEFAC-0016-0000-001[...]
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.allowSendURL", false);
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.engineVerified", false);
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.hiddenElements", "itb_options");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.history", "nfs%20most%20wantedBelakoviBelakovciBelakovci%2CnogoviMartin%20severjozef%20belak%20Martin%20severjozef%20belakjozef%20belak%20MTspolu%C5%BEiacinogov[...]
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.installsource", "1");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.numberOfSearches", 0);
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.previousFFVersion", "3.6.8");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.skip_default_search", "no");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.suggestions", false);
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.uniqueID", "122541728112254172811225539138543");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.usageStatstTimestamp", 1280180171);
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.version", "1.1.4.1");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.xmlEnableSuggestions", false);
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.xmlLanguage", "cs");
[qf4eal5w.default\prefs.js] - Řádek Smazáno : user_pref("winamp_toolbar.strbundle.msg", "Winamp Toolbar");

-\\ Google Chrome v43.0.2357.132


*************************

AdwCleaner[R0].txt - [24353 bytů] - [10/07/2015 20:36:42]
AdwCleaner[S0].txt - [24974 bytů] - [10/07/2015 20:39:13]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [25033 bytů] ##########

[Rudy]

Dejte nový log FRST.

[Refree]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-07-2015
Ran by uzivatel (administrator) on RADOVAN on 10-07-2015 20:59:48
Running from C:\Documents and Settings\uzivatel\Dokumenty\Viry.cz
Loaded Profiles: uzivatel (Available Profiles: uzivatel)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(UASSOFT.COM) C:\Program Files\Mouse Driver\KMWDSrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(Gainward Co.) C:\Program Files\EXPERTool\TBPANEL.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Rocket Division Software) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
() C:\Documents and Settings\uzivatel\Data aplikací\Seznam.cz\bin\szndesktop.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16857600 2008-03-31] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [69632 2008-03-31] (Realtek Semiconductor Corp.)
HKLM\...\Run: [nwiz] => nwiz.exe /install
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-06-29] (Avast Software s.r.o.)
HKLM\...\Run: [WireLessMouse] => C:\Program Files\Trust\Trust R-series Mouse And Keyboard\StartAutorun.exe MouseDrv.exe
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [PC Suite Tray] => C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [GAINWARD] => C:\Program Files\EXPERTool\TBPanel.exe [2177576 2008-06-04] (Gainward Co.)
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [cz.seznam.software.szndesktop] => C:\Documents and Settings\uzivatel\Data aplikací\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [AlcoholAutomount] => C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [220544 2007-07-02] (Alcohol Soft Development Team)
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [BD4D3F19C0E2D913F2435A456B4DD0B5CC4EE466._service_run] => C:\Program Files\Google\Chrome\Application\chrome.exe [813896 2015-07-07] (Google Inc.)
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [cz.seznam.software.autoupdate] => C:\Documents and Settings\uzivatel\Data aplikací\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk [2015-06-09]
ShortcutTarget: Windows Search.lnk -> C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-06-29] (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Bar = www.bing.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {0B7C38B7-9B4F-4418-9873-FA8FDAFE1EAC} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {1849FBCE-EAF5-4B4C-89B4-09AE7F2519DF} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {36EFB826-423B-4895-A811-2820C084DCF9} URL = http://search.seznam.cz/?q={searchTerms ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {3CE5367F-DBD2-425E-8424-8C6621DC905F} URL = http://www.mapy.cz/?query={searchTerms} ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {426CC094-D33E-4C62-AB1B-BC47558B834E} URL = http://en.wikipedia.org/w/index.php?tit ... earchTerms}
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {8FBE9963-84DF-4433-9EE0-8E0262A801CA} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {AC61CE1F-E252-48BB-9DAD-B2A6277A380B} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {C54740F3-F2A1-4EC5-BE68-D63A8FB52179} URL = http://encyklopedie.seznam.cz/search?q= ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {CE61D7A7-1E47-4D9C-A983-B219F3DD0107} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {D7F39480-63DC-4B41-8D89-ADB329F6CCE1} URL = http://www.novinky.cz/hledej?w={searchT ... arch_16194
BHO: No Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> No File
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-01-24] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-29] (Avast Software s.r.o.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-01-24] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2008-04-14] (Společnost Microsoft)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.adobe.com/pub/shockwa ... wflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
ShellExecuteHooks: Microsoft AntiMalware ShellExecuteHook - {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll [83224 2006-11-03] (Microsoft Corporation)
Tcpip\..\Interfaces\{1E87C220-1C3D-4A12-87CE-51ACB6CAF337}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{4C5509A4-30C4-4FEC-8A6F-4CABF1D08928}: [DhcpNameServer] 94.74.192.252 94.74.192.244

FireFox:
========
FF ProfilePath: C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6yzwh7v1.default
FF NewTab: www.google.com
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Seznam
FF Homepage: hxxp://www.seznam.cz/
FF Keyword.URL: https://www.google.com/search
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll [2013-12-11] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw.dll [2011-08-02] (Adobe Systems, Inc.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2011-10-17] (Google)
FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\WINDOWS\system32\npDeployJava1.dll [2013-01-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.11.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-01-24] (Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll [2014-02-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @pack.google.com/Google Updater;version=14 -> C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll [2011-09-18] (Google)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-12-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-12-09] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin: yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1 -> C:\Program Files\Yahoo!\Common\npyaxmpb.dll [2006-11-03] (Yahoo! Inc.)
FF Plugin HKU\S-1-5-21-1390067357-1788223648-725345543-1004: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll [2012-02-22] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Extension: Flash Video Downloader - YouTube HD Downloader [4K] - C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6yzwh7v1.default\Extensions\artur.dubovoy@gmail.com [2015-06-30]
FF Extension: Microsoft .NET Framework Assistant - C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6yzwh7v1.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-10-30]
FF Extension: Skype extension for Firefox - C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2015-07-06]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-06-29]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-01-25]

Chrome:
=======
CHR Profile: C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Seznam Lištička - Email) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2015-06-30]
CHR Extension: (Seznam Lištička - Slovník) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2015-06-30]
CHR Extension: (Lamborghini Sesto Elemento Theme) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb [2015-06-30]
CHR Extension: (Google Wallet) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-30]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2015-06-30]
CHR HKLM\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - No Path Or update_url value
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-06-29]
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - No Path Or update_url value
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - No Path Or update_url value

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-06-29] (Avast Software s.r.o.)
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2009-06-29] (Macrovision Europe Ltd.) [File not signed]
S2 gupdate1ca300516f91db8; C:\Program Files\Google\Update\GoogleUpdate.exe [107848 2015-06-29] (Google Inc.)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [170912 2013-01-24] (Oracle Corporation)
R2 KMWDSERVICE; C:\Program Files\Mouse Driver\KMWDSrv.exe [208896 2008-03-29] (UASSOFT.COM) [File not signed]
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [45272 2005-10-14] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [File not signed]
S4 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [75064 2014-02-12] ()
R2 StarWindServiceAE; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [275968 2007-05-28] (Rocket Division Software) [File not signed]
U4 avast! Firewall; "C:\Program Files\AVAST Software\Avast\afwServ.exe" [X]
S2 Hamachi2Svc; "C:\Program Files\LogMeIn Hamachi\hamachi-2.exe" -s [X]
S2 HWDeviceService.exe; "C:\Documents and Settings\All Users\Data aplikací\DatacardService\HWDeviceService.exe" -/service [X]
S4 NetDDE; %SystemRoot%\system32\netdde.exe [X]
S4 NetDDEdsdm; %SystemRoot%\system32\netdde.exe [X]
S2 O2 Internet. RunOuc; C:\Program Files\O2 Internet\UpdateDog\ouc.exe [X]
S4 PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [X]
S2 WinDefend; No ImagePath
S2 WSearch; No ImagePath

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24144 2015-06-29] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [74976 2015-06-29] (Avast Software s.r.o.)
R0 aswNdis; C:\WINDOWS\System32\DRIVERS\aswNdis.sys [12112 2013-09-25] (ALWIL Software)
R1 AswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55200 2015-06-29] (Avast Software s.r.o.)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49904 2015-06-29] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [787760 2015-06-29] (Avast Software s.r.o.)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [428120 2015-06-29] (Avast Software s.r.o.)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57888 2015-06-29] (Avast Software s.r.o.)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [209048 2015-06-29] ()
S3 Cardex; C:\WINDOWS\system32\drivers\TBPANEL.SYS [12256 2007-03-16] (Windows (R) 2000 DDK provider)
R3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [25280 2010-07-18] (LogMeIn, Inc.)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2007-10-31] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2007-10-31] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2007-10-31] (HP)
R3 KMWDFilter; C:\WINDOWS\System32\Drivers\KMWDFilter.SYS [17024 2008-03-22] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 MagicTune; C:\WINDOWS\System32\drivers\MTiCtwl.sys [13312 2006-08-28] () [File not signed]
R1 NCPro; C:\WINDOWS\system32\drivers\MTictwl.sys [13312 2006-08-28] () [File not signed]
R2 NwlnkIpx; C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys [88320 2008-04-13] (Microsoft Corporation)
R2 NwlnkNb; C:\WINDOWS\System32\DRIVERS\nwlnknb.sys [63232 2006-03-02] (Microsoft Corporation)
R2 NwlnkSpx; C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys [55936 2006-03-02] (Microsoft Corporation)
S3 Ser2pl; C:\WINDOWS\System32\DRIVERS\ser2pl.sys [43264 2003-07-16] (Prolific Technology Inc.) [File not signed]
R0 sfdrv01; C:\WINDOWS\System32\drivers\sfdrv01.sys [51200 2006-03-26] (Protection Technology (StarForce)) [File not signed]
R0 sfhlp02; C:\WINDOWS\System32\drivers\sfhlp02.sys [6656 2006-03-13] (Protection Technology (StarForce)) [File not signed]
R0 sfsync04; C:\WINDOWS\System32\drivers\sfsync04.sys [50176 2006-03-24] (Protection Technology (StarForce)) [File not signed]
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [477240 2012-05-07] (Duplex Secure Ltd.)
R2 TBPanel; C:\WINDOWS\system32\Drivers\TBPanel.sys [12256 2007-03-16] (Windows (R) 2000 DDK provider)
U3 arw3y4wf; C:\WINDOWS\system32\Drivers\arw3y4wf.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
U4 aswKbd; \??\C:\WINDOWS\system32\drivers\aswKbd.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS [X]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_cdcecm; system32\DRIVERS\ew_jucdcecm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
S4 IntelIde; No ImagePath
S3 kbfiltr; system32\DRIVERS\kbfiltr.sys [X]
S3 MSICDSetup; \??\D:\CDriver.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U3 TlntSvr; No ImagePath
S3 USBAAPL; System32\Drivers\usbaapl.sys [X]
U3 a9aq3qzs; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-10 20:36 - 2015-07-10 20:40 - 00000000 ____D C:\AdwCleaner
2015-07-10 19:24 - 2015-07-10 21:00 - 00000000 ____D C:\FRST
2015-07-10 16:55 - 2015-07-10 20:43 - 00000880 _____ C:\WINDOWS\setupapi.log
2015-07-06 21:45 - 2015-07-06 21:45 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-07-05 11:49 - 2015-07-07 23:42 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2015-07-05 11:15 - 2015-07-05 11:15 - 00000000 ____D C:\Program Files\Steam
2015-07-01 23:19 - 2015-07-02 22:32 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Sniper elite
2015-07-01 06:49 - 2015-07-01 06:49 - 00000000 ____D C:\WINDOWS\system32\dwjobs
2015-07-01 06:49 - 2015-07-01 06:49 - 00000000 ____D C:\log
2015-06-30 21:07 - 2015-06-30 21:07 - 00000000 ____D C:\WINDOWS\jumpshot.com
2015-06-30 00:00 - 2015-06-30 00:00 - 00000000 ____D C:\Documents and Settings\Default User\Local Settings\Data aplikací\Google
2015-06-29 23:52 - 2015-07-10 20:59 - 00000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-29 23:52 - 2015-07-10 20:41 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-29 21:48 - 2015-06-29 21:48 - 00291312 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\aswBoot.exe
2015-06-29 21:48 - 2015-06-29 21:48 - 00043112 _____ (Avast Software s.r.o.) C:\WINDOWS\avastSS.scr
2015-06-29 21:48 - 2015-06-29 21:48 - 00024144 _____ C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-06-29 21:48 - 2015-06-29 21:48 - 00001724 _____ C:\Documents and Settings\All Users\Plocha\Avast Free Antivirus.lnk
2015-06-29 21:48 - 2015-06-29 21:48 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\AVAST Software
2015-06-19 10:32 - 2015-06-19 13:10 - 00000000 ____D C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Temporary Projects

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-10 21:01 - 2013-01-30 01:36 - 00000000 ____D C:\Documents and Settings\uzivatel\Local Settings\temp
2015-07-10 21:00 - 2009-05-16 23:43 - 00000472 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{994E7CE8-57C0-4E17-8613-EE85D18A5B4E}.job
2015-07-10 20:49 - 2013-02-02 23:13 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-07-10 20:49 - 2008-07-31 15:40 - 00032374 _____ C:\WINDOWS\SchedLgU.Txt
2015-07-10 20:47 - 2013-01-25 15:34 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-07-10 20:47 - 2008-07-31 15:34 - 01510101 _____ C:\WINDOWS\WindowsUpdate.log
2015-07-10 20:46 - 2013-12-17 01:14 - 00000000 ____D C:\Documents and Settings\uzivatel\Data aplikací\Seznam.cz
2015-07-10 20:41 - 2014-03-27 11:48 - 00000228 _____ C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-07-10 20:41 - 2013-01-30 01:36 - 00000000 ____D C:\Documents and Settings\NetworkService\Local Settings\temp
2015-07-10 20:41 - 2011-01-30 09:39 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-07-10 20:41 - 2011-01-30 09:39 - 00000049 _____ C:\WINDOWS\wiaservc.log
2015-07-10 20:41 - 2008-08-01 10:52 - 00000104 _____ C:\WINDOWS\system32\nvapps.xml
2015-07-10 20:41 - 2008-07-31 15:40 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-07-10 20:40 - 2008-07-31 15:41 - 00000178 ___SH C:\Documents and Settings\uzivatel\ntuser.ini
2015-07-10 20:40 - 2008-07-31 15:41 - 00000000 ____D C:\Documents and Settings\uzivatel
2015-07-10 20:39 - 2008-07-31 23:25 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-07-10 20:39 - 2008-07-31 23:23 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2015-07-10 20:39 - 2008-07-31 15:41 - 00000000 __RHD C:\Documents and Settings\uzivatel\Data aplikací
2015-07-10 20:39 - 2008-07-31 15:41 - 00000000 ___RD C:\Documents and Settings\uzivatel\Nabídka Start\Programy
2015-07-10 20:39 - 2008-07-31 15:41 - 00000000 ___RD C:\Documents and Settings\uzivatel\Dokumenty
2015-07-10 20:39 - 2008-07-31 15:41 - 00000000 ___HD C:\Documents and Settings\uzivatel\Local Settings\Data aplikací
2015-07-10 20:35 - 2009-01-19 00:09 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Viry.cz
2015-07-10 00:31 - 2013-06-11 20:22 - 00000000 ____D C:\Documents and Settings\uzivatel\Plocha\Kristýna
2015-07-10 00:29 - 2013-12-07 01:34 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Origin
2015-07-10 00:22 - 2013-12-07 01:34 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Origin
2015-07-10 00:22 - 2013-12-07 01:33 - 00000000 ____D C:\Program Files\Origin
2015-07-09 21:14 - 2010-07-27 21:48 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Záloha registru
2015-07-09 20:16 - 2008-10-30 18:17 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Command and Conquer Generals Zero Hour Data
2015-07-08 21:39 - 2008-07-31 15:41 - 00000000 ____D C:\Documents and Settings\uzivatel\Plocha
2015-07-08 21:23 - 2010-03-13 01:50 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Stažené soubory
2015-07-08 21:01 - 2009-09-07 23:50 - 00001848 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2015-07-08 20:27 - 2014-03-27 11:48 - 00000222 _____ C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-07-07 23:42 - 2008-07-31 15:34 - 00000000 ____D C:\WINDOWS\system32\DirectX
2015-07-07 22:58 - 2006-03-02 14:00 - 00012598 _____ C:\WINDOWS\system32\wpa.dbl
2015-07-06 22:49 - 2011-01-09 01:21 - 00000000 ____D C:\Documents and Settings\uzivatel\Data aplikací\vlc
2015-07-06 22:45 - 2008-10-07 18:07 - 00000229 _____ C:\WINDOWS\NeroDigital.ini
2015-07-06 22:45 - 2008-08-05 20:26 - 00184320 _____ C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-07-06 22:02 - 2012-04-26 04:17 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-07-05 14:37 - 2012-04-09 09:56 - 00000000 ____D C:\Call of Duty- Modern Warfare 3
2015-07-05 14:22 - 2013-01-19 13:47 - 00000924 _____ C:\WINDOWS\Tasks\Google Software Updater.job
2015-07-04 02:22 - 2008-10-11 00:41 - 00000330 ____H C:\WINDOWS\Tasks\MP Scheduled Scan.job
2015-07-02 22:32 - 2008-07-31 15:33 - 00000000 ____D C:\WINDOWS\system32\Restore
2015-06-30 00:24 - 2008-07-31 23:25 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-06-30 00:00 - 2013-01-25 15:36 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Drive
2015-06-30 00:00 - 2008-07-31 23:25 - 00000000 ___HD C:\Documents and Settings\Default User\Local Settings\Data aplikací
2015-06-29 21:50 - 2013-01-25 18:02 - 00002347 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Adobe Reader XI.lnk
2015-06-29 21:48 - 2013-11-26 01:47 - 00209048 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-06-29 21:48 - 2013-11-26 01:47 - 00049904 _____ C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-06-29 21:48 - 2013-11-26 01:46 - 00074976 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-06-29 21:48 - 2013-01-25 15:34 - 00428120 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswsp.sys
2015-06-29 21:48 - 2013-01-25 15:34 - 00057888 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswTdi.sys
2015-06-29 21:48 - 2013-01-25 15:34 - 00055200 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswRdr.sys
2015-06-29 21:47 - 2013-01-25 15:34 - 00787760 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-06-28 18:19 - 2013-01-27 20:22 - 00000000 ____D C:\Documents and Settings\uzivatel\Plocha\Tabulky office
2015-06-20 15:42 - 2013-12-17 01:12 - 00000000 ____D C:\Program Files\VLC Player GPU+
2015-06-20 12:56 - 2008-10-28 17:51 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Command and Conquer Generals Data
2015-06-19 09:41 - 2015-06-09 08:01 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Visual Studio 2008
2015-06-18 01:03 - 2008-12-04 03:59 - 00000000 ____D C:\WINDOWS\Minidump
2015-06-15 14:02 - 2008-07-31 23:22 - 00000281 __RSH C:\boot.ini
2015-06-15 14:02 - 2006-03-02 14:00 - 00000762 _____ C:\WINDOWS\win.ini
2015-06-15 14:02 - 2006-03-02 14:00 - 00000227 _____ C:\WINDOWS\system.ini

==================== Files in the root of some directories =======

2008-10-07 18:08 - 2008-12-05 06:06 - 0000116 ____C () C:\Documents and Settings\uzivatel\Data aplikací\default.pls
2011-06-27 01:17 - 2012-02-22 16:17 - 0000151 _____ () C:\Documents and Settings\uzivatel\Data aplikací\default.rss
2008-12-21 03:52 - 2010-10-19 02:12 - 0138056 ____C () C:\Documents and Settings\uzivatel\Data aplikací\PnkBstrK.sys
2008-08-05 20:26 - 2015-07-06 22:45 - 0184320 _____ () C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2008-10-08 13:55 - 2008-10-08 13:55 - 0000128 ____C () C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\fusioncache.dat
2011-03-07 08:39 - 2013-12-09 18:11 - 0093418 _____ () C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\SRDownloader.err
2011-03-07 02:52 - 2013-12-09 18:11 - 0001608 _____ () C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\SRDownloader.nast

Some files in TEMP:
====================
C:\Documents and Settings\uzivatel\Local Settings\temp\Quarantine.exe
C:\Documents and Settings\uzivatel\Local Settings\temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of log ============================

[Refree]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-07-2015
Ran by uzivatel (administrator) on RADOVAN on 10-07-2015 20:59:48
Running from C:\Documents and Settings\uzivatel\Dokumenty\Viry.cz
Loaded Profiles: uzivatel (Available Profiles: uzivatel)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(UASSOFT.COM) C:\Program Files\Mouse Driver\KMWDSrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(Gainward Co.) C:\Program Files\EXPERTool\TBPANEL.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Rocket Division Software) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
() C:\Documents and Settings\uzivatel\Data aplikací\Seznam.cz\bin\szndesktop.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16857600 2008-03-31] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [69632 2008-03-31] (Realtek Semiconductor Corp.)
HKLM\...\Run: [nwiz] => nwiz.exe /install
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-06-29] (Avast Software s.r.o.)
HKLM\...\Run: [WireLessMouse] => C:\Program Files\Trust\Trust R-series Mouse And Keyboard\StartAutorun.exe MouseDrv.exe
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [PC Suite Tray] => C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [GAINWARD] => C:\Program Files\EXPERTool\TBPanel.exe [2177576 2008-06-04] (Gainward Co.)
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [cz.seznam.software.szndesktop] => C:\Documents and Settings\uzivatel\Data aplikací\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [AlcoholAutomount] => C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [220544 2007-07-02] (Alcohol Soft Development Team)
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [BD4D3F19C0E2D913F2435A456B4DD0B5CC4EE466._service_run] => C:\Program Files\Google\Chrome\Application\chrome.exe [813896 2015-07-07] (Google Inc.)
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\...\Run: [cz.seznam.software.autoupdate] => C:\Documents and Settings\uzivatel\Data aplikací\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk [2015-06-09]
ShortcutTarget: Windows Search.lnk -> C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-06-29] (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-05-19] (Google)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Bar = www.bing.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {0B7C38B7-9B4F-4418-9873-FA8FDAFE1EAC} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {1849FBCE-EAF5-4B4C-89B4-09AE7F2519DF} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {36EFB826-423B-4895-A811-2820C084DCF9} URL = http://search.seznam.cz/?q={searchTerms ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {3CE5367F-DBD2-425E-8424-8C6621DC905F} URL = http://www.mapy.cz/?query={searchTerms} ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {426CC094-D33E-4C62-AB1B-BC47558B834E} URL = http://en.wikipedia.org/w/index.php?tit ... earchTerms}
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {8FBE9963-84DF-4433-9EE0-8E0262A801CA} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {AC61CE1F-E252-48BB-9DAD-B2A6277A380B} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {C54740F3-F2A1-4EC5-BE68-D63A8FB52179} URL = http://encyklopedie.seznam.cz/search?q= ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {CE61D7A7-1E47-4D9C-A983-B219F3DD0107} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194
SearchScopes: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> {D7F39480-63DC-4B41-8D89-ADB329F6CCE1} URL = http://www.novinky.cz/hledej?w={searchT ... arch_16194
BHO: No Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> No File
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-01-24] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-29] (Avast Software s.r.o.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-01-24] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-1390067357-1788223648-725345543-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2008-04-14] (Společnost Microsoft)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.adobe.com/pub/shockwa ... wflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
ShellExecuteHooks: Microsoft AntiMalware ShellExecuteHook - {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll [83224 2006-11-03] (Microsoft Corporation)
Tcpip\..\Interfaces\{1E87C220-1C3D-4A12-87CE-51ACB6CAF337}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{4C5509A4-30C4-4FEC-8A6F-4CABF1D08928}: [DhcpNameServer] 94.74.192.252 94.74.192.244

FireFox:
========
FF ProfilePath: C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6yzwh7v1.default
FF NewTab: www.google.com
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Seznam
FF Homepage: hxxp://www.seznam.cz/
FF Keyword.URL: https://www.google.com/search
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll [2013-12-11] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw.dll [2011-08-02] (Adobe Systems, Inc.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2011-10-17] (Google)
FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\WINDOWS\system32\npDeployJava1.dll [2013-01-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.11.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-01-24] (Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll [2014-02-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @pack.google.com/Google Updater;version=14 -> C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll [2011-09-18] (Google)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-12-09] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-12-09] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin: yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1 -> C:\Program Files\Yahoo!\Common\npyaxmpb.dll [2006-11-03] (Yahoo! Inc.)
FF Plugin HKU\S-1-5-21-1390067357-1788223648-725345543-1004: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll [2012-02-22] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Extension: Flash Video Downloader - YouTube HD Downloader [4K] - C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6yzwh7v1.default\Extensions\artur.dubovoy@gmail.com [2015-06-30]
FF Extension: Microsoft .NET Framework Assistant - C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\6yzwh7v1.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-10-30]
FF Extension: Skype extension for Firefox - C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2015-07-06]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-06-29]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-01-25]

Chrome:
=======
CHR Profile: C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Seznam Lištička - Email) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2015-06-30]
CHR Extension: (Seznam Lištička - Slovník) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2015-06-30]
CHR Extension: (Lamborghini Sesto Elemento Theme) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb [2015-06-30]
CHR Extension: (Google Wallet) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-30]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2015-06-30]
CHR HKLM\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - No Path Or update_url value
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-06-29]
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - No Path Or update_url value
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - No Path Or update_url value

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-06-29] (Avast Software s.r.o.)
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2009-06-29] (Macrovision Europe Ltd.) [File not signed]
S2 gupdate1ca300516f91db8; C:\Program Files\Google\Update\GoogleUpdate.exe [107848 2015-06-29] (Google Inc.)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [170912 2013-01-24] (Oracle Corporation)
R2 KMWDSERVICE; C:\Program Files\Mouse Driver\KMWDSrv.exe [208896 2008-03-29] (UASSOFT.COM) [File not signed]
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [45272 2005-10-14] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [File not signed]
S4 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [75064 2014-02-12] ()
R2 StarWindServiceAE; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [275968 2007-05-28] (Rocket Division Software) [File not signed]
U4 avast! Firewall; "C:\Program Files\AVAST Software\Avast\afwServ.exe" [X]
S2 Hamachi2Svc; "C:\Program Files\LogMeIn Hamachi\hamachi-2.exe" -s [X]
S2 HWDeviceService.exe; "C:\Documents and Settings\All Users\Data aplikací\DatacardService\HWDeviceService.exe" -/service [X]
S4 NetDDE; %SystemRoot%\system32\netdde.exe [X]
S4 NetDDEdsdm; %SystemRoot%\system32\netdde.exe [X]
S2 O2 Internet. RunOuc; C:\Program Files\O2 Internet\UpdateDog\ouc.exe [X]
S4 PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [X]
S2 WinDefend; No ImagePath
S2 WSearch; No ImagePath

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24144 2015-06-29] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [74976 2015-06-29] (Avast Software s.r.o.)
R0 aswNdis; C:\WINDOWS\System32\DRIVERS\aswNdis.sys [12112 2013-09-25] (ALWIL Software)
R1 AswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55200 2015-06-29] (Avast Software s.r.o.)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49904 2015-06-29] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [787760 2015-06-29] (Avast Software s.r.o.)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [428120 2015-06-29] (Avast Software s.r.o.)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57888 2015-06-29] (Avast Software s.r.o.)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [209048 2015-06-29] ()
S3 Cardex; C:\WINDOWS\system32\drivers\TBPANEL.SYS [12256 2007-03-16] (Windows (R) 2000 DDK provider)
R3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [25280 2010-07-18] (LogMeIn, Inc.)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2007-10-31] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2007-10-31] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2007-10-31] (HP)
R3 KMWDFilter; C:\WINDOWS\System32\Drivers\KMWDFilter.SYS [17024 2008-03-22] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 MagicTune; C:\WINDOWS\System32\drivers\MTiCtwl.sys [13312 2006-08-28] () [File not signed]
R1 NCPro; C:\WINDOWS\system32\drivers\MTictwl.sys [13312 2006-08-28] () [File not signed]
R2 NwlnkIpx; C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys [88320 2008-04-13] (Microsoft Corporation)
R2 NwlnkNb; C:\WINDOWS\System32\DRIVERS\nwlnknb.sys [63232 2006-03-02] (Microsoft Corporation)
R2 NwlnkSpx; C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys [55936 2006-03-02] (Microsoft Corporation)
S3 Ser2pl; C:\WINDOWS\System32\DRIVERS\ser2pl.sys [43264 2003-07-16] (Prolific Technology Inc.) [File not signed]
R0 sfdrv01; C:\WINDOWS\System32\drivers\sfdrv01.sys [51200 2006-03-26] (Protection Technology (StarForce)) [File not signed]
R0 sfhlp02; C:\WINDOWS\System32\drivers\sfhlp02.sys [6656 2006-03-13] (Protection Technology (StarForce)) [File not signed]
R0 sfsync04; C:\WINDOWS\System32\drivers\sfsync04.sys [50176 2006-03-24] (Protection Technology (StarForce)) [File not signed]
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [477240 2012-05-07] (Duplex Secure Ltd.)
R2 TBPanel; C:\WINDOWS\system32\Drivers\TBPanel.sys [12256 2007-03-16] (Windows (R) 2000 DDK provider)
U3 arw3y4wf; C:\WINDOWS\system32\Drivers\arw3y4wf.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
U4 aswKbd; \??\C:\WINDOWS\system32\drivers\aswKbd.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS [X]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_cdcecm; system32\DRIVERS\ew_jucdcecm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
S4 IntelIde; No ImagePath
S3 kbfiltr; system32\DRIVERS\kbfiltr.sys [X]
S3 MSICDSetup; \??\D:\CDriver.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U3 TlntSvr; No ImagePath
S3 USBAAPL; System32\Drivers\usbaapl.sys [X]
U3 a9aq3qzs; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-10 20:36 - 2015-07-10 20:40 - 00000000 ____D C:\AdwCleaner
2015-07-10 19:24 - 2015-07-10 21:00 - 00000000 ____D C:\FRST
2015-07-10 16:55 - 2015-07-10 20:43 - 00000880 _____ C:\WINDOWS\setupapi.log
2015-07-06 21:45 - 2015-07-06 21:45 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-07-05 11:49 - 2015-07-07 23:42 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2015-07-05 11:15 - 2015-07-05 11:15 - 00000000 ____D C:\Program Files\Steam
2015-07-01 23:19 - 2015-07-02 22:32 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Sniper elite
2015-07-01 06:49 - 2015-07-01 06:49 - 00000000 ____D C:\WINDOWS\system32\dwjobs
2015-07-01 06:49 - 2015-07-01 06:49 - 00000000 ____D C:\log
2015-06-30 21:07 - 2015-06-30 21:07 - 00000000 ____D C:\WINDOWS\jumpshot.com
2015-06-30 00:00 - 2015-06-30 00:00 - 00000000 ____D C:\Documents and Settings\Default User\Local Settings\Data aplikací\Google
2015-06-29 23:52 - 2015-07-10 20:59 - 00000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-29 23:52 - 2015-07-10 20:41 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-29 21:48 - 2015-06-29 21:48 - 00291312 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\aswBoot.exe
2015-06-29 21:48 - 2015-06-29 21:48 - 00043112 _____ (Avast Software s.r.o.) C:\WINDOWS\avastSS.scr
2015-06-29 21:48 - 2015-06-29 21:48 - 00024144 _____ C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-06-29 21:48 - 2015-06-29 21:48 - 00001724 _____ C:\Documents and Settings\All Users\Plocha\Avast Free Antivirus.lnk
2015-06-29 21:48 - 2015-06-29 21:48 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\AVAST Software
2015-06-19 10:32 - 2015-06-19 13:10 - 00000000 ____D C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Temporary Projects

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-10 21:01 - 2013-01-30 01:36 - 00000000 ____D C:\Documents and Settings\uzivatel\Local Settings\temp
2015-07-10 21:00 - 2009-05-16 23:43 - 00000472 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{994E7CE8-57C0-4E17-8613-EE85D18A5B4E}.job
2015-07-10 20:49 - 2013-02-02 23:13 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-07-10 20:49 - 2008-07-31 15:40 - 00032374 _____ C:\WINDOWS\SchedLgU.Txt
2015-07-10 20:47 - 2013-01-25 15:34 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-07-10 20:47 - 2008-07-31 15:34 - 01510101 _____ C:\WINDOWS\WindowsUpdate.log
2015-07-10 20:46 - 2013-12-17 01:14 - 00000000 ____D C:\Documents and Settings\uzivatel\Data aplikací\Seznam.cz
2015-07-10 20:41 - 2014-03-27 11:48 - 00000228 _____ C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-07-10 20:41 - 2013-01-30 01:36 - 00000000 ____D C:\Documents and Settings\NetworkService\Local Settings\temp
2015-07-10 20:41 - 2011-01-30 09:39 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-07-10 20:41 - 2011-01-30 09:39 - 00000049 _____ C:\WINDOWS\wiaservc.log
2015-07-10 20:41 - 2008-08-01 10:52 - 00000104 _____ C:\WINDOWS\system32\nvapps.xml
2015-07-10 20:41 - 2008-07-31 15:40 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-07-10 20:40 - 2008-07-31 15:41 - 00000178 ___SH C:\Documents and Settings\uzivatel\ntuser.ini
2015-07-10 20:40 - 2008-07-31 15:41 - 00000000 ____D C:\Documents and Settings\uzivatel
2015-07-10 20:39 - 2008-07-31 23:25 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-07-10 20:39 - 2008-07-31 23:23 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2015-07-10 20:39 - 2008-07-31 15:41 - 00000000 __RHD C:\Documents and Settings\uzivatel\Data aplikací
2015-07-10 20:39 - 2008-07-31 15:41 - 00000000 ___RD C:\Documents and Settings\uzivatel\Nabídka Start\Programy
2015-07-10 20:39 - 2008-07-31 15:41 - 00000000 ___RD C:\Documents and Settings\uzivatel\Dokumenty
2015-07-10 20:39 - 2008-07-31 15:41 - 00000000 ___HD C:\Documents and Settings\uzivatel\Local Settings\Data aplikací
2015-07-10 20:35 - 2009-01-19 00:09 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Viry.cz
2015-07-10 00:31 - 2013-06-11 20:22 - 00000000 ____D C:\Documents and Settings\uzivatel\Plocha\Kristýna
2015-07-10 00:29 - 2013-12-07 01:34 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Origin
2015-07-10 00:22 - 2013-12-07 01:34 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Origin
2015-07-10 00:22 - 2013-12-07 01:33 - 00000000 ____D C:\Program Files\Origin
2015-07-09 21:14 - 2010-07-27 21:48 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Záloha registru
2015-07-09 20:16 - 2008-10-30 18:17 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Command and Conquer Generals Zero Hour Data
2015-07-08 21:39 - 2008-07-31 15:41 - 00000000 ____D C:\Documents and Settings\uzivatel\Plocha
2015-07-08 21:23 - 2010-03-13 01:50 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Stažené soubory
2015-07-08 21:01 - 2009-09-07 23:50 - 00001848 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2015-07-08 20:27 - 2014-03-27 11:48 - 00000222 _____ C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-07-07 23:42 - 2008-07-31 15:34 - 00000000 ____D C:\WINDOWS\system32\DirectX
2015-07-07 22:58 - 2006-03-02 14:00 - 00012598 _____ C:\WINDOWS\system32\wpa.dbl
2015-07-06 22:49 - 2011-01-09 01:21 - 00000000 ____D C:\Documents and Settings\uzivatel\Data aplikací\vlc
2015-07-06 22:45 - 2008-10-07 18:07 - 00000229 _____ C:\WINDOWS\NeroDigital.ini
2015-07-06 22:45 - 2008-08-05 20:26 - 00184320 _____ C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-07-06 22:02 - 2012-04-26 04:17 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-07-05 14:37 - 2012-04-09 09:56 - 00000000 ____D C:\Call of Duty- Modern Warfare 3
2015-07-05 14:22 - 2013-01-19 13:47 - 00000924 _____ C:\WINDOWS\Tasks\Google Software Updater.job
2015-07-04 02:22 - 2008-10-11 00:41 - 00000330 ____H C:\WINDOWS\Tasks\MP Scheduled Scan.job
2015-07-02 22:32 - 2008-07-31 15:33 - 00000000 ____D C:\WINDOWS\system32\Restore
2015-06-30 00:24 - 2008-07-31 23:25 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-06-30 00:00 - 2013-01-25 15:36 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Drive
2015-06-30 00:00 - 2008-07-31 23:25 - 00000000 ___HD C:\Documents and Settings\Default User\Local Settings\Data aplikací
2015-06-29 21:50 - 2013-01-25 18:02 - 00002347 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Adobe Reader XI.lnk
2015-06-29 21:48 - 2013-11-26 01:47 - 00209048 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-06-29 21:48 - 2013-11-26 01:47 - 00049904 _____ C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-06-29 21:48 - 2013-11-26 01:46 - 00074976 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-06-29 21:48 - 2013-01-25 15:34 - 00428120 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswsp.sys
2015-06-29 21:48 - 2013-01-25 15:34 - 00057888 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswTdi.sys
2015-06-29 21:48 - 2013-01-25 15:34 - 00055200 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswRdr.sys
2015-06-29 21:47 - 2013-01-25 15:34 - 00787760 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-06-28 18:19 - 2013-01-27 20:22 - 00000000 ____D C:\Documents and Settings\uzivatel\Plocha\Tabulky office
2015-06-20 15:42 - 2013-12-17 01:12 - 00000000 ____D C:\Program Files\VLC Player GPU+
2015-06-20 12:56 - 2008-10-28 17:51 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Command and Conquer Generals Data
2015-06-19 09:41 - 2015-06-09 08:01 - 00000000 ____D C:\Documents and Settings\uzivatel\Dokumenty\Visual Studio 2008
2015-06-18 01:03 - 2008-12-04 03:59 - 00000000 ____D C:\WINDOWS\Minidump
2015-06-15 14:02 - 2008-07-31 23:22 - 00000281 __RSH C:\boot.ini
2015-06-15 14:02 - 2006-03-02 14:00 - 00000762 _____ C:\WINDOWS\win.ini
2015-06-15 14:02 - 2006-03-02 14:00 - 00000227 _____ C:\WINDOWS\system.ini

==================== Files in the root of some directories =======

2008-10-07 18:08 - 2008-12-05 06:06 - 0000116 ____C () C:\Documents and Settings\uzivatel\Data aplikací\default.pls
2011-06-27 01:17 - 2012-02-22 16:17 - 0000151 _____ () C:\Documents and Settings\uzivatel\Data aplikací\default.rss
2008-12-21 03:52 - 2010-10-19 02:12 - 0138056 ____C () C:\Documents and Settings\uzivatel\Data aplikací\PnkBstrK.sys
2008-08-05 20:26 - 2015-07-06 22:45 - 0184320 _____ () C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2008-10-08 13:55 - 2008-10-08 13:55 - 0000128 ____C () C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\fusioncache.dat
2011-03-07 08:39 - 2013-12-09 18:11 - 0093418 _____ () C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\SRDownloader.err
2011-03-07 02:52 - 2013-12-09 18:11 - 0001608 _____ () C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\SRDownloader.nast

Some files in TEMP:
====================
C:\Documents and Settings\uzivatel\Local Settings\temp\Quarantine.exe
C:\Documents and Settings\uzivatel\Local Settings\temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of log ============================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Bar = www.bing.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
CHR HKLM\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - No Path Or update_url value
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - No Path Or update_url value
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - No Path Or update_url value
S2 WinDefend; No ImagePath
S2 WSearch; No ImagePath
S4 IntelIde; No ImagePath
U3 TlntSvr; No ImagePath
U3 a9aq3qzs; No ImagePath
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Documents and Settings\uzivatel\Local Settings\temp
End

Uložte do C:\Documents and Settings\uzivatel\Dokumenty\Viry.cz jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Refree]

Fix result of Farbar Recovery Scan Tool (x86) Version: 09-07-2015
Ran by uzivatel at 2015-07-10 22:45:12 Run:1
Running from C:\Documents and Settings\uzivatel\Dokumenty\Viry.cz
Loaded Profiles: uzivatel (Available Profiles: uzivatel)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Bar = www.bing.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
CHR HKLM\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - No Path Or update_url value
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - No Path Or update_url value
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - No Path Or update_url value
S2 WinDefend; No ImagePath
S2 WSearch; No ImagePath
S4 IntelIde; No ImagePath
U3 TlntSvr; No ImagePath
U3 a9aq3qzs; No ImagePath
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Documents and Settings\uzivatel\Local Settings\temp
End
*****************

"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\Software\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKU\S-1-5-21-1390067357-1788223648-725345543-1004\Software\Microsoft\Internet Explorer\Main\\Search Bar => value removed successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
"HKLM\SOFTWARE\Google\Chrome\Extensions\fnjbmmemklcjgepojigaapkoodmkgbae" => key removed successfully.
"HKLM\SOFTWARE\Google\Chrome\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk" => key removed successfully.
"HKLM\SOFTWARE\Google\Chrome\Extensions\nneajnkjbffgblleaoojgaacokifdkhm" => key removed successfully.
WinDefend => Service removed successfully.
WSearch => Service removed successfully.
IntelIde => Service removed successfully.
TlntSvr => Service removed successfully.
a9aq3qzs => Service removed successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully.

"C:\Documents and Settings\uzivatel\Local Settings\temp" folder move:

Could not move "C:\Documents and Settings\uzivatel\Local Settings\temp" folder => Scheduled to move on reboot.


Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-07-10 22:57:03)<=

C:\Documents and Settings\uzivatel\Local Settings\temp => moved successfully

==== End of Fixlog 22:57:04 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[Refree]

Tak zmáčknul jsem ,, vypnout počítač" nic se nedělo dlouhou chvíli, počítač jakoby zamrznul, ale po dlouhé chvíli obrazovka změnila barvu na černobílou a vyskočila tabulka jestli restartovat atd.
Nebude to taky tím že mám plný hardisk? 1.36GB volnýho místa?
Nicméně děkuji Radovan

[Rudy]

Určitě to vliv má. Uvolněte místo na disku přesunutím něterých vašich dat na jiné úložiště, příp. odinstalací nepoužívaných aplikací.