Prosím o kontrolu logu... prevence

[kosta.m]

FRSTLauncher stáhnu ulozim na plochu a hlasi mi to ze je nerze 64 a ja potrebuji 32 ale nevim kde ji mam stahnout.
Omlouvam se za moji natvrdlost

[kosta.m]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 28-10-2013
Ran by denosek (administrator) on MARA on 29-10-2013 19:14:37
Running from C:\Users\denosek\Desktop
Microsoft Windows 7 Home Premium (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\SYSTEM32\WISPTIS.EXE
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(Teruten) C:\Windows\system32\FsUsbExService.Exe
() C:\Program Files\LXiMediaCenter\lximcbackend.exe
(Nero AG) C:\Program Files\Nero\Nero MediaHome 4\NMMediaServerService.exe
(Tanuki Software, Ltd.) C:\Program Files\PS3 Media Server\win32\service\wrapper.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(MICRO-STAR INT'L,.LTD.) C:\Program Files\msi\OSD hot keys\WMI_Hook_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Sun Microsystems, Inc.) C:\Windows\system32\java.exe
(Microsoft Corporation) C:\Windows\system32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\system32\UI0Detect.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Windows\SYSTEM32\WISPTIS.EXE
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
(SlimWare Utilities, Inc.) C:\Program Files\SlimDrivers\SlimDrivers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Microsoft Corporation) C:\Program Files\Zune\ZuneLauncher.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Nero AG) C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe
(RealNetworks, Inc.) C:\Program Files\real\realplayer\Update\realsched.exe
(Samsung) C:\Program Files\Samsung\Kies\Kies.exe
(Samsung Electronics) C:\Program Files\Samsung\Kies\KiesAirMessage.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Macrovision Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
(BitTorrent, Inc.) C:\Program Files\uTorrent\uTorrent.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
() C:\Users\denosek\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(阿里云计算有限公司) C:\Program Files\Trademanager\miser\AliimSafe.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(Farbar) C:\Users\denosek\Desktop\FRST(1).exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7612960 2009-07-10] (Realtek Semiconductor)
HKLM\...\Run: [Google Desktop Search] - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-11-02] (Google)
HKLM\...\Run: [Windows Mobile Device Center] - C:\Windows\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [Zune Launcher] - C:\Program Files\Zune\ZuneLauncher.exe [159456 2011-08-05] (Microsoft Corporation)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [995176 2013-08-12] (Microsoft Corporation)
HKLM\...\Run: [KiesTrayAgent] - C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311152 2013-04-23] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [Nero MediaHome 4] - C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe [5178664 2012-02-28] (Nero AG)
HKLM\...\Run: [seznam-listicka-distribuce] - C:\Program Files\Seznam.cz\distribution\szninstall.exe [1009288 2012-09-13] ()
HKLM\...\Run: [NvCplDaemon] - RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [TkBellExe] - C:\Program Files\real\realplayer\Update\realsched.exe [295512 2013-09-12] (RealNetworks, Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKCU\...\Run: [KiesPreload] - C:\Program Files\Samsung\Kies\Kies.exe [1561968 2013-04-23] (Samsung)
HKCU\...\Run: [KiesAirMessage] - C:\Program Files\Samsung\Kies\KiesAirMessage.exe [578560 2013-04-18] (Samsung Electronics)
HKCU\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [18642024 2013-02-28] (Skype Technologies S.A.)
HKCU\...\Run: [cz.seznam.software.autoupdate] - C:\Users\denosek\AppData\Roaming\Seznam.cz\szninstall.exe [1009288 2012-09-13] ()
HKCU\...\Run: [cz.seznam.software.szndesktop] - C:\Users\denosek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92152 2013-01-22] ()
HKCU\...\Run: [aliim] - C:\Program Files\Trademanager\AliIM.exe [293272 2013-08-22] (Alibaba (China) Co., Ltd.)
HKCU\...\Run: [ISUSPM] - C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [213936 2006-03-20] (Macrovision Corporation)
HKCU\...\Run: [uTorrent] - C:\Program Files\uTorrent\uTorrent.exe [969104 2012-12-31] (BitTorrent, Inc.)
AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll [ 2010-11-02] (Google)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages =
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {1685D7AF-BD5E-4674-8619-8995EF9F470D} URL = http://www.mapy.cz/?query={searchTerms} ... arch_12454
SearchScopes: HKCU - {1830F1A5-D751-4D2F-B2DC-2509B96A9AF4} URL = http://encyklopedie.seznam.cz/search?q= ... arch_12454
SearchScopes: HKCU - {7C2DBB22-385F-413B-8616-E2A7B1A96558} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_12454
SearchScopes: HKCU - {AB3EB8A3-B2B8-48C9-B7FC-A0661DBECBDA} URL = http://www.firmy.cz/phr/{searchTerms}?s ... arch_12454
SearchScopes: HKCU - {B0D4AECD-67CF-4E7F-A4DB-131EBD6A1404} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_12454
SearchScopes: HKCU - {CC14233F-73AA-4565-9CAB-FDF30ECF65BC} URL = http://search.seznam.cz/?q={searchTerms ... arch_12454
SearchScopes: HKCU - {E2D2578E-7041-4610-8B7A-A66ACF9D95DD} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_12454
BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\denosek\AppData\Roaming\Mozilla\Firefox\Profiles\4brtbfr2.default
FF Homepage: seznam.cz
FF Keyword.URL: hxxp://search.seznam.cz/?sourceid=undefined&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @alibaba.com/nptrademanager;version=1.0 - C:\Program Files\Trademanager\nptrademanager.dll ( )
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @alibaba.com/npAliSSOLogin;version=1.0 - C:\Program Files\Trademanager\npAliSSOLogin.dll (Alibaba software (Shanghai) Corporation.)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\denosek\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\denosek\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\denosek\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\denosek\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\denosek\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: {@alibaba.com/alisetup;version=1.0} - C:\Users\denosek\AppData\Local\Alibaba\AliSetup\0.1.0.52\npAliSetupOneClick.dll (alibaba)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\firmycz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\googledesktop.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\mapycz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\zbocz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Noia 2.0 eXtreme OPT - C:\Users\denosek\AppData\Roaming\Mozilla\Firefox\Profiles\4brtbfr2.default\Extensions\noia2_option@kk.noia
FF Extension: Seznam lištička - C:\Users\denosek\AppData\Roaming\Mozilla\Firefox\Profiles\4brtbfr2.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
FF Extension: Noia4Options - C:\Users\denosek\AppData\Roaming\Mozilla\Firefox\Profiles\4brtbfr2.default\Extensions\Noia4Options@ArisT2.xpi
FF Extension: NoiaFoxoption - C:\Users\denosek\AppData\Roaming\Mozilla\Firefox\Profiles\4brtbfr2.default\Extensions\NoiaFoxoption@davidvincent.tld.xpi
FF Extension: togglepersona - C:\Users\denosek\AppData\Roaming\Mozilla\Firefox\Profiles\4brtbfr2.default\Extensions\togglepersona@davidvincent.tld.xpi
FF Extension: No Name - C:\Users\denosek\AppData\Roaming\Mozilla\Firefox\Profiles\4brtbfr2.default\Extensions\{7b90e860-5d61-11e0-80e3-0800200c9a66}.xpi
FF Extension: No Name - C:\Users\denosek\AppData\Roaming\Mozilla\Firefox\Profiles\4brtbfr2.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======
CHR HomePage: hxxp://www.seznam.cz/?clid=12454
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR DefaultSearchURL: (Conduit) - http://www.google.com
CHR DefaultSuggestURL: (Conduit) - http://www.google.com
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.160.1) - C:\Program Files\Java\jre6\bin\new_plugin\npdeploytk.dll (Sun Microsystems, Inc.)
CHR Plugin: (Java(TM) Platform SE 6 U16) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (RealJukebox NS Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll No File
CHR Plugin: (Google Talk Plugin) - C:\Users\denosek\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
CHR Plugin: (Google Talk Plugin Video Accelerator) - C:\Users\denosek\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Extension: (Seznam Li\u0161ti\u010Dka - Email) - C:\Users\denosek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig\1.3.13_0
CHR Extension: (Seznam Li\u0161ti\u010Dka - Slovn\u00EDk) - C:\Users\denosek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd\1.2.13_0
CHR Extension: (YouTube) - C:\Users\denosek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\denosek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (RealDownloader) - C:\Users\denosek\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.3_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\denosek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Seznam Li\u0161ti\u010Dka - Rychl\u00E1 volba) - C:\Users\denosek\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak\1.5.14_0
CHR Extension: (Gmail) - C:\Users\denosek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx

========================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [116608 2012-10-29] (SUPERAntiSpyware.com)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [101376 2012-12-28] (Freemake)
S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-11-02] (Google)
R2 LXiMediaCenter Backend; C:\Program Files\LXiMediaCenter\lximcbackend.exe [704512 2012-02-29] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [235216 2013-09-06] (McAfee, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-08-12] (Microsoft Corporation)
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [584488 2011-03-04] (Nero AG)
R2 NeroMediaHomeService.4; C:\Program Files\Nero\Nero MediaHome 4\NMMediaServerService.exe [517416 2012-02-28] (Nero AG)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [295376 2013-08-12] (Microsoft Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [247152 2009-02-25] ()
S3 WifiprPasscapeLoader; C:\Program Files\Passcape\WIFIPR\loader.exe [57344 2012-05-29] ()
R2 WMI_Hook_Service; C:\Program Files\msi\OSD hot keys\WMI_Hook_Service.exe [101176 2009-09-04] (MICRO-STAR INT'L,.LTD.)
R2 PS3 Media Server; "C:\Program Files\PS3 Media Server\win32\service\wrapper.exe" -s "C:\Program Files\PS3 Media Server\win32\service\wrapper.conf" wrapper.console.flush=true wrapper.internal.namedpipe=0393011925

==================== Drivers (Whitelisted) ====================

S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [26112 2010-04-29] (Google Inc)
R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-10-04] (AVG Technologies)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [239168 2011-12-24] (DT Soft Ltd)
R3 ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [34760 2007-02-16] (SlySoft, Inc.)
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [24232 2009-02-17] (Elaborate Bytes AG)
R3 FsUsbExDisk; C:\Windows\system32\FsUsbExDisk.SYS [37344 2013-02-05] ()
R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [56208 2010-10-12] (Paragon Software Group)
R1 hwinterface; C:\Windows\System32\Drivers\hwinterface.sys [3026 2012-10-10] (Logix4u)
R3 KMWDFILTERx86; C:\Windows\System32\DRIVERS\KMWDFILTER.sys [25088 2009-04-29] (Windows (R) Codename Longhorn DDK provider)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [211560 2013-06-18] (Microsoft Corporation)
S3 MSIDriver_IO_2; C:\Program Files\msi\OSD hot keys\MSI_MAINSYS.sys [26936 2009-08-25] (Your Corporation)
R0 nvamacpi; C:\Windows\System32\DRIVERS\NVAMACPI.sys [24608 2009-06-05] (NVIDIA Corporation)
R3 NxpCap; C:\Windows\System32\DRIVERS\NxpCap.sys [1488096 2009-07-30] (NXP Semiconductors Germany GmbH)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [13464 2013-10-29] ()
R1 UimBus; C:\Windows\System32\DRIVERS\UimBus.sys [37080 2010-10-12] (Windows (R) 2000 DDK provider)
R1 Uim_IM; C:\Windows\System32\Drivers\Uim_IM.sys [395464 2010-10-12] (Paragon)
R1 vmm; C:\Windows\system32\Drivers\vmm.sys [230248 2010-09-08] (Microsoft Corporation)
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}; C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl [87536 2010-11-17] (CyberLink Corp.)
R2 {B154377D-700F-42cc-9474-23858FBDF4BD}; C:\Program Files\CyberLink\PowerDVD9\000.fcl [87536 2009-02-28] (CyberLink Corp.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\Users\denosek\AppData\Local\Temp\catchme.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-29 18:56 - 2013-10-29 18:56 - 01089183 _____ (Farbar) C:\Users\denosek\Desktop\FRST(1).exe
2013-10-29 18:52 - 2013-10-29 18:52 - 00000000 ____D C:\ProgramData\boost_interprocess
2013-10-29 18:38 - 2013-10-29 18:38 - 00001652 _____ C:\Users\denosek\Desktop\ckfiles.txt
2013-10-29 18:37 - 2013-10-29 18:37 - 00468480 _____ () C:\Users\denosek\Desktop\CKScanner(1).exe
2013-10-29 18:30 - 2013-10-29 18:49 - 00000000 ____D C:\AdwCleaner
2013-10-29 18:29 - 2013-10-29 18:34 - 00001652 _____ C:\Users\denosek\Downloads\ckfiles.txt
2013-10-29 18:25 - 2013-10-29 18:25 - 01060070 _____ C:\Users\denosek\Desktop\adwcleaner.exe
2013-10-29 18:24 - 2013-10-29 18:24 - 00468480 _____ () C:\Users\denosek\Downloads\CKScanner.exe
2013-10-29 18:14 - 2013-10-29 18:14 - 00018171 _____ C:\ComboFix.txt
2013-10-29 18:04 - 2013-10-29 18:50 - 00000112 _____ C:\Windows\setupact.log
2013-10-29 18:04 - 2013-10-29 18:04 - 00000552 _____ C:\Windows\PFRO.log
2013-10-29 18:04 - 2013-10-29 18:04 - 00000000 _____ C:\Windows\setuperr.log
2013-10-29 17:49 - 2013-10-29 18:15 - 00000000 ____D C:\Qoobox
2013-10-29 17:49 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2013-10-29 17:49 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2013-10-29 17:49 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-10-29 17:49 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-10-29 17:49 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-10-29 17:49 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2013-10-29 17:49 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2013-10-29 17:49 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2013-10-29 17:46 - 2013-10-29 17:46 - 05137551 ____R (Swearware) C:\Users\denosek\Downloads\ComboFix.exe
2013-10-29 17:41 - 2013-10-29 17:43 - 00002550 _____ C:\Users\denosek\Desktop\Rkill.txt
2013-10-29 17:38 - 2013-10-29 17:38 - 01898232 _____ (Bleeping Computer, LLC) C:\Users\denosek\Desktop\rkill.com
2013-10-29 17:28 - 2013-10-29 17:28 - 00037413 _____ C:\Users\denosek\Downloads\FRST.txt
2013-10-29 17:25 - 2013-10-29 17:28 - 00039724 _____ C:\Users\denosek\Downloads\Addition.txt
2013-10-29 16:43 - 2013-10-29 16:43 - 00112128 _____ (forum.viry.cz) C:\Users\denosek\Downloads\FRSTLauncher.exe
2013-10-29 16:41 - 2013-10-29 16:41 - 00000000 ____D C:\FRST
2013-10-29 16:39 - 2013-10-29 16:39 - 01089183 _____ (Farbar) C:\Users\denosek\Downloads\FRST.exe
2013-10-29 16:39 - 2013-10-29 16:39 - 00112107 _____ (forum.viry.cz) C:\Users\denosek\Downloads\VerzeOS.exe
2013-10-29 16:33 - 2013-10-29 16:33 - 01247056 _____ (Microsoft Corporation) C:\Users\denosek\Downloads\wlsetup-web(1).exe
2013-10-28 22:44 - 2013-10-28 22:44 - 00342154 _____ C:\Users\denosek\Downloads\♺ PlayDaddy Collection.torrent
2013-10-28 12:09 - 2013-10-28 12:09 - 00000000 ____D C:\Users\denosek\Documents\My WangWang
2013-10-27 22:34 - 2013-10-27 22:34 - 00013917 _____ C:\Users\denosek\Downloads\PlayDaddy - A Chance Encounter.torrent
2013-10-25 10:24 - 2013-10-25 10:28 - 42133180 _____ C:\Users\denosek\Downloads\RTM-(Windows-7)CZ-Language-Pack-x86-+-navod-na-instalaci-cestiny.rar
2013-10-09 14:46 - 2013-10-09 15:07 - 387189839 _____ C:\Users\denosek\Downloads\Feiteng-H9500+-CWM.zip
2013-10-01 00:36 - 2013-10-01 00:37 - 00000000 ____D C:\Program Files\Mozilla Firefox

==================== One Month Modified Files and Folders =======

2013-10-29 19:27 - 2011-02-12 20:48 - 00000000 ____D C:\Users\denosek\AppData\Roaming\uTorrent
2013-10-29 19:26 - 2013-02-19 16:00 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-29 19:26 - 2010-11-24 20:46 - 00000000 ____D C:\Users\denosek\AppData\Roaming\Skype
2013-10-29 19:13 - 2013-02-19 01:45 - 00000970 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1176429872-680437442-246994520-1000UA.job
2013-10-29 18:59 - 2009-07-14 05:34 - 00010096 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-29 18:59 - 2009-07-14 05:34 - 00010096 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-29 18:56 - 2013-10-29 18:56 - 01089183 _____ (Farbar) C:\Users\denosek\Desktop\FRST(1).exe
2013-10-29 18:56 - 2013-03-05 15:59 - 00000000 ____D C:\Users\denosek\AppData\Roaming\Seznam.cz
2013-10-29 18:56 - 2009-08-13 15:08 - 02306364 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-29 18:55 - 2012-02-02 11:00 - 01530066 _____ C:\Windows\WindowsUpdate.log
2013-10-29 18:54 - 2012-12-05 16:53 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-29 18:52 - 2013-10-29 18:52 - 00000000 ____D C:\ProgramData\boost_interprocess
2013-10-29 18:52 - 2013-08-26 15:40 - 00000390 _____ C:\Windows\Tasks\SlimDrivers Startup.job
2013-10-29 18:52 - 2013-07-19 11:01 - 00000000 ____D C:\Program Files\Trademanager
2013-10-29 18:51 - 2013-08-26 15:40 - 00013464 _____ C:\Windows\system32\Drivers\SWDUMon.sys
2013-10-29 18:51 - 2013-02-19 16:00 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-29 18:51 - 2012-12-31 19:56 - 00000000 ____D C:\Program Files\PS3 Media Server
2013-10-29 18:50 - 2013-10-29 18:04 - 00000112 _____ C:\Windows\setupact.log
2013-10-29 18:50 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-29 18:49 - 2013-10-29 18:30 - 00000000 ____D C:\AdwCleaner
2013-10-29 18:48 - 2010-10-19 13:40 - 00000000 ____D C:\ProgramData\ICQ
2013-10-29 18:38 - 2013-10-29 18:38 - 00001652 _____ C:\Users\denosek\Desktop\ckfiles.txt
2013-10-29 18:37 - 2013-10-29 18:37 - 00468480 _____ () C:\Users\denosek\Desktop\CKScanner(1).exe
2013-10-29 18:34 - 2013-10-29 18:29 - 00001652 _____ C:\Users\denosek\Downloads\ckfiles.txt
2013-10-29 18:25 - 2013-10-29 18:25 - 01060070 _____ C:\Users\denosek\Desktop\adwcleaner.exe
2013-10-29 18:24 - 2013-10-29 18:24 - 00468480 _____ () C:\Users\denosek\Downloads\CKScanner.exe
2013-10-29 18:15 - 2013-10-29 17:49 - 00000000 ____D C:\Qoobox
2013-10-29 18:14 - 2013-10-29 18:14 - 00018171 _____ C:\ComboFix.txt
2013-10-29 18:06 - 2009-07-14 03:04 - 00000215 _____ C:\Windows\system.ini
2013-10-29 18:04 - 2013-10-29 18:04 - 00000552 _____ C:\Windows\PFRO.log
2013-10-29 18:04 - 2013-10-29 18:04 - 00000000 _____ C:\Windows\setuperr.log
2013-10-29 18:03 - 2012-02-01 18:11 - 00000000 ____D C:\Windows\ERDNT
2013-10-29 17:46 - 2013-10-29 17:46 - 05137551 ____R (Swearware) C:\Users\denosek\Downloads\ComboFix.exe
2013-10-29 17:43 - 2013-10-29 17:41 - 00002550 _____ C:\Users\denosek\Desktop\Rkill.txt
2013-10-29 17:38 - 2013-10-29 17:38 - 01898232 _____ (Bleeping Computer, LLC) C:\Users\denosek\Desktop\rkill.com
2013-10-29 17:28 - 2013-10-29 17:28 - 00037413 _____ C:\Users\denosek\Downloads\FRST.txt
2013-10-29 17:28 - 2013-10-29 17:25 - 00039724 _____ C:\Users\denosek\Downloads\Addition.txt
2013-10-29 16:43 - 2013-10-29 16:43 - 00112128 _____ (forum.viry.cz) C:\Users\denosek\Downloads\FRSTLauncher.exe
2013-10-29 16:41 - 2013-10-29 16:41 - 00000000 ____D C:\FRST
2013-10-29 16:39 - 2013-10-29 16:39 - 01089183 _____ (Farbar) C:\Users\denosek\Downloads\FRST.exe
2013-10-29 16:39 - 2013-10-29 16:39 - 00112107 _____ (forum.viry.cz) C:\Users\denosek\Downloads\VerzeOS.exe
2013-10-29 16:36 - 2010-10-19 09:44 - 00000000 ____D C:\Users\denosek\AppData\Roaming\Winamp
2013-10-29 16:33 - 2013-10-29 16:33 - 01247056 _____ (Microsoft Corporation) C:\Users\denosek\Downloads\wlsetup-web(1).exe
2013-10-29 15:13 - 2013-02-19 01:45 - 00000918 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1176429872-680437442-246994520-1000Core.job
2013-10-29 09:39 - 2011-03-17 19:02 - 00000000 ____D C:\Users\denosek\Desktop\AF
2013-10-29 09:32 - 2013-04-05 17:53 - 00000546 _____ C:\Users\denosek\Desktop\Nový textový dokument (2).txt
2013-10-29 09:07 - 2010-10-19 09:32 - 00000000 ____D C:\Users\denosek\AppData\Roaming\vlc
2013-10-28 22:44 - 2013-10-28 22:44 - 00342154 _____ C:\Users\denosek\Downloads\♺ PlayDaddy Collection.torrent
2013-10-28 22:44 - 2010-10-18 22:12 - 00000000 ____D C:\Stahovani
2013-10-28 12:09 - 2013-10-28 12:09 - 00000000 ____D C:\Users\denosek\Documents\My WangWang
2013-10-28 11:33 - 2012-12-31 20:05 - 01224704 ___SH C:\Users\denosek\Downloads\Thumbs.db
2013-10-28 09:23 - 2010-10-18 21:43 - 00000000 ____D C:\Install
2013-10-28 01:12 - 2011-01-19 14:53 - 00000117 _____ C:\Users\denosek\Desktop\paypal.txt
2013-10-27 22:34 - 2013-10-27 22:34 - 00013917 _____ C:\Users\denosek\Downloads\PlayDaddy - A Chance Encounter.torrent
2013-10-25 10:44 - 2011-02-11 09:18 - 00000000 ____D C:\Users\denosek\AppData\Local\Windows Live
2013-10-25 10:28 - 2013-10-25 10:24 - 42133180 _____ C:\Users\denosek\Downloads\RTM-(Windows-7)CZ-Language-Pack-x86-+-navod-na-instalaci-cestiny.rar
2013-10-24 03:14 - 2010-10-18 21:44 - 00000000 ____D C:\Users\denosek\AppData\Roaming\Mozilla
2013-10-19 09:04 - 2013-09-12 19:45 - 00001978 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2013-10-19 09:04 - 2013-09-12 19:45 - 00000000 ____D C:\Program Files\McAfee Security Scan
2013-10-15 23:05 - 2011-01-26 08:00 - 00001912 _____ C:\Windows\epplauncher.mif
2013-10-15 23:05 - 2011-01-26 07:59 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-10-14 08:35 - 2010-11-02 16:03 - 00000000 ____D C:\Windows\Minidump
2013-10-10 02:26 - 2009-08-13 16:14 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-10 02:09 - 2009-08-13 16:16 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-10 02:08 - 2013-08-12 02:00 - 00000000 ____D C:\Windows\system32\MRT
2013-10-10 02:05 - 2009-08-13 16:50 - 78106760 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-09 15:07 - 2013-10-09 14:46 - 387189839 _____ C:\Users\denosek\Downloads\Feiteng-H9500+-CWM.zip
2013-10-09 14:03 - 2010-10-30 01:18 - 00000000 ____D C:\Users\denosek\AppData\Local\Google
2013-10-09 09:54 - 2012-06-12 10:01 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-10-09 09:54 - 2011-09-25 11:08 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-10-09 08:04 - 2012-12-31 17:55 - 00000000 ____D C:\Users\NeroMediaHomeUser.4
2013-10-09 08:03 - 2012-05-04 08:31 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-10-04 08:05 - 2013-08-26 15:50 - 00003728 _____ C:\Program Files\Mozilla Firefoxavg-secure-search.xml
2013-10-04 08:03 - 2010-10-18 21:44 - 00000000 ____D C:\Users\denosek\AppData\Local\Mozilla
2013-10-04 08:02 - 2013-08-26 15:50 - 00037664 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx86.sys
2013-10-01 10:15 - 2009-08-13 16:07 - 00000000 ____D C:\ProgramData\Adobe
2013-10-01 00:37 - 2013-10-01 00:36 - 00000000 ____D C:\Program Files\Mozilla Firefox

Some content of TEMP:
====================
C:\Users\denosek\AppData\Local\temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-22 23:33

==================== End Of Log ============================

[vyosek]

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  HKLM\...\Run: [Zune Launcher] - C:\Program Files\Zune\ZuneLauncher.exe [159456 2011-08-05] (Microsoft Corporation)
  HKLM\...\Run: [KiesTrayAgent] - C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311152 2013-04-23] (Samsung Electronics Co., Ltd.)
  HKLM\...\Run: [Nero MediaHome 4] - C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe [5178664 2012-02-28] (Nero AG)
  HKLM\...\Run: [seznam-listicka-distribuce] - C:\Program Files\Seznam.cz\distribution\szninstall.exe [1009288 2012-09-13] ()
  HKLM\...\Run: [TkBellExe] - C:\Program Files\real\realplayer\Update\realsched.exe [295512 2013-09-12] (RealNetworks, Inc.)
  HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
  HKCU\...\Run: [KiesPreload] - C:\Program Files\Samsung\Kies\Kies.exe [1561968 2013-04-23] (Samsung)
  HKCU\...\Run: [KiesAirMessage] - C:\Program Files\Samsung\Kies\KiesAirMessage.exe [578560 2013-04-18] (Samsung Electronics)
  HKCU\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [18642024 2013-02-28] (Skype Technologies S.A.)
  HKCU\...\Run: [cz.seznam.software.autoupdate] - C:\Users\denosek\AppData\Roaming\Seznam.cz\szninstall.exe [1009288 2012-09-13] ()
  HKCU\...\Run: [cz.seznam.software.szndesktop] - C:\Users\denosek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92152 2013-01-22] ()
  HKCU\...\Run: [aliim] - C:\Program Files\Trademanager\AliIM.exe [293272 2013-08-22] (Alibaba (China) Co., Ltd.)
  HKCU\...\Run: [ISUSPM] - C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [213936 2006-03-20] (Macrovision Corporation)
  HKCU\...\Run: [uTorrent] - C:\Program Files\uTorrent\uTorrent.exe [969104 2012-12-31] (BitTorrent, Inc.)
  
  HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
  HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
  HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
  HKLM\Software\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm
  HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages =
  SearchScopes: HKLM - DefaultScope value is missing.
  
  FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\avg-secure-search.xml
  
  CHR DefaultSearchURL: (Conduit) - http://www.google.com
  CHR DefaultSuggestURL: (Conduit) - http://www.google.com
  
  2013-10-29 18:38 - 2013-10-29 18:38 - 00001652 _____ C:\Users\denosek\Desktop\ckfiles.txt
  2013-10-29 18:37 - 2013-10-29 18:37 - 00468480 _____ () C:\Users\denosek\Desktop\CKScanner(1).exe
  2013-10-29 18:30 - 2013-10-29 18:49 - 00000000 ____D C:\AdwCleaner
  2013-10-29 18:29 - 2013-10-29 18:34 - 00001652 _____ C:\Users\denosek\Downloads\ckfiles.txt
  2013-10-29 18:25 - 2013-10-29 18:25 - 01060070 _____ C:\Users\denosek\Desktop\adwcleaner.exe
  2013-10-29 18:24 - 2013-10-29 18:24 - 00468480 _____ () C:\Users\denosek\Downloads\CKScanner.exe
  2013-10-29 17:46 - 2013-10-29 17:46 - 05137551 ____R (Swearware) C:\Users\denosek\Downloads\ComboFix.exe
  2013-10-29 17:41 - 2013-10-29 17:43 - 00002550 _____ C:\Users\denosek\Desktop\Rkill.txt
  2013-10-29 17:38 - 2013-10-29 17:38 - 01898232 _____ (Bleeping Computer, LLC) C:\Users\denosek\Desktop\rkill.com
  2013-10-29 17:28 - 2013-10-29 17:28 - 00037413 _____ C:\Users\denosek\Downloads\FRST.txt
  2013-10-29 17:25 - 2013-10-29 17:28 - 00039724 _____ C:\Users\denosek\Downloads\Addition.txt
  2013-10-29 16:43 - 2013-10-29 16:43 - 00112128 _____ (forum.viry.cz) C:\Users\denosek\Downloads\FRSTLauncher.exe
  2013-10-29 16:39 - 2013-10-29 16:39 - 01089183 _____ (Farbar) C:\Users\denosek\Downloads\FRST.exe
  2013-10-29 16:39 - 2013-10-29 16:39 - 00112107 _____ (forum.viry.cz) C:\Users\denosek\Downloads\VerzeOS.exe
  2013-10-29 16:33 - 2013-10-29 16:33 - 01247056 _____ (Microsoft Corporation) C:\Users\denosek\Downloads\wlsetup-web(1).exe
  
  Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1176429872-680437442-246994520-1000Core.job => C:\Users\denosek\AppData\Local\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1176429872-680437442-246994520-1000UA.job => C:\Users\denosek\AppData\Local\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\SlimDrivers Startup.job => C:\Program Files\SlimDrivers\SlimDrivers.exe
  
  Hosts:
  
  End

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[kosta.m]

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 28-10-2013
Ran by denosek at 2013-10-29 21:05:08 Run:1
Running from C:\Users\denosek\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [Zune Launcher] - C:\Program Files\Zune\ZuneLauncher.exe [159456 2011-08-05] (Microsoft Corporation)
HKLM\...\Run: [KiesTrayAgent] - C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311152 2013-04-23] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [Nero MediaHome 4] - C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe [5178664 2012-02-28] (Nero AG)
HKLM\...\Run: [seznam-listicka-distribuce] - C:\Program Files\Seznam.cz\distribution\szninstall.exe [1009288 2012-09-13] ()
HKLM\...\Run: [TkBellExe] - C:\Program Files\real\realplayer\Update\realsched.exe [295512 2013-09-12] (RealNetworks, Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKCU\...\Run: [KiesPreload] - C:\Program Files\Samsung\Kies\Kies.exe [1561968 2013-04-23] (Samsung)
HKCU\...\Run: [KiesAirMessage] - C:\Program Files\Samsung\Kies\KiesAirMessage.exe [578560 2013-04-18] (Samsung Electronics)
HKCU\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [18642024 2013-02-28] (Skype Technologies S.A.)
HKCU\...\Run: [cz.seznam.software.autoupdate] - C:\Users\denosek\AppData\Roaming\Seznam.cz\szninstall.exe [1009288 2012-09-13] ()
HKCU\...\Run: [cz.seznam.software.szndesktop] - C:\Users\denosek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92152 2013-01-22] ()
HKCU\...\Run: [aliim] - C:\Program Files\Trademanager\AliIM.exe [293272 2013-08-22] (Alibaba (China) Co., Ltd.)
HKCU\...\Run: [ISUSPM] - C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [213936 2006-03-20] (Macrovision Corporation)
HKCU\...\Run: [uTorrent] - C:\Program Files\uTorrent\uTorrent.exe [969104 2012-12-31] (BitTorrent, Inc.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages =
SearchScopes: HKLM - DefaultScope value is missing.

FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\avg-secure-search.xml

CHR DefaultSearchURL: (Conduit) - http://www.google.com
CHR DefaultSuggestURL: (Conduit) - http://www.google.com

2013-10-29 18:38 - 2013-10-29 18:38 - 00001652 _____ C:\Users\denosek\Desktop\ckfiles.txt
2013-10-29 18:37 - 2013-10-29 18:37 - 00468480 _____ () C:\Users\denosek\Desktop\CKScanner(1).exe
2013-10-29 18:30 - 2013-10-29 18:49 - 00000000 ____D C:\AdwCleaner
2013-10-29 18:29 - 2013-10-29 18:34 - 00001652 _____ C:\Users\denosek\Downloads\ckfiles.txt
2013-10-29 18:25 - 2013-10-29 18:25 - 01060070 _____ C:\Users\denosek\Desktop\adwcleaner.exe
2013-10-29 18:24 - 2013-10-29 18:24 - 00468480 _____ () C:\Users\denosek\Downloads\CKScanner.exe
2013-10-29 17:46 - 2013-10-29 17:46 - 05137551 ____R (Swearware) C:\Users\denosek\Downloads\ComboFix.exe
2013-10-29 17:41 - 2013-10-29 17:43 - 00002550 _____ C:\Users\denosek\Desktop\Rkill.txt
2013-10-29 17:38 - 2013-10-29 17:38 - 01898232 _____ (Bleeping Computer, LLC) C:\Users\denosek\Desktop\rkill.com
2013-10-29 17:28 - 2013-10-29 17:28 - 00037413 _____ C:\Users\denosek\Downloads\FRST.txt
2013-10-29 17:25 - 2013-10-29 17:28 - 00039724 _____ C:\Users\denosek\Downloads\Addition.txt
2013-10-29 16:43 - 2013-10-29 16:43 - 00112128 _____ (forum.viry.cz) C:\Users\denosek\Downloads\FRSTLauncher.exe
2013-10-29 16:39 - 2013-10-29 16:39 - 01089183 _____ (Farbar) C:\Users\denosek\Downloads\FRST.exe
2013-10-29 16:39 - 2013-10-29 16:39 - 00112107 _____ (forum.viry.cz) C:\Users\denosek\Downloads\VerzeOS.exe
2013-10-29 16:33 - 2013-10-29 16:33 - 01247056 _____ (Microsoft Corporation) C:\Users\denosek\Downloads\wlsetup-web(1).exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1176429872-680437442-246994520-1000Core.job => C:\Users\denosek\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1176429872-680437442-246994520-1000UA.job => C:\Users\denosek\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SlimDrivers Startup.job => C:\Program Files\SlimDrivers\SlimDrivers.exe

Hosts:

End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Zune Launcher => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\KiesTrayAgent => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Nero MediaHome 4 => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\TkBellExe => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\KiesPreload => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\KiesAirMessage => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Skype => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\aliim => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\ISUSPM => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search bar => Value deleted successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Secondary Start Pages => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
C:\Program Files\mozilla firefox\browser\searchplugins\avg-secure-search.xml => Moved successfully.
CHR DefaultSearchURL: (Conduit) - http://www.google.com ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSuggestURL: (Conduit) - http://www.google.com ==> The Chrome "Settings" can be used to fix the entry.
C:\Users\denosek\Desktop\ckfiles.txt => Moved successfully.
C:\Users\denosek\Desktop\CKScanner(1).exe => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\denosek\Downloads\ckfiles.txt => Moved successfully.
C:\Users\denosek\Desktop\adwcleaner.exe => Moved successfully.
C:\Users\denosek\Downloads\CKScanner.exe => Moved successfully.
C:\Users\denosek\Downloads\ComboFix.exe => Moved successfully.
C:\Users\denosek\Desktop\Rkill.txt => Moved successfully.
C:\Users\denosek\Desktop\rkill.com => Moved successfully.
C:\Users\denosek\Downloads\FRST.txt => Moved successfully.
C:\Users\denosek\Downloads\Addition.txt => Moved successfully.
C:\Users\denosek\Downloads\FRSTLauncher.exe => Moved successfully.
C:\Users\denosek\Downloads\FRST.exe => Moved successfully.
C:\Users\denosek\Downloads\VerzeOS.exe => Moved successfully.
C:\Users\denosek\Downloads\wlsetup-web(1).exe => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1176429872-680437442-246994520-1000Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1176429872-680437442-246994520-1000UA.job => Moved successfully.
C:\Windows\Tasks\SlimDrivers Startup.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

==== End of Fixlog ====

[vyosek]

Tak jeste uklidime

Odinstalujte Combofix

• Prejmenujte ComboFix na Uninstall
• Spustte jej
• Tohle smaze Combofix a jeho slozky

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

[kosta.m]

děkuji mnohokrát

[vyosek]

Nemate zac, rad jsem pomohl Zase nekdy

A na zaklade Pravidla o zamykani temat