VIRY.CZ

Prosím o kontrolu logu, v prohlížečích mi vyskakují nevyžádané reklamy a počítač je pomalý. Dále mi po určité době nelze smazat nově vytvořené ikony z plochy

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-01-2014
Ran by Alešák (administrator) on RAKETA on 27-01-2014 09:22:12
Running from C:\Users\Alešák\Desktop
Windows 7 Home Premium (X64) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(The Firebird Project) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe
() C:\Program Files (x86)\Kooperativa\Services\KoopPDFServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
() C:\Windows\SysWOW64\Rezip.exe
(SAMSUNG Electronics) C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Gemfor s.r.o.) C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(The Firebird Project) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbserver.exe
(Hewlett-Packard Company) C:\Program Files\HP\HP LaserJet Professional M1530 MFP Series\Fax Driver\hppfaxprintersrv.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(Gemfor s.r.o.) C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Users\Alešák\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Oracle Corporation) C:\Windows\System32\javaw.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(Unicorn Systems) C:\Program Files (x86)\ČP\CPMODUpdater\CPMODUpdater.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe
() C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Ask) C:\Program Files (x86)\Ask.com\Updater\Updater.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Hewlett Packard) C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Desktop.exe
(forum.viry.cz) C:\Users\Alešák\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [NvCplDaemon] - C:\Windows\system32\NvCpl.dll [17412200 2010-05-05] (NVIDIA Corporation)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10144288 2010-04-07] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2074408 2010-02-26] (Synaptics Incorporated)
HKLM\...\Run: [HP LaserJet Professional M1530 MFP Series Fax] - C:\Program Files\HP\HP LaserJet Professional M1530 MFP Series\Fax Driver\hppfaxprintersrv.exe [3707704 2010-04-09] (Hewlett-Packard Company)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2918656 2011-01-12] (ESET)
HKLM-x32\...\Run: [NortonOnlineBackup] - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1112920 2010-03-05] (Symantec Corporation)
HKLM-x32\...\Run: [UpdateLBPShortCut] - C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-06-03] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] - C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePDRShortCut] - C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl8] - C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [PDVD8LanguageShortcut] - C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePPShortCut] - C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePSTShortCut] - C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2009-07-21] (CyberLink Corp.)
HKLM-x32\...\Run: [UCam_Menu] - C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [ToolboxFX] - C:\Program Files (x86)\HP\ToolboxFX\bin\HPTLBXFX.exe [58936 2010-04-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [38872 2012-07-31] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [ApnUpdater] - C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1648264 2013-04-25] (Ask)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [746176 2013-10-30] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Alešák\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-04-21] (Google Inc.)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
HKCU\...\Run: [T-Mobile Communication Centre] - C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [1355792 2011-03-08] (Gemfor s.r.o.)
HKCU\...\Run: [CPMODUpdater] - C:\Program Files (x86)\ČP\CPMODUpdater\CPMODUpdater.exe [51712 2013-10-15] (Unicorn Systems)
HKCU\...\Run: [SkyDrive] - C:\Users\Alešák\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257136 2013-10-10] (Microsoft Corporation)
HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKCU\...\Run: [PCSpeedUp] - C:\Program Files (x86)\Zrychleni Pocitace\PCSUNotifier.exe [188680 2012-08-22] ()
HKCU\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_170_Plugin.exe -update plugin [839560 2013-12-11] (Adobe Systems Incorporated)
MountPoints2: {5a8107c0-deb4-11e0-bad5-806e6f6e6963} - F:\autorun.exe
MountPoints2: {6e6944c3-ad6c-11e2-b14c-4cedde7eda5b} - G:\HPLauncher.exe
MountPoints2: {a7801c07-a264-11e2-ac23-4cedde7eda5b} - G:\AutoRun.exe
HKU\Aleš\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [95848 2010-05-06] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [90216 2010-05-06] (NVIDIA Corporation)
Startup: C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Kooperativa - PDF Server.lnk
ShortcutTarget: Kooperativa - PDF Server.lnk -> C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2786678
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung.msn.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://samsung.msn.com
URLSearchHook: HKCU - UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM-x32 - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKCU - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKCU - {E8FF0535-1DBE-4183-BE09-98CAF94E5B78} URL = http://websearch.ask.com/redirect?clien ... 08664BEF7D
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: PriceGong - Price Comparison - {1631550F-191D-4826-B069-D9439253D926} - C:\Program Files (x86)\PriceGong\2.6.12\PriceGongIE.dll (PriceGong)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default
FF user.js: detected! => C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\user.js
FF SearchEngineOrder.1: Ask.com Search
FF Homepage: hxxp://www.google.cz/
FF Keyword.URL: hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&q=
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Alešák\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Alešák\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\searchplugins\askcomsearch.xml
FF SearchPlugin: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Torntv V6.0 - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com [2013-12-07]
FF Extension: Ask Toolbar - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\toolbar@ask.com [2013-01-28]
FF Extension: PriceGong - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829} [2013-12-07]
FF Extension: uTorrentBar Community Toolbar - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} [2013-02-10]
FF Extension: GoPhotoIt - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\gophoto@gophoto.it.xpi [2013-08-08]
FF HKLM-x32\...\Firefox\Extensions: [{B7082FAA-CB62-4872-9106-E42DD88EDE45}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2010-11-18]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2011-08-05]

Chrome:
=======
CHR HomePage: hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=48
CHR RestoreOnStartup: "hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=48"
CHR DefaultSearchURL: {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Users\Ale\u0161\u00E1k\AppData\Local\Google\Chrome\Application\31.0.1650.57\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.220.4) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U22) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.0.60129.0\npctrl.dll No File
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Ale\u0161\u00E1k\AppData\Local\Google\Chrome\Application\31.0.1650.57\pdf.dll No File
CHR Plugin: (Google Gears 0.5.33.0) - C:\Users\Ale\u0161\u00E1k\AppData\Local\Google\Chrome\Application\31.0.1650.57\gears.dll No File
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Ale\u0161\u00E1k\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (Peněženka Google) - C:\Users\Alešák\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-26]
CHR HKLM-x32\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\ALEK~1\AppData\Local\Temp\ccex.crx [2013-11-26]
CHR HKLM-x32\...\Chrome\Extension: [bkomkajifikmkfnjgphkjcfeepbnojok] - C:\Program Files (x86)\PriceGong\2.6.12\pricegong.crx [2013-11-13]
CHR HKLM-x32\...\Chrome\Extension: [pfmopbbadnfoelckkcmjjeaaegjpjjbk] - C:\Program Files (x86)\Gophoto.it\gophotoit16.crx [2013-08-08]
CHR StartMenuInternet: Google Chrome - C:\Users\Alešák\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

R2 ameisvc; C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe [122608 2011-03-08] (Gemfor s.r.o.)
S3 EhttpSrv; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [42360 2011-01-12] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [810144 2011-01-12] (ESET)
R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe [65536 2009-10-06] (The Firebird Project)
R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbserver.exe [1532000 2009-10-06] (The Firebird Project)
R2 KoopPdfService; C:\Program Files (x86)\Kooperativa\Services\KoopPDFServer.exe [2454016 2012-11-20] ()
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [203280 2009-01-23] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2782552 2010-03-05] (Symantec Corporation)
R2 PCSUService; C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe [289544 2012-08-22] ()
R2 Rezip; C:\Windows\SysWOW64\Rezip.exe [311296 2009-03-05] ()
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-07-07] ()

==================== Drivers (Whitelisted) ====================

S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [53816 2009-03-07] (Samsung Electronics Co., Ltd.)
R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [170640 2010-12-21] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [141264 2010-12-21] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [125296 2010-12-21] (ESET)
S3 Huawei; C:\Windows\System32\DRIVERS\ewdcsc.sys [29696 2009-12-15] (Huawei Tech. Co., Ltd.)
S3 hwusbdev; C:\Windows\System32\DRIVERS\ewusbdev.sys [114304 2009-12-15] (Huawei Technologies Co., Ltd.)
S3 rtport; C:\Windows\SysWOW64\drivers\rtport.sys [15144 2011-01-13] (Windows (R) 2003 DDK 3790 provider)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564792 2012-02-19] (Duplex Secure Ltd.)
R2 SSPORT; C:\Windows\SysWOW64\Drivers\SSPORT.sys [11576 2009-10-28] (Samsung Electronics)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
U3 aqh3test; C:\Windows\System32\Drivers\aqh3test.sys [0 ] (Intel Corporation)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [243200 2009-12-15] (Huawei Technologies Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-27 09:22 - 2014-01-27 09:22 - 00026794 _____ C:\Users\Alešák\Desktop\FRST.txt
2014-01-27 09:22 - 2014-01-27 09:22 - 00000000 ____D C:\FRST
2014-01-27 09:21 - 2014-01-27 09:21 - 00112640 _____ (forum.viry.cz) C:\Users\Alešák\Desktop\FRSTLauncher.exe
2014-01-27 09:19 - 2014-01-27 09:19 - 02078208 _____ (Farbar) C:\Users\Alešák\Desktop\FRST64.exe
2014-01-27 09:14 - 2014-01-27 09:14 - 00001162 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-27 09:14 - 2014-01-27 09:14 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-27 09:12 - 2014-01-27 09:12 - 07243968 _____ (TeamViewer GmbH) C:\Users\Alešák\Desktop\TeamViewer_Setup.exe
2014-01-24 07:44 - 2014-01-24 07:44 - 05934592 _____ C:\Users\Alešák\Documents\PriMa_OVB_tpl_v1 01.xls
2014-01-22 13:55 - 2014-01-22 13:55 - 00003059 _____ C:\Users\Alešák\Desktop\OVB Simulace.lnk
2014-01-22 13:55 - 2014-01-22 13:55 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Simulace_2009
2014-01-17 08:10 - 2014-01-17 08:10 - 00005175 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-17 08:10 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-17 08:10 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-17 08:10 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-17 08:10 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-16 23:55 - 2014-01-16 23:55 - 00005962 _____ C:\Windows\PFRO.log
2014-01-04 08:34 - 2014-01-04 08:35 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\KA10
2014-01-04 08:32 - 2014-01-04 08:35 - 00000000 ____D C:\Program Files (x86)\KA10
2014-01-04 08:32 - 2014-01-04 08:32 - 00001883 _____ C:\Users\Public\Desktop\Autopojištění 2012.lnk
2014-01-04 08:32 - 2014-01-04 08:32 - 00000000 ____D C:\Data-KA10
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2014-01-04 08:18 - 2014-01-23 18:56 - 01853986 _____ C:\Users\Alešák\Desktop\21282_65379_PriMa_3G_v2_00.xlsm
2014-01-02 13:35 - 2014-01-14 18:03 - 06427049 _____ C:\Users\Alešák\Desktop\Mercury Mini.xlsm
2014-01-02 13:35 - 2014-01-02 13:35 - 06709953 _____ C:\Users\Alešák\Desktop\Mercury.xlsm
2013-12-28 10:29 - 2013-07-21 22:14 - 00016327 ____N C:\Users\Alešák\Desktop\Přípravka 2012-13 seznam.xlsx
2013-12-28 10:24 - 2013-12-28 10:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

==================== One Month Modified Files and Folders =======

2014-01-27 09:22 - 2014-01-27 09:22 - 00026794 _____ C:\Users\Alešák\Desktop\FRST.txt
2014-01-27 09:22 - 2014-01-27 09:22 - 00000000 ____D C:\FRST
2014-01-27 09:21 - 2014-01-27 09:21 - 00112640 _____ (forum.viry.cz) C:\Users\Alešák\Desktop\FRSTLauncher.exe
2014-01-27 09:19 - 2014-01-27 09:19 - 02078208 _____ (Farbar) C:\Users\Alešák\Desktop\FRST64.exe
2014-01-27 09:14 - 2014-01-27 09:14 - 00001162 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-27 09:14 - 2014-01-27 09:14 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-27 09:13 - 2011-07-21 18:23 - 00003966 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{2C8BAA35-73CA-407A-AA43-E1F11B8833AB}
2014-01-27 09:12 - 2014-01-27 09:12 - 07243968 _____ (TeamViewer GmbH) C:\Users\Alešák\Desktop\TeamViewer_Setup.exe
2014-01-27 09:12 - 2011-04-21 11:55 - 00000966 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002UA.job
2014-01-27 08:53 - 2012-04-03 17:43 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-27 08:45 - 2011-10-13 10:27 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-27 08:38 - 2010-11-19 02:32 - 01913448 _____ C:\Windows\WindowsUpdate.log
2014-01-27 08:32 - 2013-12-07 10:57 - 00002174 _____ C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job
2014-01-27 08:27 - 2013-12-07 10:57 - 00001298 _____ C:\Windows\Tasks\Torntv V6.0-updater.job
2014-01-26 23:27 - 2011-04-21 11:55 - 00000914 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002Core.job
2014-01-26 20:57 - 2013-12-07 10:59 - 00021995 _____ C:\Users\Alešák\daemonprocess.txt
2014-01-26 19:00 - 2012-01-03 18:19 - 00011198 _____ C:\Users\Alešák\AppData\Roaming\SmarThruOptions.xml
2014-01-26 18:12 - 2010-11-19 03:23 - 00666672 _____ C:\Windows\system32\perfh005.dat
2014-01-26 18:12 - 2010-11-19 03:23 - 00140336 _____ C:\Windows\system32\perfc005.dat
2014-01-26 18:12 - 2009-07-14 06:13 - 01577482 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-26 18:06 - 2012-12-18 13:45 - 00000000 ____D C:\Users\Alešák\Documents\Soubory aplikace Outlook
2014-01-26 16:30 - 2011-10-13 10:27 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-24 16:03 - 2013-12-13 18:21 - 00002804 _____ C:\Windows\setupact.log
2014-01-24 07:44 - 2014-01-24 07:44 - 05934592 _____ C:\Users\Alešák\Documents\PriMa_OVB_tpl_v1 01.xls
2014-01-23 18:56 - 2014-01-04 08:18 - 01853986 _____ C:\Users\Alešák\Desktop\21282_65379_PriMa_3G_v2_00.xlsm
2014-01-22 14:52 - 2013-12-05 22:05 - 00000000 ____D C:\Program Files (x86)\Zrychleni Pocitace
2014-01-22 14:49 - 2009-07-14 05:45 - 00014144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-22 14:49 - 2009-07-14 05:45 - 00014144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-22 14:48 - 2011-03-29 21:02 - 00000000 ____D C:\Users\Alešák\Desktop\Kalkulačka
2014-01-22 14:45 - 2013-10-10 14:14 - 00000000 ___RD C:\Users\Alešák\SkyDrive
2014-01-22 14:43 - 2011-03-29 20:53 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2014-01-22 14:41 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-22 13:55 - 2014-01-22 13:55 - 00003059 _____ C:\Users\Alešák\Desktop\OVB Simulace.lnk
2014-01-22 13:55 - 2014-01-22 13:55 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Simulace_2009
2014-01-17 08:10 - 2014-01-17 08:10 - 00005175 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-17 08:10 - 2013-11-26 12:53 - 00000000 ____D C:\ProgramData\Oracle
2014-01-17 08:10 - 2011-03-30 08:29 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-16 23:55 - 2014-01-16 23:55 - 00005962 _____ C:\Windows\PFRO.log
2014-01-16 11:22 - 2011-03-28 14:43 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-16 11:22 - 2009-07-14 03:34 - 00000510 _____ C:\Windows\win.ini
2014-01-16 11:12 - 2013-07-14 12:05 - 00000000 ____D C:\Windows\system32\MRT
2014-01-16 07:41 - 2011-04-12 16:22 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-14 18:03 - 2014-01-02 13:35 - 06427049 _____ C:\Users\Alešák\Desktop\Mercury Mini.xlsm
2014-01-12 20:54 - 2011-03-29 20:59 - 00000000 ____D C:\Users\Alešák\Documents\Složka Bluetooth Exchange
2014-01-08 16:46 - 2013-10-02 12:38 - 07555584 _____ C:\Users\Alešák\Desktop\Conseq_kalkulace_OVB_2011_5.xls
2014-01-04 08:35 - 2014-01-04 08:34 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\KA10
2014-01-04 08:35 - 2014-01-04 08:32 - 00000000 ____D C:\Program Files (x86)\KA10
2014-01-04 08:32 - 2014-01-04 08:32 - 00001883 _____ C:\Users\Public\Desktop\Autopojištění 2012.lnk
2014-01-04 08:32 - 2014-01-04 08:32 - 00000000 ____D C:\Data-KA10
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2014-01-03 13:54 - 2013-02-10 19:22 - 00001094 _____ C:\Users\Alešák\Desktop\Kooperativa - Perspektiva 7BN Extern.lnk
2014-01-02 13:54 - 2012-05-14 06:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-02 13:35 - 2014-01-02 13:35 - 06709953 _____ C:\Users\Alešák\Desktop\Mercury.xlsm
2013-12-31 14:10 - 2011-04-05 21:36 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Generali pojišťovna
2013-12-31 14:08 - 2013-06-14 14:16 - 00000000 ____D C:\GEN
2013-12-28 10:24 - 2013-12-28 10:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-28 10:20 - 2013-12-07 10:59 - 00000000 ____D C:\Users\Alešák\AppData\Local\Mobogenie

Some content of TEMP:
====================
C:\Users\Aleš\AppData\Local\Temp\MSNCDBC.exe
C:\Users\Aleš\AppData\Local\Temp\ose00000.exe
C:\Users\Alešák\AppData\Local\Temp\evrecqjj.dll
C:\Users\Alešák\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Alešák\AppData\Local\Temp\m2am0vyt.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002Core.job => C:\Users\Aleaák\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002UA.job => C:\Users\Aleaák\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PC SpeedUp Service Deactivator.job => C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe
Task: C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-firefoxinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\Torntv V6.0-updater.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-updater.exe <==== ATTENTION

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: ESET NOD32 Antivirus 4.2 (Enabled - Out of date) {77DEAFED-8149-104B-25A1-21771CA47CD1}
AS: ESET NOD32 Antivirus 4.2 (Enabled - Out of date) {CCBF4E09-A773-1FC5-1F11-1A056723366C}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Ale�k\Desktop" je 2019 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

Zdravim

Jen se zeptam, na ten NOD32 mate zakoupenou licenci?? Jelikoz vypada zastarale

Nemám licenci a je hodně zastaralý

Tudiz je pouzivan v rozporu s licencnimi podminkami

Pred pokracovanim, vas musim pozadat o odstraneni NELEGALNIHO Esetu. Tento muj "pozadavek" vychazi z platnych pravidel fora http://forum.viry.cz/viewtopic.php?f=12&t=115512, ktere jste vy i ja povinnen dodrzovat

Pomáhat NELZE:
2) Pokud stroj uživatele obsahuje nelegální hostitelský čí ochranný software
(operační systém, antivir, firewall, atd.), je nutné navést uživatele k nápravě, např. skrze neplacený software,
a začít řešit, až v době kdy je PC "v pořádku". V případě že uživatel nechce na pravidla přistoupit,
je nutné jej vyzvat ať fórum opustí, a vrátí se až je splní.

Takze pokud chcete pomoci, tak jej odinstalujte, nainstalujte free reseni (napr. Avast Free), napiste a budeme pokracovat

Antivir odstranen...

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-01-2014
Ran by Alešák (administrator) on RAKETA on 27-01-2014 10:02:28
Running from C:\Users\Alešák\Desktop
Windows 7 Home Premium (X64) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(The Firebird Project) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe
() C:\Program Files (x86)\Kooperativa\Services\KoopPDFServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
() C:\Windows\SysWOW64\Rezip.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Gemfor s.r.o.) C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(The Firebird Project) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbserver.exe
(SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(SAMSUNG Electronics) C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard Company) C:\Program Files\HP\HP LaserJet Professional M1530 MFP Series\Fax Driver\hppfaxprintersrv.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(Gemfor s.r.o.) C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe
(Unicorn Systems) C:\Program Files (x86)\ČP\CPMODUpdater\CPMODUpdater.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Users\Alešák\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
() C:\Program Files (x86)\Zrychleni Pocitace\PCSUNotifier.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Oracle Corporation) C:\Windows\System32\javaw.exe
() C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\ToolboxFX\bin\HPTLBXFX.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Ask) C:\Program Files (x86)\Ask.com\Updater\Updater.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Desktop.exe
(forum.viry.cz) C:\Users\Alešák\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [NvCplDaemon] - C:\Windows\system32\NvCpl.dll [17412200 2010-05-05] (NVIDIA Corporation)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10144288 2010-04-07] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2074408 2010-02-26] (Synaptics Incorporated)
HKLM\...\Run: [HP LaserJet Professional M1530 MFP Series Fax] - C:\Program Files\HP\HP LaserJet Professional M1530 MFP Series\Fax Driver\hppfaxprintersrv.exe [3707704 2010-04-09] (Hewlett-Packard Company)
HKLM-x32\...\Run: [NortonOnlineBackup] - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1112920 2010-03-05] (Symantec Corporation)
HKLM-x32\...\Run: [UpdateLBPShortCut] - C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-06-03] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] - C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePDRShortCut] - C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl8] - C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [PDVD8LanguageShortcut] - C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePPShortCut] - C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePSTShortCut] - C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2009-07-21] (CyberLink Corp.)
HKLM-x32\...\Run: [UCam_Menu] - C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [ToolboxFX] - C:\Program Files (x86)\HP\ToolboxFX\bin\HPTLBXFX.exe [58936 2010-04-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [38872 2012-07-31] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [ApnUpdater] - C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1648264 2013-04-25] (Ask)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [746176 2013-10-30] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Alešák\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-04-21] (Google Inc.)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
HKCU\...\Run: [T-Mobile Communication Centre] - C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [1355792 2011-03-08] (Gemfor s.r.o.)
HKCU\...\Run: [CPMODUpdater] - C:\Program Files (x86)\ČP\CPMODUpdater\CPMODUpdater.exe [51712 2013-10-15] (Unicorn Systems)
HKCU\...\Run: [SkyDrive] - C:\Users\Alešák\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257136 2013-10-10] (Microsoft Corporation)
HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKCU\...\Run: [PCSpeedUp] - C:\Program Files (x86)\Zrychleni Pocitace\PCSUNotifier.exe [188680 2012-08-22] ()
MountPoints2: {5a8107c0-deb4-11e0-bad5-806e6f6e6963} - F:\autorun.exe
MountPoints2: {6e6944c3-ad6c-11e2-b14c-4cedde7eda5b} - G:\HPLauncher.exe
MountPoints2: {a7801c07-a264-11e2-ac23-4cedde7eda5b} - G:\AutoRun.exe
HKU\Aleš\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [95848 2010-05-06] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [90216 2010-05-06] (NVIDIA Corporation)
Startup: C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Kooperativa - PDF Server.lnk
ShortcutTarget: Kooperativa - PDF Server.lnk -> C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2786678
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung.msn.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://samsung.msn.com
URLSearchHook: HKCU - UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM-x32 - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKCU - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKCU - {E8FF0535-1DBE-4183-BE09-98CAF94E5B78} URL = http://websearch.ask.com/redirect?clien ... 08664BEF7D
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: PriceGong - Price Comparison - {1631550F-191D-4826-B069-D9439253D926} - C:\Program Files (x86)\PriceGong\2.6.12\PriceGongIE.dll (PriceGong)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default
FF user.js: detected! => C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\user.js
FF SearchEngineOrder.1: Ask.com Search
FF Homepage: hxxp://www.google.cz/
FF Keyword.URL: hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&q=
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Alešák\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Alešák\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\searchplugins\askcomsearch.xml
FF SearchPlugin: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Torntv V6.0 - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com [2013-12-07]
FF Extension: Ask Toolbar - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\toolbar@ask.com [2013-01-28]
FF Extension: PriceGong - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829} [2013-12-07]
FF Extension: uTorrentBar Community Toolbar - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} [2013-02-10]
FF Extension: GoPhotoIt - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\gophoto@gophoto.it.xpi [2013-08-08]
FF HKLM-x32\...\Firefox\Extensions: [{B7082FAA-CB62-4872-9106-E42DD88EDE45}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2010-11-18]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

Chrome:
=======
CHR HomePage: hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=48
CHR RestoreOnStartup: "hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=48"
CHR DefaultSearchURL: {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Users\Ale\u0161\u00E1k\AppData\Local\Google\Chrome\Application\31.0.1650.57\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.220.4) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U22) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.0.60129.0\npctrl.dll No File
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Ale\u0161\u00E1k\AppData\Local\Google\Chrome\Application\31.0.1650.57\pdf.dll No File
CHR Plugin: (Google Gears 0.5.33.0) - C:\Users\Ale\u0161\u00E1k\AppData\Local\Google\Chrome\Application\31.0.1650.57\gears.dll No File
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Ale\u0161\u00E1k\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (Peněženka Google) - C:\Users\Alešák\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-26]
CHR HKLM-x32\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\ALEK~1\AppData\Local\Temp\ccex.crx [2013-11-26]
CHR HKLM-x32\...\Chrome\Extension: [bkomkajifikmkfnjgphkjcfeepbnojok] - C:\Program Files (x86)\PriceGong\2.6.12\pricegong.crx [2013-11-13]
CHR HKLM-x32\...\Chrome\Extension: [pfmopbbadnfoelckkcmjjeaaegjpjjbk] - C:\Program Files (x86)\Gophoto.it\gophotoit16.crx [2013-08-08]
CHR StartMenuInternet: Google Chrome - C:\Users\Alešák\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

R2 ameisvc; C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe [122608 2011-03-08] (Gemfor s.r.o.)
R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe [65536 2009-10-06] (The Firebird Project)
R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbserver.exe [1532000 2009-10-06] (The Firebird Project)
R2 KoopPdfService; C:\Program Files (x86)\Kooperativa\Services\KoopPDFServer.exe [2454016 2012-11-20] ()
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [203280 2009-01-23] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2782552 2010-03-05] (Symantec Corporation)
R2 PCSUService; C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe [289544 2012-08-22] ()
R2 Rezip; C:\Windows\SysWOW64\Rezip.exe [311296 2009-03-05] ()
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-07-07] ()

==================== Drivers (Whitelisted) ====================

S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [53816 2009-03-07] (Samsung Electronics Co., Ltd.)
S3 Huawei; C:\Windows\System32\DRIVERS\ewdcsc.sys [29696 2009-12-15] (Huawei Tech. Co., Ltd.)
S3 hwusbdev; C:\Windows\System32\DRIVERS\ewusbdev.sys [114304 2009-12-15] (Huawei Technologies Co., Ltd.)
S3 rtport; C:\Windows\SysWOW64\drivers\rtport.sys [15144 2011-01-13] (Windows (R) 2003 DDK 3790 provider)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564792 2012-02-19] (Duplex Secure Ltd.)
R2 SSPORT; C:\Windows\SysWOW64\Drivers\SSPORT.sys [11576 2009-10-28] (Samsung Electronics)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
U3 a76vfs8o; C:\Windows\System32\Drivers\a76vfs8o.sys [0 ] (Advanced Micro Devices)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [243200 2009-12-15] (Huawei Technologies Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-27 09:59 - 2014-01-27 09:59 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\TeamViewer
2014-01-27 09:28 - 2014-01-27 09:28 - 00006937 _____ C:\Users\Alešák\Desktop\Addition.zip
2014-01-27 09:22 - 2014-01-27 10:03 - 00025917 _____ C:\Users\Alešák\Desktop\FRST.txt
2014-01-27 09:22 - 2014-01-27 09:22 - 00000000 ____D C:\FRST
2014-01-27 09:21 - 2014-01-27 09:21 - 00112640 _____ (forum.viry.cz) C:\Users\Alešák\Desktop\FRSTLauncher.exe
2014-01-27 09:19 - 2014-01-27 09:19 - 02078208 _____ (Farbar) C:\Users\Alešák\Desktop\FRST64.exe
2014-01-27 09:14 - 2014-01-27 09:14 - 00001162 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-27 09:14 - 2014-01-27 09:14 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-27 09:12 - 2014-01-27 09:12 - 07243968 _____ (TeamViewer GmbH) C:\Users\Alešák\Desktop\TeamViewer_Setup.exe
2014-01-24 07:44 - 2014-01-24 07:44 - 05934592 _____ C:\Users\Alešák\Documents\PriMa_OVB_tpl_v1 01.xls
2014-01-22 13:55 - 2014-01-22 13:55 - 00003059 _____ C:\Users\Alešák\Desktop\OVB Simulace.lnk
2014-01-22 13:55 - 2014-01-22 13:55 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Simulace_2009
2014-01-17 08:10 - 2014-01-17 08:10 - 00005175 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-17 08:10 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-17 08:10 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-17 08:10 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-17 08:10 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-16 23:55 - 2014-01-16 23:55 - 00005962 _____ C:\Windows\PFRO.log
2014-01-04 08:34 - 2014-01-04 08:35 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\KA10
2014-01-04 08:32 - 2014-01-04 08:35 - 00000000 ____D C:\Program Files (x86)\KA10
2014-01-04 08:32 - 2014-01-04 08:32 - 00001883 _____ C:\Users\Public\Desktop\Autopojištění 2012.lnk
2014-01-04 08:32 - 2014-01-04 08:32 - 00000000 ____D C:\Data-KA10
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2014-01-04 08:18 - 2014-01-23 18:56 - 01853986 _____ C:\Users\Alešák\Desktop\21282_65379_PriMa_3G_v2_00.xlsm
2014-01-02 13:35 - 2014-01-14 18:03 - 06427049 _____ C:\Users\Alešák\Desktop\Mercury Mini.xlsm
2014-01-02 13:35 - 2014-01-02 13:35 - 06709953 _____ C:\Users\Alešák\Desktop\Mercury.xlsm
2013-12-28 10:29 - 2013-07-21 22:14 - 00016327 ____N C:\Users\Alešák\Desktop\Přípravka 2012-13 seznam.xlsx
2013-12-28 10:24 - 2013-12-28 10:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

==================== One Month Modified Files and Folders =======

2014-01-27 10:03 - 2014-01-27 09:22 - 00025917 _____ C:\Users\Alešák\Desktop\FRST.txt
2014-01-27 10:02 - 2010-11-19 02:32 - 01921405 _____ C:\Windows\WindowsUpdate.log
2014-01-27 10:00 - 2011-07-21 18:23 - 00003966 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{2C8BAA35-73CA-407A-AA43-E1F11B8833AB}
2014-01-27 09:59 - 2014-01-27 09:59 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\TeamViewer
2014-01-27 09:59 - 2013-10-10 14:14 - 00000000 ___RD C:\Users\Alešák\SkyDrive
2014-01-27 09:58 - 2011-03-29 21:48 - 00114776 _____ C:\Users\Alešák\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-27 09:57 - 2013-12-07 10:57 - 00002174 _____ C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job
2014-01-27 09:57 - 2013-12-07 10:57 - 00001298 _____ C:\Windows\Tasks\Torntv V6.0-updater.job
2014-01-27 09:57 - 2012-12-18 13:45 - 00000000 ____D C:\Users\Alešák\Documents\Soubory aplikace Outlook
2014-01-27 09:57 - 2011-10-13 10:27 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-27 09:57 - 2011-03-29 20:53 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2014-01-27 09:56 - 2013-12-13 18:21 - 00002860 _____ C:\Windows\setupact.log
2014-01-27 09:56 - 2013-12-05 22:05 - 00000000 ____D C:\Program Files (x86)\Zrychleni Pocitace
2014-01-27 09:56 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-27 09:56 - 2009-07-14 05:45 - 00429976 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-27 09:54 - 2013-12-07 10:59 - 00022127 _____ C:\Users\Alešák\daemonprocess.txt
2014-01-27 09:53 - 2012-04-03 17:43 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-27 09:45 - 2011-10-13 10:27 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-27 09:28 - 2014-01-27 09:28 - 00006937 _____ C:\Users\Alešák\Desktop\Addition.zip
2014-01-27 09:22 - 2014-01-27 09:22 - 00000000 ____D C:\FRST
2014-01-27 09:21 - 2014-01-27 09:21 - 00112640 _____ (forum.viry.cz) C:\Users\Alešák\Desktop\FRSTLauncher.exe
2014-01-27 09:19 - 2014-01-27 09:19 - 02078208 _____ (Farbar) C:\Users\Alešák\Desktop\FRST64.exe
2014-01-27 09:14 - 2014-01-27 09:14 - 00001162 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-27 09:14 - 2014-01-27 09:14 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-27 09:12 - 2014-01-27 09:12 - 07243968 _____ (TeamViewer GmbH) C:\Users\Alešák\Desktop\TeamViewer_Setup.exe
2014-01-27 09:12 - 2011-04-21 11:55 - 00000966 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002UA.job
2014-01-26 23:27 - 2011-04-21 11:55 - 00000914 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002Core.job
2014-01-26 19:00 - 2012-01-03 18:19 - 00011198 _____ C:\Users\Alešák\AppData\Roaming\SmarThruOptions.xml
2014-01-26 18:12 - 2010-11-19 03:23 - 00666672 _____ C:\Windows\system32\perfh005.dat
2014-01-26 18:12 - 2010-11-19 03:23 - 00140336 _____ C:\Windows\system32\perfc005.dat
2014-01-26 18:12 - 2009-07-14 06:13 - 01577482 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-24 07:44 - 2014-01-24 07:44 - 05934592 _____ C:\Users\Alešák\Documents\PriMa_OVB_tpl_v1 01.xls
2014-01-23 18:56 - 2014-01-04 08:18 - 01853986 _____ C:\Users\Alešák\Desktop\21282_65379_PriMa_3G_v2_00.xlsm
2014-01-22 14:49 - 2009-07-14 05:45 - 00014144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-22 14:49 - 2009-07-14 05:45 - 00014144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-22 14:48 - 2011-03-29 21:02 - 00000000 ____D C:\Users\Alešák\Desktop\Kalkulačka
2014-01-22 13:55 - 2014-01-22 13:55 - 00003059 _____ C:\Users\Alešák\Desktop\OVB Simulace.lnk
2014-01-22 13:55 - 2014-01-22 13:55 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Simulace_2009
2014-01-17 08:10 - 2014-01-17 08:10 - 00005175 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-17 08:10 - 2013-11-26 12:53 - 00000000 ____D C:\ProgramData\Oracle
2014-01-17 08:10 - 2011-03-30 08:29 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-16 23:55 - 2014-01-16 23:55 - 00005962 _____ C:\Windows\PFRO.log
2014-01-16 11:22 - 2011-03-28 14:43 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-16 11:22 - 2009-07-14 03:34 - 00000510 _____ C:\Windows\win.ini
2014-01-16 11:12 - 2013-07-14 12:05 - 00000000 ____D C:\Windows\system32\MRT
2014-01-16 07:41 - 2011-04-12 16:22 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-14 18:03 - 2014-01-02 13:35 - 06427049 _____ C:\Users\Alešák\Desktop\Mercury Mini.xlsm
2014-01-12 20:54 - 2011-03-29 20:59 - 00000000 ____D C:\Users\Alešák\Documents\Složka Bluetooth Exchange
2014-01-08 16:46 - 2013-10-02 12:38 - 07555584 _____ C:\Users\Alešák\Desktop\Conseq_kalkulace_OVB_2011_5.xls
2014-01-04 08:35 - 2014-01-04 08:34 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\KA10
2014-01-04 08:35 - 2014-01-04 08:32 - 00000000 ____D C:\Program Files (x86)\KA10
2014-01-04 08:32 - 2014-01-04 08:32 - 00001883 _____ C:\Users\Public\Desktop\Autopojištění 2012.lnk
2014-01-04 08:32 - 2014-01-04 08:32 - 00000000 ____D C:\Data-KA10
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2014-01-03 13:54 - 2013-02-10 19:22 - 00001094 _____ C:\Users\Alešák\Desktop\Kooperativa - Perspektiva 7BN Extern.lnk
2014-01-02 13:54 - 2012-05-14 06:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-02 13:35 - 2014-01-02 13:35 - 06709953 _____ C:\Users\Alešák\Desktop\Mercury.xlsm
2013-12-31 14:10 - 2011-04-05 21:36 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Generali pojišťovna
2013-12-31 14:08 - 2013-06-14 14:16 - 00000000 ____D C:\GEN
2013-12-28 10:24 - 2013-12-28 10:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-28 10:20 - 2013-12-07 10:59 - 00000000 ____D C:\Users\Alešák\AppData\Local\Mobogenie

Some content of TEMP:
====================
C:\Users\Aleš\AppData\Local\Temp\MSNCDBC.exe
C:\Users\Aleš\AppData\Local\Temp\ose00000.exe
C:\Users\Alešák\AppData\Local\Temp\evrecqjj.dll
C:\Users\Alešák\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Alešák\AppData\Local\Temp\m2am0vyt.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002Core.job => C:\Users\Aleaák\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002UA.job => C:\Users\Aleaák\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PC SpeedUp Service Deactivator.job => C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe
Task: C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-firefoxinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\Torntv V6.0-updater.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-updater.exe <==== ATTENTION

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\Temp:4CF61E54
AlternateDataStreams: C:\ProgramData\Temp:798A3728
AlternateDataStreams: C:\ProgramData\Temp:E36F5B57
AlternateDataStreams: C:\ProgramData\Temp:E7BA7168

==================== Security Center ==================

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Ale�k\Desktop" je 2019 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

A to budeme lecit nezabezpecene PC?? Nebo jak to mate namysleno Ja jsem myslim podminky napsal jasne, pokud se jim nechete prizpusobit, ja Vas nenutim, tlacitko Odhlasit mate vlevo nahore.

Omlouvám se.

Bohužel nejsem zdatný s jinou než uživatelskou schopností pracovat s PC. Jeden známý mi ukázal pouze, jak vyjet nějaký kod, který jsem Vám zaslal. NOD jsem odinstaloval, jak jste psal. Mám problém s počítačem, že je pomalý, často se seká a při prohlížení internetových stránek vyskakují reklamní okna. Byl bych velmi vděčný, když mi jakkoliv pomůžete a navedete co dělat.
Děkuji moc

Nainstalujte Avast Free http://www.avast.com/get/gWR5mo92

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

• Ulozte nejlepe na plochu
• Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
• Probehne vytvoreni zalohy a nasledne prohledavani
• Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Dobrý den,

1) nainstaloval jsem Avast podle vašich rad a nechal projet počítačem
2) v 2. kroce jste chtěl poslat log, který vyjede viz níže a 3. krok dopošlu

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 7 Home Premium x64
Ran by Aleç k on Łt 28.01.2014 at 15:52:59,53
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\pcspeedup
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-2882767032-2900810182-58851670-1002\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440}



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\1clickdownload
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installedbrowserextensions
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\smarttweak
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\yahoopartnertoolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduitsearchscopes
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\pricegong
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\smartbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\dt soft\daemon tools toolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\1clickdownload
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskSLib_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskSLib_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskSLib_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskSLib_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{E8FF0535-1DBE-4183-BE09-98CAF94E5B78}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}



~~~ Files

Successfully deleted: [File] "C:\Windows\Tasks\pc speedup service deactivator.job"



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Aleç k\AppData\Roaming\opencandy"
Successfully deleted: [Folder] "C:\Users\Aleç k\appdata\local\conduit"
Successfully deleted: [Folder] "C:\Users\Aleç k\appdata\local\opencandy"
Successfully deleted: [Folder] "C:\Users\Aleç k\appdata\locallow\conduit"
Successfully deleted: [Folder] "C:\Program Files (x86)\conduit"
Successfully deleted: [Folder] "C:\Program Files (x86)\torntv.com"
Successfully deleted: [Folder] "C:\Users\Aleç k\AppData\Roaming\microsoft\windows\start menu\programs\torntv.com"
Successfully deleted: [Folder] "C:\Users\Aleç k\documents\pcspeedup"
Successfully deleted: [Empty Folder] C:\Users\Aleç k\appdata\local\{89FE0890-F386-4AEF-B091-9FAF6F381A4F}
Successfully deleted: [Empty Folder] C:\Users\Aleç k\appdata\local\{8EEDDDDC-E9EA-4B9E-8A7F-7D2F28338075}
Successfully deleted: [Empty Folder] C:\Users\Aleç k\appdata\local\{9D814DDF-7A71-4231-B77E-D301E4C2B865}
Successfully deleted: [Empty Folder] C:\Users\Aleç k\appdata\local\{C021F423-301A-42A8-803F-FA653590450B}
Successfully deleted: [Folder] "C:\ProgramData\ask"



~~~ FireFox

Successfully deleted: [File] C:\Users\Aleç k\AppData\Roaming\mozilla\firefox\profiles\zyukda3g.default\searchplugins\askcom.xml
Successfully deleted: [File] C:\Users\Aleç k\AppData\Roaming\mozilla\firefox\profiles\zyukda3g.default\searchplugins\askcomsearch.xml
Successfully deleted: [File] C:\Users\Aleç k\AppData\Roaming\mozilla\firefox\profiles\zyukda3g.default\searchplugins\conduit.xml
Successfully deleted: [Folder] C:\Users\Aleç k\AppData\Roaming\mozilla\firefox\profiles\zyukda3g.default\conduitcommon
Successfully deleted: [Folder] C:\Users\Aleç k\AppData\Roaming\mozilla\firefox\profiles\zyukda3g.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com
Successfully deleted the following from C:\Users\Aleç k\AppData\Roaming\mozilla\firefox\profiles\zyukda3g.default\prefs.js

user_pref("CT2786678..clientLogIsEnabled", true);
user_pref("CT2786678..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
user_pref("CT2786678..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
user_pref("CT2786678.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
user_pref("CT2786678.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
user_pref("CT2786678.AppTrackingLastCheckTime", "Mon Nov 19 2012 21:49:54 GMT+0100");
user_pref("CT2786678.BrowserCompStateIsOpen_129579220236217502", true);
user_pref("CT2786678.BrowserCompStateIsOpen_130067977588633691", true);
user_pref("CT2786678.BrowserCompStateIsOpen_1359634298000", true);
user_pref("CT2786678.CTID", "CT2786678");
user_pref("CT2786678.CurrentServerDate", "30-6-2013");
user_pref("CT2786678.DSChangedManually", true);
user_pref("CT2786678.DSInstall", true);
user_pref("CT2786678.DSProtectChoice", true);
user_pref("CT2786678.DSProtectCount", 2);
user_pref("CT2786678.DialogsAlignMode", "LTR");
user_pref("CT2786678.DialogsGetterLastCheckTime", "Sun Jun 30 2013 15:51:08 GMT+0200");
user_pref("CT2786678.DownloadReferralCookieData", "");
user_pref("CT2786678.EMailNotifierPollDate", "Tue Dec 20 2011 14:13:52 GMT+0100");
user_pref("CT2786678.FeedLastCount5690698542593514850", 158);
user_pref("CT2786678.FeedPollDate2429156812186649977", "Tue Dec 20 2011 14:13:53 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156813040823546", "Sat Dec 24 2011 20:00:35 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156813130095866", "Tue Dec 20 2011 14:13:52 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156813224203613", "Tue Dec 20 2011 14:13:52 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156813230837251", "Tue Dec 20 2011 14:13:53 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156813454291735", "Sat Dec 24 2011 20:00:35 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156813729834876", "Tue Dec 20 2011 14:13:52 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156813860870021", "Tue Dec 20 2011 14:13:53 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156814264681793", "Sat Dec 24 2011 20:00:35 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156814863075366", "Tue Dec 20 2011 14:13:53 GMT+0100");
user_pref("CT2786678.FeedPollDate2429156815257761081", "Tue Dec 20 2011 14:13:52 GMT+0100");
user_pref("CT2786678.FeedTTL2429156813040823546", 15);
user_pref("CT2786678.FeedTTL2429156813130095866", 10);
user_pref("CT2786678.FeedTTL2429156813454291735", 5);
user_pref("CT2786678.FeedTTL2429156814264681793", 5);
user_pref("CT2786678.FirstServerDate", "20-12-2011");
user_pref("CT2786678.FirstTime", true);
user_pref("CT2786678.FirstTimeFF3", true);
user_pref("CT2786678.FixPageNotFoundErrors", true);
user_pref("CT2786678.GroupingServerCheckInterval", 1440);
user_pref("CT2786678.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
user_pref("CT2786678.HPInstall", true);
user_pref("CT2786678.HasUserGlobalKeys", true);
user_pref("CT2786678.HomePageProtectorEnabled", false);
user_pref("CT2786678.HomepageBeforeUnload", "hxxp://www.google.cz/");
user_pref("CT2786678.Initialize", true);
user_pref("CT2786678.InitializeCommonPrefs", true);
user_pref("CT2786678.InstallationAndCookieDataSentCount", 3);
user_pref("CT2786678.InstallationId", "ConduitXPEIntegration");
user_pref("CT2786678.InstallationType", "ConduitXPEIntegration");
user_pref("CT2786678.InstalledDate", "Tue Dec 20 2011 14:13:52 GMT+0100");
user_pref("CT2786678.IsAlertDBUpdated", true);
user_pref("CT2786678.IsGrouping", false);
user_pref("CT2786678.IsInitSetupIni", true);
user_pref("CT2786678.IsMulticommunity", false);
user_pref("CT2786678.IsOpenThankYouPage", true);
user_pref("CT2786678.IsOpenUninstallPage", false);
user_pref("CT2786678.IsProtectorsInit", true);
user_pref("CT2786678.LanguagePackLastCheckTime", "Sun Jun 30 2013 10:09:45 GMT+0200");
user_pref("CT2786678.LanguagePackReloadIntervalMM", 1440);
user_pref("CT2786678.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
user_pref("CT2786678.LastLogin_3.10.0.1", "Sat Apr 21 2012 12:03:27 GMT+0200");
user_pref("CT2786678.LastLogin_3.12.0.7", "Fri May 11 2012 11:44:35 GMT+0200");
user_pref("CT2786678.LastLogin_3.12.2.3", "Sat Jun 16 2012 22:12:34 GMT+0200");
user_pref("CT2786678.LastLogin_3.13.0.6", "Sat Jul 14 2012 12:38:20 GMT+0200");
user_pref("CT2786678.LastLogin_3.14.1.0", "Wed Sep 05 2012 23:04:43 GMT+0200");
user_pref("CT2786678.LastLogin_3.15.1.0", "Fri Nov 09 2012 11:53:17 GMT+0100");
user_pref("CT2786678.LastLogin_3.16.0.3", "Sun Feb 10 2013 16:31:56 GMT+0100");
user_pref("CT2786678.LastLogin_3.18.0.7", "Sun Jun 30 2013 22:06:30 GMT+0200");
user_pref("CT2786678.LastLogin_3.8.1.0", "Fri Jan 06 2012 16:34:23 GMT+0100");
user_pref("CT2786678.LastLogin_3.9.0.3", "Mon Mar 26 2012 10:28:03 GMT+0200");
user_pref("CT2786678.LatestVersion", "3.18.0.7");
user_pref("CT2786678.Locale", "en");
user_pref("CT2786678.MCDetectTooltipHeight", "83");
user_pref("CT2786678.MCDetectTooltipShow", false);
user_pref("CT2786678.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
user_pref("CT2786678.MCDetectTooltipWidth", "295");
user_pref("CT2786678.MyStuffEnabledAtInstallation", true);
user_pref("CT2786678.OriginalFirstVersion", "3.8.1.0");
user_pref("CT2786678.SHRINK_TOOLBAR", 1);
user_pref("CT2786678.SavedHomepage", "hxxp://www.google.cz/");
user_pref("CT2786678.SearchBoxWidth", 100);
user_pref("CT2786678.SearchCaption", "uTorrentBar Customized Web Search");
user_pref("CT2786678.SearchEngineBeforeUnload", "uTorrentBar Customized Web Search");
user_pref("CT2786678.SearchFromAddressBarIsInit", true);
user_pref("CT2786678.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&q=");
user_pref("CT2786678.SearchInNewTabEnabled", true);
user_pref("CT2786678.SearchInNewTabIntervalMM", 1440);
user_pref("CT2786678.SearchInNewTabLastCheckTime", "Sun Jun 30 2013 22:06:29 GMT+0200");
user_pref("CT2786678.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
user_pref("CT2786678.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usage.ashx?ctid=EB_TOOLBAR_ID");
user_pref("CT2786678.SearchProtectorEnabled", false);
user_pref("CT2786678.SearchProtectorToolbarDisabled", true);
user_pref("CT2786678.SendProtectorDataViaLogin", true);
user_pref("CT2786678.ServiceMapLastCheckTime", "Sun Jun 30 2013 18:45:37 GMT+0200");
user_pref("CT2786678.SettingsLastCheckTime", "Sun Jun 30 2013 10:09:42 GMT+0200");
user_pref("CT2786678.SettingsLastUpdate", "1372576959");
user_pref("CT2786678.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=13");
user_pref("CT2786678.ThirdPartyComponentsInterval", 504);
user_pref("CT2786678.ThirdPartyComponentsLastCheck", "Wed Jan 16 2013 06:24:34 GMT+0100");
user_pref("CT2786678.ThirdPartyComponentsLastUpdate", "1331805997");
user_pref("CT2786678.ToolbarDisabled", false);
user_pref("CT2786678.ToolbarShrinkedFromSetup", false);
user_pref("CT2786678.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2786678");
user_pref("CT2786678.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com
user_pref("CT2786678.UserID", "UN17415014701096421");
user_pref("CT2786678.ValidationData_Search", 2);
user_pref("CT2786678.ValidationData_Toolbar", 2);
user_pref("CT2786678.WeatherNetwork", "");
user_pref("CT2786678.WeatherPollDate", "Sat Dec 24 2011 20:40:35 GMT+0100");
user_pref("CT2786678.WeatherUnit", "C");
user_pref("CT2786678.alertChannelId", "1178763");
user_pref("CT2786678.approveUntrustedApps", false);
user_pref("CT2786678.autoDisableScopes", -1);
user_pref("CT2786678.backendstorage./9b+7e+x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e,x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e-x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e.:2z527", "2423");
user_pref("CT2786678.backendstorage./9b+7e.x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e/x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e06cg5el8:", "6E6D6B6D6C706F746E73");
user_pref("CT2786678.backendstorage./9b+7e06cg5el;8i:k", "247E2D2F226A747371737276757A7479242F4B49474F42357D5D5C3D");
user_pref("CT2786678.backendstorage./9b+7e0x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e1x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e2x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e3x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e4x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e5x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e6x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e7x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e8x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e9x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e:x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e;x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e<x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e=x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e>x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e?x305", "2423");
user_pref("CT2786678.backendstorage./9b+7e@x305", "2423");
user_pref("CT2786678.backendstorage./9b+7eax305", "2423");
user_pref("CT2786678.backendstorage./9b+7ebe3g=;d9n9=d", "372C2D326975762E3A3C7B3A39434A494841434B265146492965504656496571734D337D56545138505C");
user_pref("CT2786678.backendstorage./9b+7ebx305", "2423");
user_pref("CT2786678.backendstorage./9b+7ecx305", "2423");
user_pref("CT2786678.backendstorage./9b+7edx305", "2423");
user_pref("CT2786678.backendstorage./9b+7etx305", "2423");
user_pref("CT2786678.backendstorage./9b-0?3g>d", "6A3C3D3F407144447A4571477620494D2077254D527D242A215755275A595A295D5D2D5C");
user_pref("CT2786678.backendstorage./9b-0?3g@6:5;", "");
user_pref("CT2786678.backendstorage./9b-0?3gfa7ef", "2B2E2C3D");
user_pref("CT2786678.backendstorage./9b-3=3eccja=f>", "247E333D2C452F4135276F297B7E7D21202F26313E4249357D37382F3A494D5D513F283338435D6554695B65546D57695D5D686365533C70766C6675
user_pref("CT2786678.backendstorage./9b/>01=9a6k6<im;krie@pdawm", "6E6A68707374757677");
user_pref("CT2786678.backendstorage./9b3=>@44i48?", "372C2D326975763342363341484778213F3E484F4E4D4648502B564B4E2E5959595F4C564F3764535750");
user_pref("CT2786678.backendstorage./9b5ba==9cjag", "3B3D3F6D404170727A7348737475474A4B20507E4F");
user_pref("CT2786678.backendstorage./9b6b11g4c56b>f;p;anr@p", "6E6D6B6D6C706F746F74747874");
user_pref("CT2786678.backendstorage./9b9643g3/9e", "6A");
user_pref("CT2786678.backendstorage./9b;45>:bi9i7ie", "2B2E2C3D");
user_pref("CT2786678.backendstorage./9b<:222h64<", "393F352F3E");
user_pref("CT2786678.backendstorage./9b<:222h64<l8daj", "6D70706F7674717976762A7A7672787675207C");
user_pref("CT2786678.backendstorage./9b=+03eh8h8j?:", "4443");
user_pref("CT2786678.backendstorage./9b?+e2a52d8", "372C2D326975762E3A3C7B3A39434A494841434B2651464929655046566470727951555E5E52");
user_pref("CT2786678.backendstorage./9b?b0d:8aj62<h", "6D");
user_pref("CT2786678.backendstorage./9ba@0<0bi6a7gn:6@l?", "6E6B");
user_pref("CT2786678.backendstorage.cbfirsttime", "5475652044656320323020323031312031343A31333A353820474D542B30313030");
user_pref("CT2786678.backendstorage.facebook_mode", "32");
user_pref("CT2786678.backendstorage.facebook_user_locale", "656E");
user_pref("CT2786678.backendstorage.mam_gk_appsdata", "7B2261707073223A5B7B226964223A225072696365476F6E67222C2275726C223A22687474703A2F2F7072696365676F6E672E636F6E647569746170
user_pref("CT2786678.backendstorage.mam_gk_appsdefaultenabled", "74727565");
user_pref("CT2786678.backendstorage.mam_gk_appstate_couponbuddy", "6F6E");
user_pref("CT2786678.backendstorage.mam_gk_appstate_pricegong", "6F6E");
user_pref("CT2786678.backendstorage.mam_gk_appstatereporttime", "31333635383530353437393337");
user_pref("CT2786678.backendstorage.mam_gk_configuration", "7B22636F6E66696775726174696F6E223A5B7B226964223A22436F75706F6E4275646479222C22637269746572696173223A5B7B22637269746
user_pref("CT2786678.backendstorage.mam_gk_currentversion", "312E342E342E36");
user_pref("CT2786678.backendstorage.mam_gk_first_time", "31");
user_pref("CT2786678.backendstorage.mam_gk_lastlogintime", "31333635383530353437393335");
user_pref("CT2786678.backendstorage.mam_gk_localization", "7B22676164676574436F6E74656E74506F6C696379223A7B2254657874223A22436F6E74656E7420506F6C696379227D2C226761646765744465
user_pref("CT2786678.backendstorage.mam_gk_settings1.4.4.6", "7B22537461747573223A22737563636565646564222C2244617461223A7B22696E74657276616C223A3234302C227374616D70223A2232313
user_pref("CT2786678.backendstorage.mam_gk_showclosebutton", "74727565");
user_pref("CT2786678.backendstorage.mam_gk_showwelcomegadget", "66616C7365");
user_pref("CT2786678.backendstorage.mam_gk_userid", "65306230333838322D376363662D346437622D383966662D656333396435636465656533");
user_pref("CT2786678.backendstorage.pairingkey", "41344231363033343242463637424641424441363234383942373138444342393142413533464445");
user_pref("CT2786678.backendstorage.pg_enable", "74727565");
user_pref("CT2786678.backendstorage.scriptsource", "687474703A2F2F3132372E302E302E313A31303030302F6775692F");
user_pref("CT2786678.backendstorage.searchappstate", "31");
user_pref("CT2786678.backendstorage.searchapptracking", "31");
user_pref("CT2786678.backendstorage.url_history0001", "687474703A2F2F7777772E66616365626F6F6B2E636F6D2F3F7265663D746E5F746E6D6E3A3A3A636C69636B68616E646C65723A3A3A313336353736
user_pref("CT2786678.backendstorage.uttorrents", "7B226275696C64223A32353832342C226C6162656C223A5B5D2C22746F7272656E7473223A5B5B22334134424531443438433331444641363242463532393
user_pref("CT2786678.components.1000034", false);
user_pref("CT2786678.components.1000234", false);
user_pref("CT2786678.components.129295698017012804", false);
user_pref("CT2786678.components.129309485163350924", false);
user_pref("CT2786678.components.129309489763975460", false);
user_pref("CT2786678.components.129315411424256896", false);
user_pref("CT2786678.components.129526967958500204", false);
user_pref("CT2786678.components.129579220236217502", false);
user_pref("CT2786678.components.129789450454597254", false);
user_pref("CT2786678.components.5690698542593514850", false);
user_pref("CT2786678.globalFirstTimeInfoLastCheckTime", "Mon Jan 28 2013 13:28:16 GMT+0100");
user_pref("CT2786678.homepageProtectorEnableByLogin", true);
user_pref("CT2786678.initDone", true);
user_pref("CT2786678.isAppTrackingManagerOn", false);
user_pref("CT2786678.myStuffEnabled", true);
user_pref("CT2786678.myStuffPublihserMinWidth", 400);
user_pref("CT2786678.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
user_pref("CT2786678.myStuffServiceIntervalMM", 1440);
user_pref("CT2786678.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
user_pref("CT2786678.oldAppsList", "129295695672325902,129295695672325903,1000234,129789450454597254,1000034,129526967958500204,129309489763975460,5690698542593514850,12930948
user_pref("CT2786678.revertSettingsEnabled", true);
user_pref("CT2786678.searchProtectorDialogDelayInSec", 10);
user_pref("CT2786678.searchProtectorEnableByLogin", true);
user_pref("CT2786678.testingCtid", "");
user_pref("CT2786678.toolbarAppMetaDataLastCheckTime", "Sun Jun 30 2013 13:08:16 GMT+0200");
user_pref("CT2786678.toolbarContextMenuLastCheckTime", "Wed Jan 16 2013 06:24:35 GMT+0100");
user_pref("CT2786678.usagesFlag", 2);
user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=13");
user_pref("CommunityToolbar.ConduitSearchList", "uTorrentBar Customized Web Search");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=en", "C5ZJe6gL80JBW5CuLy+wkg==");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=en", "mfQ70fvlD2zuBxSBj8rQqA==");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=en", "k9un27OkAvkwB2ZmvXxTnA==");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=en", "4BgM4MhF/sOgPsDNmIs3Yw==");
user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Aleaák\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\zyukda3g.default\\conduitCommon\\modules\\3.16.0.3");
user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.16.0.3");
user_pref("CommunityToolbar.MiniIPageGadgetSize.hxxp://facebook.conduitapps.com/v3.13/gadget.html", "670x469");
user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
user_pref("CommunityToolbar.ToolbarsList", "CT2786678");
user_pref("CommunityToolbar.ToolbarsList2", "CT2786678");
user_pref("CommunityToolbar.ToolbarsList4", "CT2786678");
user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Sat Dec 24 2011 16:42:20 GMT+0100");
user_pref("CommunityToolbar.globalUserId", "b36b1c1c-5c9e-4706-9c01-c7c7a0d2d741");
user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2786678");
user_pref("CommunityToolbar.originalHomepage", "hxxp://www.google.cz/");
user_pref("CommunityToolbar.originalSearchEngine", "Ask.com");
user_pref("browser.search.defaultthis.engineName", "uTorrentBar Customized Web Search");
user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&SearchSource=3&q={searchTerms}");
user_pref("extensions.crossrider.bic", "142cc7e8a445adcbf0d2dd06571c1735");
Emptied folder: C:\Users\Aleç k\AppData\Roaming\mozilla\firefox\profiles\zyukda3g.default\minidumps [112 files]



~~~ Chrome

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [Blacklisted Policy]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Łt 28.01.2014 at 16:03:20,69
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

zasílám 3. krok

# AdwCleaner v3.017 - Report created 28/01/2014 at 16:19:33
# Updated 12/01/2014 by Xplode
# Operating System : Windows 7 Home Premium (64 bits)
# Username : Alešák - RAKETA
# Running from : C:\Users\Alešák\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : pcsuservice

***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files (x86)\Gophoto.it
Folder Deleted : C:\Program Files (x86)\Mobogenie
Folder Deleted : C:\Users\Aleš\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Alešák\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Alešák\AppData\Local\PackageAware
Folder Deleted : C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Folder Deleted : C:\Users\Alešák\Documents\Mobogenie
File Deleted : C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\gophoto@gophoto.it.xpi
File Deleted : C:\Users\Aleš\AppData\Roaming\Mozilla\Firefox\Profiles\79qvq2td.default\user.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Classes\pokki
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ISOS_is1
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [CPMODUpdater]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B89F5C49-51DB-4974-AB5A-E25901AA339C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E9B5B0D2-D08A-49FC-8B5C-159B60BAA268}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie
Key Deleted : [x64] HKLM\SOFTWARE\Speedchecker Limited

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7600.17267


-\\ Mozilla Firefox v26.0 (cs)

[ File : C:\Users\Aleš\AppData\Roaming\Mozilla\Firefox\Profiles\79qvq2td.default\prefs.js ]

Line Deleted : user_pref("browser.search.selectedEngine", "Ask.com");
Line Deleted : user_pref("browser.search.order.1", "Ask.com");
Line Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Line Deleted : user_pref("browser.search.defaultenginename", "Ask.com");
Line Deleted : user_pref("extensions.asktb.ff-original-keyword-url", "");

[ File : C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\prefs.js ]

Line Deleted : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Aleaák\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\zyukda3g.default\\conduitCommon\\modules\\3.16.0.3");
Line Deleted : user_pref("extensions.enabledItems", "{B7082FAA-CB62-4872-9106-E42DD88EDE45}:2.8,{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22,toolbar@ask.com:3.11.3.15590,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.1[...]

-\\ Google Chrome v

[ File : C:\Users\Alešák\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage

*************************

AdwCleaner[R0].txt - [3458 octets] - [28/01/2014 16:07:47]
AdwCleaner[S0].txt - [3421 octets] - [28/01/2014 16:19:33]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3481 octets] ##########

Poprosim o novy log z FRSTLauncheru

Přeposílám:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-01-2014
Ran by Alešák (administrator) on RAKETA on 29-01-2014 08:46:13
Running from C:\Users\Alešák\Desktop
Windows 7 Home Premium (X64) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(The Firebird Project) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe
() C:\Program Files (x86)\Kooperativa\Services\KoopPDFServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
() C:\Windows\SysWOW64\Rezip.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Gemfor s.r.o.) C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
(The Firebird Project) C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbserver.exe
(SAMSUNG Electronics) C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
(SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard Company) C:\Program Files\HP\HP LaserJet Professional M1530 MFP Series\Fax Driver\hppfaxprintersrv.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Gemfor s.r.o.) C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Users\Alešák\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Oracle Corporation) C:\Windows\System32\javaw.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Unicorn Systems) C:\Program Files (x86)\ČP\CPMODUpdater\CPMODUpdater.exe
() C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [NvCplDaemon] - C:\Windows\system32\NvCpl.dll [17412200 2010-05-05] (NVIDIA Corporation)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10144288 2010-04-07] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2074408 2010-02-26] (Synaptics Incorporated)
HKLM\...\Run: [HP LaserJet Professional M1530 MFP Series Fax] - C:\Program Files\HP\HP LaserJet Professional M1530 MFP Series\Fax Driver\hppfaxprintersrv.exe [3707704 2010-04-09] (Hewlett-Packard Company)
HKLM-x32\...\Run: [NortonOnlineBackup] - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1112920 2010-03-05] (Symantec Corporation)
HKLM-x32\...\Run: [UpdateLBPShortCut] - C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-06-03] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] - C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePDRShortCut] - C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl8] - C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [PDVD8LanguageShortcut] - C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePPShortCut] - C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePSTShortCut] - C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2009-07-21] (CyberLink Corp.)
HKLM-x32\...\Run: [UCam_Menu] - C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [ToolboxFX] - C:\Program Files (x86)\HP\ToolboxFX\bin\HPTLBXFX.exe [58936 2010-04-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [38872 2012-07-31] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-01-27] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Alešák\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-04-21] (Google Inc.)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
HKCU\...\Run: [T-Mobile Communication Centre] - C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [1355792 2011-03-08] (Gemfor s.r.o.)
HKCU\...\Run: [SkyDrive] - C:\Users\Alešák\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257136 2013-10-10] (Microsoft Corporation)
HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
MountPoints2: {5a8107c0-deb4-11e0-bad5-806e6f6e6963} - F:\autorun.exe
MountPoints2: {6e6944c3-ad6c-11e2-b14c-4cedde7eda5b} - G:\HPLauncher.exe
MountPoints2: {a7801c07-a264-11e2-ac23-4cedde7eda5b} - G:\AutoRun.exe
HKU\Aleš\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [95848 2010-05-06] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [90216 2010-05-06] (NVIDIA Corporation)
Startup: C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Kooperativa - PDF Server.lnk
ShortcutTarget: Kooperativa - PDF Server.lnk -> C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung.msn.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://samsung.msn.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default
FF NewTab: www.google.com
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: www.google.com
FF Keyword.URL: hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Alešák\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Alešák\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Torntv V6.0 - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com [2014-01-28]
FF HKLM-x32\...\Firefox\Extensions: [{B7082FAA-CB62-4872-9106-E42DD88EDE45}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2010-11-18]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-01-27]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "www.google.com"
CHR DefaultSearchURL: {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Users\Alešák\AppData\Local\Google\Chrome\Application\32.0.1700.76\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.220.4) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U22) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.0.60129.0\npctrl.dll No File
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Alešák\AppData\Local\Google\Chrome\Application\32.0.1700.76\pdf.dll ()
CHR Plugin: (Google Gears 0.5.33.0) - C:\Users\Alešák\AppData\Local\Google\Chrome\Application\32.0.1700.76\gears.dll No File
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Alešák\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (avast! Online Security) - C:\Users\Alešák\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-01-27]
CHR Extension: (Google Wallet) - C:\Users\Alešák\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-26]
CHR HKLM-x32\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\ALEK~1\AppData\Local\Temp\ccex.crx [2013-11-26]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-01-27]
CHR StartMenuInternet: Google Chrome - C:\Users\Alešák\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

R2 ameisvc; C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe [122608 2011-03-08] (Gemfor s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-27] (AVAST Software)
R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbguard.exe [65536 2009-10-06] (The Firebird Project)
R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_1_5\bin\fbserver.exe [1532000 2009-10-06] (The Firebird Project)
R2 KoopPdfService; C:\Program Files (x86)\Kooperativa\Services\KoopPDFServer.exe [2454016 2012-11-20] ()
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [203280 2009-01-23] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2782552 2010-03-05] (Symantec Corporation)
R2 Rezip; C:\Windows\SysWOW64\Rezip.exe [311296 2009-03-05] ()
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-07-07] ()

==================== Drivers (Whitelisted) ====================

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-27] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2014-01-27] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-01-27] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-01-27] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-01-27] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-01-27] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-01-27] ()
S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [53816 2009-03-07] (Samsung Electronics Co., Ltd.)
S3 Huawei; C:\Windows\System32\DRIVERS\ewdcsc.sys [29696 2009-12-15] (Huawei Tech. Co., Ltd.)
S3 hwusbdev; C:\Windows\System32\DRIVERS\ewusbdev.sys [114304 2009-12-15] (Huawei Technologies Co., Ltd.)
S3 rtport; C:\Windows\SysWOW64\drivers\rtport.sys [15144 2011-01-13] (Windows (R) 2003 DDK 3790 provider)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564792 2012-02-19] (Duplex Secure Ltd.)
R2 SSPORT; C:\Windows\SysWOW64\Drivers\SSPORT.sys [11576 2009-10-28] (Samsung Electronics)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
U3 auncmew6; C:\Windows\System32\Drivers\auncmew6.sys [0 ] (Advanced Micro Devices)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [243200 2009-12-15] (Huawei Technologies Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-29 08:42 - 2014-01-29 08:42 - 00000000 ____D C:\Users\Alešák\Desktop\FRST-OlderVersion
2014-01-28 16:07 - 2014-01-28 16:19 - 00000000 ____D C:\AdwCleaner
2014-01-28 16:07 - 2014-01-28 16:07 - 01236282 _____ C:\Users\Alešák\Desktop\adwcleaner.exe
2014-01-28 16:03 - 2014-01-28 16:03 - 00024989 _____ C:\Users\Alešák\Desktop\JRT.txt
2014-01-28 15:52 - 2014-01-28 15:52 - 00000000 ____D C:\Windows\ERUNT
2014-01-28 15:51 - 2014-01-28 15:52 - 01037068 _____ (Thisisu) C:\Users\Alešák\Desktop\JRT.exe
2014-01-27 22:27 - 2014-01-28 16:23 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2014-01-27 22:27 - 2014-01-27 22:27 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-01-27 22:27 - 2014-01-27 22:27 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\AVAST Software
2014-01-27 22:27 - 2014-01-27 22:26 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-01-27 22:27 - 2014-01-27 22:26 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-01-27 22:27 - 2014-01-27 22:26 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-01-27 22:27 - 2014-01-27 22:26 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2014-01-27 22:27 - 2014-01-27 22:26 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-01-27 22:27 - 2014-01-27 22:26 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-01-27 22:27 - 2014-01-27 22:26 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-01-27 22:27 - 2014-01-27 22:26 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2014-01-27 22:26 - 2014-01-27 22:26 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-01-27 22:26 - 2014-01-27 22:26 - 00000000 ____D C:\Program Files\AVAST Software
2014-01-27 22:25 - 2014-01-27 22:25 - 00000000 ____D C:\ProgramData\AVAST Software
2014-01-27 22:21 - 2014-01-27 22:25 - 90582312 _____ (AVAST Software) C:\Users\Alešák\Desktop\avast_free_antivirus_setup_rcn.exe
2014-01-27 10:03 - 2014-01-29 08:44 - 00034393 _____ C:\Users\Alešák\Desktop\Addition.txt
2014-01-27 09:59 - 2014-01-27 09:59 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\TeamViewer
2014-01-27 09:28 - 2014-01-27 09:28 - 00006937 _____ C:\Users\Alešák\Desktop\Addition.zip
2014-01-27 09:22 - 2014-01-29 08:46 - 00023438 _____ C:\Users\Alešák\Desktop\FRST.txt
2014-01-27 09:22 - 2014-01-29 08:46 - 00000000 ____D C:\FRST
2014-01-27 09:19 - 2014-01-29 08:42 - 02079744 _____ (Farbar) C:\Users\Alešák\Desktop\FRST64.exe
2014-01-27 09:14 - 2014-01-27 09:14 - 00001162 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-27 09:14 - 2014-01-27 09:14 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-27 09:12 - 2014-01-27 09:12 - 07243968 _____ (TeamViewer GmbH) C:\Users\Alešák\Desktop\TeamViewer_Setup.exe
2014-01-24 07:44 - 2014-01-24 07:44 - 05934592 _____ C:\Users\Alešák\Documents\PriMa_OVB_tpl_v1 01.xls
2014-01-22 13:55 - 2014-01-22 13:55 - 00003059 _____ C:\Users\Alešák\Desktop\OVB Simulace.lnk
2014-01-22 13:55 - 2014-01-22 13:55 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Simulace_2009
2014-01-17 08:10 - 2014-01-17 08:10 - 00005175 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-17 08:10 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-17 08:10 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-17 08:10 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-17 08:10 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-16 23:55 - 2014-01-28 16:20 - 00006626 _____ C:\Windows\PFRO.log
2014-01-04 08:34 - 2014-01-04 08:35 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\KA10
2014-01-04 08:32 - 2014-01-04 08:35 - 00000000 ____D C:\Program Files (x86)\KA10
2014-01-04 08:32 - 2014-01-04 08:32 - 00001883 _____ C:\Users\Public\Desktop\Autopojištění 2012.lnk
2014-01-04 08:32 - 2014-01-04 08:32 - 00000000 ____D C:\Data-KA10
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2014-01-04 08:18 - 2014-01-23 18:56 - 01853986 _____ C:\Users\Alešák\Desktop\21282_65379_PriMa_3G_v2_00.xlsm
2014-01-02 13:35 - 2014-01-14 18:03 - 06427049 _____ C:\Users\Alešák\Desktop\Mercury Mini.xlsm
2014-01-02 13:35 - 2014-01-02 13:35 - 06709953 _____ C:\Users\Alešák\Desktop\Mercury.xlsm

==================== One Month Modified Files and Folders =======

2014-01-29 08:46 - 2014-01-27 09:22 - 00023438 _____ C:\Users\Alešák\Desktop\FRST.txt
2014-01-29 08:46 - 2014-01-27 09:22 - 00000000 ____D C:\FRST
2014-01-29 08:45 - 2011-10-13 10:27 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-29 08:45 - 2011-07-21 18:23 - 00003966 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{2C8BAA35-73CA-407A-AA43-E1F11B8833AB}
2014-01-29 08:44 - 2014-01-27 10:03 - 00034393 _____ C:\Users\Alešák\Desktop\Addition.txt
2014-01-29 08:42 - 2014-01-29 08:42 - 00000000 ____D C:\Users\Alešák\Desktop\FRST-OlderVersion
2014-01-29 08:42 - 2014-01-27 09:19 - 02079744 _____ (Farbar) C:\Users\Alešák\Desktop\FRST64.exe
2014-01-29 08:32 - 2012-12-18 13:45 - 00000000 ____D C:\Users\Alešák\Documents\Soubory aplikace Outlook
2014-01-29 08:14 - 2009-07-14 05:45 - 00014144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-29 08:14 - 2009-07-14 05:45 - 00014144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-29 08:12 - 2011-04-21 11:55 - 00000966 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002UA.job
2014-01-29 08:12 - 2011-04-21 11:55 - 00000914 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002Core.job
2014-01-29 08:09 - 2010-11-19 02:32 - 01979292 _____ C:\Windows\WindowsUpdate.log
2014-01-29 08:03 - 2013-12-07 10:57 - 00002174 _____ C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job
2014-01-29 07:58 - 2013-12-07 10:57 - 00001298 _____ C:\Windows\Tasks\Torntv V6.0-updater.job
2014-01-29 07:58 - 2012-04-03 17:43 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-28 17:26 - 2012-01-03 18:19 - 00011268 _____ C:\Users\Alešák\AppData\Roaming\SmarThruOptions.xml
2014-01-28 16:24 - 2013-10-10 14:14 - 00000000 ___RD C:\Users\Alešák\SkyDrive
2014-01-28 16:23 - 2014-01-27 22:27 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2014-01-28 16:22 - 2011-03-29 20:53 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2014-01-28 16:21 - 2011-10-13 10:27 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-28 16:20 - 2014-01-16 23:55 - 00006626 _____ C:\Windows\PFRO.log
2014-01-28 16:20 - 2013-12-13 18:21 - 00002972 _____ C:\Windows\setupact.log
2014-01-28 16:20 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-28 16:19 - 2014-01-28 16:07 - 00000000 ____D C:\AdwCleaner
2014-01-28 16:07 - 2014-01-28 16:07 - 01236282 _____ C:\Users\Alešák\Desktop\adwcleaner.exe
2014-01-28 16:03 - 2014-01-28 16:03 - 00024989 _____ C:\Users\Alešák\Desktop\JRT.txt
2014-01-28 15:52 - 2014-01-28 15:52 - 00000000 ____D C:\Windows\ERUNT
2014-01-28 15:52 - 2014-01-28 15:51 - 01037068 _____ (Thisisu) C:\Users\Alešák\Desktop\JRT.exe
2014-01-28 15:21 - 2013-12-07 10:59 - 00023735 _____ C:\Users\Alešák\daemonprocess.txt
2014-01-28 08:10 - 2013-12-05 22:05 - 00000000 ____D C:\Program Files (x86)\Zrychleni Pocitace
2014-01-27 23:19 - 2013-12-07 10:57 - 00000000 ____D C:\Program Files (x86)\Torntv V6.0
2014-01-27 22:27 - 2014-01-27 22:27 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-01-27 22:27 - 2014-01-27 22:27 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\AVAST Software
2014-01-27 22:26 - 2014-01-27 22:27 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-01-27 22:26 - 2014-01-27 22:27 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-01-27 22:26 - 2014-01-27 22:27 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-01-27 22:26 - 2014-01-27 22:27 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2014-01-27 22:26 - 2014-01-27 22:27 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-01-27 22:26 - 2014-01-27 22:27 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-01-27 22:26 - 2014-01-27 22:27 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-01-27 22:26 - 2014-01-27 22:27 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2014-01-27 22:26 - 2014-01-27 22:26 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-01-27 22:26 - 2014-01-27 22:26 - 00000000 ____D C:\Program Files\AVAST Software
2014-01-27 22:25 - 2014-01-27 22:25 - 00000000 ____D C:\ProgramData\AVAST Software
2014-01-27 22:25 - 2014-01-27 22:21 - 90582312 _____ (AVAST Software) C:\Users\Alešák\Desktop\avast_free_antivirus_setup_rcn.exe
2014-01-27 10:32 - 2010-11-19 03:23 - 00666672 _____ C:\Windows\system32\perfh005.dat
2014-01-27 10:32 - 2010-11-19 03:23 - 00140336 _____ C:\Windows\system32\perfc005.dat
2014-01-27 10:32 - 2009-07-14 06:13 - 01577482 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-27 10:09 - 2011-03-30 08:40 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\vlc
2014-01-27 09:59 - 2014-01-27 09:59 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\TeamViewer
2014-01-27 09:58 - 2011-03-29 21:48 - 00114776 _____ C:\Users\Alešák\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-27 09:56 - 2009-07-14 05:45 - 00429976 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-27 09:28 - 2014-01-27 09:28 - 00006937 _____ C:\Users\Alešák\Desktop\Addition.zip
2014-01-27 09:14 - 2014-01-27 09:14 - 00001162 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-27 09:14 - 2014-01-27 09:14 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-27 09:12 - 2014-01-27 09:12 - 07243968 _____ (TeamViewer GmbH) C:\Users\Alešák\Desktop\TeamViewer_Setup.exe
2014-01-24 07:44 - 2014-01-24 07:44 - 05934592 _____ C:\Users\Alešák\Documents\PriMa_OVB_tpl_v1 01.xls
2014-01-23 18:56 - 2014-01-04 08:18 - 01853986 _____ C:\Users\Alešák\Desktop\21282_65379_PriMa_3G_v2_00.xlsm
2014-01-22 14:48 - 2011-03-29 21:02 - 00000000 ____D C:\Users\Alešák\Desktop\Kalkulačka
2014-01-22 13:55 - 2014-01-22 13:55 - 00003059 _____ C:\Users\Alešák\Desktop\OVB Simulace.lnk
2014-01-22 13:55 - 2014-01-22 13:55 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Simulace_2009
2014-01-17 08:10 - 2014-01-17 08:10 - 00005175 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-17 08:10 - 2013-11-26 12:53 - 00000000 ____D C:\ProgramData\Oracle
2014-01-17 08:10 - 2011-03-30 08:29 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-16 11:22 - 2011-03-28 14:43 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-16 11:22 - 2009-07-14 03:34 - 00000510 _____ C:\Windows\win.ini
2014-01-16 11:12 - 2013-07-14 12:05 - 00000000 ____D C:\Windows\system32\MRT
2014-01-16 07:41 - 2011-04-12 16:22 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-14 18:03 - 2014-01-02 13:35 - 06427049 _____ C:\Users\Alešák\Desktop\Mercury Mini.xlsm
2014-01-12 20:54 - 2011-03-29 20:59 - 00000000 ____D C:\Users\Alešák\Documents\Složka Bluetooth Exchange
2014-01-08 16:46 - 2013-10-02 12:38 - 07555584 _____ C:\Users\Alešák\Desktop\Conseq_kalkulace_OVB_2011_5.xls
2014-01-04 08:35 - 2014-01-04 08:34 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\KA10
2014-01-04 08:35 - 2014-01-04 08:32 - 00000000 ____D C:\Program Files (x86)\KA10
2014-01-04 08:32 - 2014-01-04 08:32 - 00001883 _____ C:\Users\Public\Desktop\Autopojištění 2012.lnk
2014-01-04 08:32 - 2014-01-04 08:32 - 00000000 ____D C:\Data-KA10
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2014-01-04 08:31 - 2014-01-04 08:31 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2014-01-03 13:54 - 2013-02-10 19:22 - 00001094 _____ C:\Users\Alešák\Desktop\Kooperativa - Perspektiva 7BN Extern.lnk
2014-01-02 13:54 - 2012-05-14 06:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-02 13:35 - 2014-01-02 13:35 - 06709953 _____ C:\Users\Alešák\Desktop\Mercury.xlsm
2013-12-31 14:10 - 2011-04-05 21:36 - 00000000 ____D C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Generali pojišťovna
2013-12-31 14:08 - 2013-06-14 14:16 - 00000000 ____D C:\GEN

Some content of TEMP:
====================
C:\Users\Aleš\AppData\Local\Temp\MSNCDBC.exe
C:\Users\Aleš\AppData\Local\Temp\ose00000.exe
C:\Users\Alešák\AppData\Local\Temp\evrecqjj.dll
C:\Users\Alešák\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Alešák\AppData\Local\Temp\m2am0vyt.dll
C:\Users\Alešák\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-01 13:29

==================== End Of Log ============================

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  HKLM-x32\...\Run: [UpdateLBPShortCut] - C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
  HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-06-03] (CyberLink)
  HKLM-x32\...\Run: [UpdateP2GoShortCut] - C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
  HKLM-x32\...\Run: [UpdatePDRShortCut] - C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
  HKLM-x32\...\Run: [RemoteControl8] - C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-04-15] (CyberLink Corp.)
  HKLM-x32\...\Run: [PDVD8LanguageShortcut] - C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
  HKLM-x32\...\Run: [UpdatePPShortCut] - C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
  HKLM-x32\...\Run: [UpdatePSTShortCut] - C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2009-07-21] (CyberLink Corp.)
  HKLM-x32\...\Run: [UCam_Menu] - C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
  HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
  HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [38872 2012-07-31] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-11] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
  HKCU\...\Run: [Google Update] - C:\Users\Alešák\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-04-21] (Google Inc.)
  HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
  HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
  MountPoints2: {5a8107c0-deb4-11e0-bad5-806e6f6e6963} - F:\autorun.exe
  MountPoints2: {6e6944c3-ad6c-11e2-b14c-4cedde7eda5b} - G:\HPLauncher.exe
  MountPoints2: {a7801c07-a264-11e2-ac23-4cedde7eda5b} - G:\AutoRun.exe
  HKU\Aleš\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
  Startup: C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Kooperativa - PDF Server.lnk
  
  HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung.msn.com
  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://samsung.msn.com
  BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
  BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
  BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
  Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
  Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
  Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
  Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
  
  FF Keyword.URL: hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
  FF NetworkProxy: "type", 0
  FF Extension: Torntv V6.0 - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com [2014-01-28]
  FF HKLM-x32\...\Firefox\Extensions: [{B7082FAA-CB62-4872-9106-E42DD88EDE45}] - C:\Program Files (x86)\McAfee\SiteAdvisor
  FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2010-11-18]
  FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
  
  CHR HKLM-x32\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\ALEK~1\AppData\Local\Temp\ccex.crx [2013-11-26]
  
  R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [203280 2009-01-23] ()
  S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
  
  C:\Program Files\McAfee Security Scan
  C:\Program Files (x86)\McAfee
  2014-01-29 08:42 - 2014-01-29 08:42 - 00000000 ____D C:\Users\Alešák\Desktop\FRST-OlderVersion
  2014-01-28 16:07 - 2014-01-28 16:07 - 01236282 _____ C:\Users\Alešák\Desktop\adwcleaner.exe
  2014-01-28 16:03 - 2014-01-28 16:03 - 00024989 _____ C:\Users\Alešák\Desktop\JRT.txt
  2014-01-28 15:51 - 2014-01-28 15:52 - 01037068 _____ (Thisisu) C:\Users\Alešák\Desktop\JRT.exe
  2014-01-27 22:21 - 2014-01-27 22:25 - 90582312 _____ (AVAST Software) C:\Users\Alešák\Desktop\avast_free_antivirus_setup_rcn.exe
  2014-01-27 09:28 - 2014-01-27 09:28 - 00006937 _____ C:\Users\Alešák\Desktop\Addition.zip
  2014-01-27 09:22 - 2014-01-29 08:46 - 00023438 _____ C:\Users\Alešák\Desktop\FRST.txt
  2014-01-28 08:10 - 2013-12-05 22:05 - 00000000 ____D C:\Program Files (x86)\Zrychleni Pocitace
  2014-01-27 23:19 - 2013-12-07 10:57 - 00000000 ____D C:\Program Files (x86)\Torntv V6.0
  C:\Users\Aleš\AppData\Local\Temp\MSNCDBC.exe
  C:\Users\Aleš\AppData\Local\Temp\ose00000.exe
  C:\Users\Alešák\AppData\Local\Temp\evrecqjj.dll
  C:\Users\Alešák\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
  C:\Users\Alešák\AppData\Local\Temp\m2am0vyt.dll
  C:\Users\Alešák\AppData\Local\Temp\Quarantine.exe
  
  Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002Core.job => C:\Users\Aleaák\AppData\Local\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002UA.job => C:\Users\Aleaák\AppData\Local\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\PC SpeedUp Service Deactivator.job => C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe
  Task: C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-firefoxinstaller.exe <==== ATTENTION
  Task: C:\Windows\Tasks\Torntv V6.0-updater.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-updater.exe <==== ATTENTION
  
  AlternateDataStreams: C:\ProgramData\Temp:4CF61E54
  AlternateDataStreams: C:\ProgramData\Temp:798A3728
  AlternateDataStreams: C:\ProgramData\Temp:E36F5B57
  AlternateDataStreams: C:\ProgramData\Temp:E7BA7168
  
  Hosts:
  CMD: shutdown /r /f /t 2
  
  End

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

přikládám:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 29-01-2014
Ran by Alešák at 2014-01-29 13:20:11 Run:1
Running from C:\Users\Alešák\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM-x32\...\Run: [UpdateLBPShortCut] - C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-06-03] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] - C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePDRShortCut] - C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl8] - C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [PDVD8LanguageShortcut] - C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePPShortCut] - C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePSTShortCut] - C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2009-07-21] (CyberLink Corp.)
HKLM-x32\...\Run: [UCam_Menu] - C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [38872 2012-07-31] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Alešák\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-04-21] (Google Inc.)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
MountPoints2: {5a8107c0-deb4-11e0-bad5-806e6f6e6963} - F:\autorun.exe
MountPoints2: {6e6944c3-ad6c-11e2-b14c-4cedde7eda5b} - G:\HPLauncher.exe
MountPoints2: {a7801c07-a264-11e2-ac23-4cedde7eda5b} - G:\AutoRun.exe
HKU\Aleš\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
Startup: C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Kooperativa - PDF Server.lnk

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung.msn.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://samsung.msn.com
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll ()
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll ()

FF Keyword.URL: hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF NetworkProxy: "type", 0
FF Extension: Torntv V6.0 - C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com [2014-01-28]
FF HKLM-x32\...\Firefox\Extensions: [{B7082FAA-CB62-4872-9106-E42DD88EDE45}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2010-11-18]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

CHR HKLM-x32\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\ALEK~1\AppData\Local\Temp\ccex.crx [2013-11-26]

R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [203280 2009-01-23] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)

C:\Program Files\McAfee Security Scan
C:\Program Files (x86)\McAfee
2014-01-29 08:42 - 2014-01-29 08:42 - 00000000 ____D C:\Users\Alešák\Desktop\FRST-OlderVersion
2014-01-28 16:07 - 2014-01-28 16:07 - 01236282 _____ C:\Users\Alešák\Desktop\adwcleaner.exe
2014-01-28 16:03 - 2014-01-28 16:03 - 00024989 _____ C:\Users\Alešák\Desktop\JRT.txt
2014-01-28 15:51 - 2014-01-28 15:52 - 01037068 _____ (Thisisu) C:\Users\Alešák\Desktop\JRT.exe
2014-01-27 22:21 - 2014-01-27 22:25 - 90582312 _____ (AVAST Software) C:\Users\Alešák\Desktop\avast_free_antivirus_setup_rcn.exe
2014-01-27 09:28 - 2014-01-27 09:28 - 00006937 _____ C:\Users\Alešák\Desktop\Addition.zip
2014-01-27 09:22 - 2014-01-29 08:46 - 00023438 _____ C:\Users\Alešák\Desktop\FRST.txt
2014-01-28 08:10 - 2013-12-05 22:05 - 00000000 ____D C:\Program Files (x86)\Zrychleni Pocitace
2014-01-27 23:19 - 2013-12-07 10:57 - 00000000 ____D C:\Program Files (x86)\Torntv V6.0
C:\Users\Aleš\AppData\Local\Temp\MSNCDBC.exe
C:\Users\Aleš\AppData\Local\Temp\ose00000.exe
C:\Users\Alešák\AppData\Local\Temp\evrecqjj.dll
C:\Users\Alešák\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Alešák\AppData\Local\Temp\m2am0vyt.dll
C:\Users\Alešák\AppData\Local\Temp\Quarantine.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002Core.job => C:\Users\Aleaák\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002UA.job => C:\Users\Aleaák\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PC SpeedUp Service Deactivator.job => C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe
Task: C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-firefoxinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\Torntv V6.0-updater.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-updater.exe <==== ATTENTION

AlternateDataStreams: C:\ProgramData\Temp:4CF61E54
AlternateDataStreams: C:\ProgramData\Temp:798A3728
AlternateDataStreams: C:\ProgramData\Temp:E36F5B57
AlternateDataStreams: C:\ProgramData\Temp:E7BA7168

Hosts:
CMD: shutdown /r /f /t 2

End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UpdateLBPShortCut => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\CLMLServer => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UpdateP2GoShortCut => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UpdatePDRShortCut => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\RemoteControl8 => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\PDVD8LanguageShortcut => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UpdatePPShortCut => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UpdatePSTShortCut => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UCam_Menu => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\BCSSync => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\RESTART_STICKY_NOTES => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5a8107c0-deb4-11e0-bad5-806e6f6e6963} => Key deleted successfully.
HKCR\CLSID\{5a8107c0-deb4-11e0-bad5-806e6f6e6963} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6e6944c3-ad6c-11e2-b14c-4cedde7eda5b} => Key deleted successfully.
HKCR\CLSID\{6e6944c3-ad6c-11e2-b14c-4cedde7eda5b} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a7801c07-a264-11e2-ac23-4cedde7eda5b} => Key deleted successfully.
HKCR\CLSID\{a7801c07-a264-11e2-ac23-4cedde7eda5b} => Key not found.
HKU\Aleš\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => Value deleted successfully.
C:\Users\Alešák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Kooperativa - PDF Server.lnk => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => Key deleted successfully.
HKCR\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} => Value deleted successfully.
HKCR\CLSID\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} => Key deleted successfully.
HKCR\PROTOCOLS\Handler\sacore => Key deleted successfully.
HKCR\CLSID\{5513F07E-936B-4E52-9B00-067394E91CC5} => Key deleted successfully.
HKCR\Wow6432Node\PROTOCOLS\Handler\sacore => Key not found.
HKCR\Wow6432Node\CLSID\{5513F07E-936B-4E52-9B00-067394E91CC5} => Key deleted successfully.
Firefox Keyword.URL deleted successfully.
Firefox Proxy settings were reset.
C:\Users\Alešák\AppData\Roaming\Mozilla\Firefox\Profiles\zyukda3g.default\Extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com => Moved successfully.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45} => Value deleted successfully.

"C:\Program Files (x86)\McAfee\SiteAdvisor" directory move:

C:\Program Files (x86)\McAfee\SiteAdvisor\apengine.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\chrome.manifest => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\cntscan.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\content.dat => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\default.txt => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\elist.dat => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\ffplg.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\ieplg.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\ieplg64.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\install.rdf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\McBrwctl.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\mcfrmwk.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\mcplgUI.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\McSACorePS.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\msacmain.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Oem.txt => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sac.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sac64.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sachook.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sacimg.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sacomm.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sacomm64.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sacore.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sacore.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sacres.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\safelocalization.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sahook.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\saplugin.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sares.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\saset.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\sasets.ini => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\saupkeep.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\subst.inf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\uninstall.exe => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McBrwctl.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mcplgUI.dll => Moved successfully.
Could not move "C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McSACorePS.dll" => Scheduled to move on reboot.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\balloon_logo.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\balloon_logo_plus.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_black.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_disabled.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_green.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_green_lock.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_grey.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_grey_lock.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_hs.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_hs_lock.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_red.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_red_lock.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_yellow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\button_yellow_lock.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\contents.rdf => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\download_careful.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\download_unsafe.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\down_arrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\g.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\gl.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\gllc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\glrc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\gr.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\green.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\greenbubble.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\greendownarrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\greenuparrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\gul.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\gulc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\gurc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\hackersafe.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\hs.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\main.js => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\mainff.js => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\protection.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\r.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\red.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\redbubble.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\reddownarrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\reduparrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\rl.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\rllc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\rlrc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\rr.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\rul.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\rulc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\rurc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\safe-facet-green.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\safe-facet-red.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\safe-facet-white.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\safe-facet-yellow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\safe.xul => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\safesearch.dat => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\safesearch.js => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\saffplg.js => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\siteadvisor.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\untested.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\whitebubble.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\whitedownarrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\whiteuparrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\xdown.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\xup.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\y.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yellow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yellowbubble.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yellowdownarrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yellowuparrow.gif => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yl.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yllc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\ylrc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yr.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yul.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yulc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\yurc.png => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\zh-TW\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\zh-TW\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\zh-CN\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\zh-CN\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\tr-TR\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\tr-TR\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\sv-SE\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\sv-SE\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\sr-sr\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\sr-sr\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\sk-SK\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\sk-SK\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\ru-RU\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\ru-RU\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\pt-PT\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\pt-PT\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\pt-BR\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\pt-BR\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\pl-PL\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\pl-PL\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\no-NO\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\no-NO\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\nl-NL\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\nl-NL\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\nb-NO\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\nb-NO\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\ko-KR\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\ko-KR\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\ja-JP\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\ja-JP\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\it-IT\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\it-IT\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\hu-HU\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\hu-HU\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\hr-hr\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\hr-hr\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\fr-FR\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\fr-FR\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\fr-CA\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\fr-CA\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\fi-FI\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\fi-FI\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-PE\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-PE\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-MX\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-MX\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-ES\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-ES\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-CL\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-CL\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-AR\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\es-AR\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-US\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-US\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-IE\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-IE\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-GB\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-GB\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-CA\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-CA\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-AU\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\en-AU\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\el-GR\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\el-GR\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\de-DE\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\de-DE\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\da-DK\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\da-DK\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\cs-CZ\IE\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Scripts\locale\cs-CZ\FF\safe.css => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Components\IMcFFPlg.xpt => Moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor\Components\McFFPlg.dll => Moved successfully.
Could not move "C:\Program Files (x86)\McAfee\SiteAdvisor" directory. => Scheduled to move on reboot.

HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com => Value deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\bejbohlohkkgompgecdcbbglkpjfjgdj => Key deleted successfully.
"C:\Users\ALEK~1\AppData\Local\Temp\ccex.crx" => File/Directory not found.
McAfee SiteAdvisor Service => Service deleted successfully.
McComponentHostService => Service deleted successfully.
C:\Program Files\McAfee Security Scan => Moved successfully.

"C:\Program Files (x86)\McAfee" directory move:

C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McSACorePS.dll => Moved successfully.
Could not move "C:\Program Files (x86)\McAfee" directory. => Scheduled to move on reboot.

C:\Users\Alešák\Desktop\FRST-OlderVersion => Moved successfully.
C:\Users\Alešák\Desktop\adwcleaner.exe => Moved successfully.
C:\Users\Alešák\Desktop\JRT.txt => Moved successfully.
C:\Users\Alešák\Desktop\JRT.exe => Moved successfully.
C:\Users\Alešák\Desktop\avast_free_antivirus_setup_rcn.exe => Moved successfully.
C:\Users\Alešák\Desktop\Addition.zip => Moved successfully.
C:\Users\Alešák\Desktop\FRST.txt => Moved successfully.
C:\Program Files (x86)\Zrychleni Pocitace => Moved successfully.
C:\Program Files (x86)\Torntv V6.0 => Moved successfully.
C:\Users\Aleš\AppData\Local\Temp\MSNCDBC.exe => Moved successfully.
C:\Users\Aleš\AppData\Local\Temp\ose00000.exe => Moved successfully.
C:\Users\Alešák\AppData\Local\Temp\evrecqjj.dll => Moved successfully.
C:\Users\Alešák\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe => Moved successfully.
C:\Users\Alešák\AppData\Local\Temp\m2am0vyt.dll => Moved successfully.
C:\Users\Alešák\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2882767032-2900810182-58851670-1002UA.job => Moved successfully.
C:\Windows\Tasks\PC SpeedUp Service Deactivator.job not found.
C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job => Moved successfully.
C:\Windows\Tasks\Torntv V6.0-updater.job => Moved successfully.
C:\ProgramData\Temp => ":4CF61E54" ADS removed successfully.
C:\ProgramData\Temp => ":798A3728" ADS removed successfully.
C:\ProgramData\Temp => ":E36F5B57" ADS removed successfully.
C:\ProgramData\Temp => ":E7BA7168" ADS removed successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r /f /t 2 =========


========= End of CMD: =========


=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-01-29 13:24:40)<=

C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McSACorePS.dll => Is moved successfully.
C:\Program Files (x86)\McAfee\SiteAdvisor => Is moved successfully.
C:\Program Files (x86)\McAfee => Is moved successfully.

==== End of Fixlog ====

Jak se chova PC??