﻿Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-02-2014
Ran by Ja (administrator) on IZOPLAST on 17-02-2014 18:14:06
Running from C:\Users\Ja\Desktop
Windows 8 Pro (X64) OS Language: 041B
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Broadcom Corporation.) C:\Windows\system32\BtwRSupportService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
(Malwarebytes Corporation) F:\IZOPLAST\Ovladače\Čistenie\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
(LogMeIn Inc.) F:\Programy\hamachi\hamachi-2.exe
(LogMeIn, Inc.) F:\Programy\hamachi\LMIGuardianSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(LogMeIn Inc.) F:\Programy\hamachi\hamachi-2-ui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(LogMeIn, Inc.) F:\Programy\hamachi\LMIGuardianSvc.exe
(Sonix) C:\Windows\vsnp2uvc.exe
(Crawler.com) C:\Program Files (x86)\CStart8\CStart8Tray64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
() E:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
(forum.viry.cz) C:\Users\Ja\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\syswow64\wwahost.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7982112 2009-07-29] (Realtek Semiconductor)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET Smart Security\egui.exe [4035152 2012-12-04] (ESET)
HKLM\...\Run: [snp2uvc] - C:\Windows\vsnp2uvc.exe [662016 2009-08-12] (Sonix)
HKLM-x32\...\Run: [AMD AVT] - C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] ()
HKLM-x32\...\Run: [snp2uvc] - C:\Windows\vsnp2uvc.exe [662016 2009-08-12] (Sonix)
HKLM-x32\...\Run: [CStart8] - C:\Program Files (x86)\CStart8\CStart8Tray64.exe [3138656 2013-10-03] (Crawler.com)
HKLM-x32\...\Run: [NPSStartup] - [X]
HKLM-x32\...\Run: [tsnp2uvc] - C:\Program Files (x86)\Common Files\SNP2UVC\tsnp2uvc.exe [322560 2012-02-23] (Sonix Technology Co., Ltd.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - F:\Programy\hamachi\hamachi-2-ui.exe [3813712 2014-02-04] (LogMeIn Inc.)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-3371812843-952179103-500597468-1001\...\MountPoints2: {a925e52b-1ac6-11e3-bf27-001a7d0aba0c} - "L:\rogue.exe" 

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB8F0925E2B20CF01
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.313\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\igs8cipl.default-1355746529039
FF user.js: detected! => C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\igs8cipl.default-1355746529039\user.js
FF Homepage: about blank
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @java.com/DTPlugin,version=10.11.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.11.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.9.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files (x86)\McAfee Security Scan\3.0.313\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @parallelgraphics.com/Cortona - C:\Program Files (x86)\Common Files\ParallelGraphics\Cortona\npcortona.dll (ParallelGraphics)
FF Plugin-x32: @playstation.com/PsndlCheck,version=1.00 - C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll (Sony Computer Entertainment Inc.)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 - C:\Program Files (x86)\Sony\Media Go\npmediago.dll (Sony Network Entertainment International LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF Extension: DownloadHelper - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\igs8cipl.default-1355746529039\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-08-27]
FF Extension: ImTranslator - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\igs8cipl.default-1355746529039\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2013-04-02]
FF Extension: Adblock Plus - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\igs8cipl.default-1355746529039\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-12-07]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-02-15]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-02-15]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012-12-04]

Chrome: 
=======
CHR HomePage: 
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll No File
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U9) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Plugin: (Media Go Detector) - C:\Program Files (x86)\Sony\Media Go\npmediago.dll (Sony Network Entertainment International LLC)
CHR Plugin: (PlayStation(R)Network Downloader Check Plug-in) - C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll (Sony Computer Entertainment Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_110.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.90.5) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Microsoft Office 2010) - E:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL No File
CHR Plugin: (Microsoft Office 2010) - E:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL No File
CHR Extension: (Disk Google) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2012-12-11]
CHR Extension: (YouTube) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-12-11]
CHR Extension: (Hľadať v Google) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-12-11]
CHR Extension: (Skype Click to Call) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-12-25]
CHR Extension: (Peňaženka Google) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-25]
CHR Extension: (Gmail) - C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-12-11]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-07-04] (Advanced Micro Devices, Inc.)
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2252504 2013-08-09] (Broadcom Corporation.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [974944 2011-09-22] (ESET)
R2 Hamachi2Svc; F:\Programy\hamachi\hamachi-2.exe [2222416 2014-02-04] (LogMeIn Inc.)
S3 Lavasoft Ad-Aware Service; C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [1737728 2014-02-02] (Lavasoft Limited                                                  )
R2 MBAMScheduler; F:\IZOPLAST\Ovladače\Čistenie\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; F:\IZOPLAST\Ovladače\Čistenie\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.313\McCHSvc.exe [234776 2012-10-26] (McAfee, Inc.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
S2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
S3 TunngleService; F:\tomas\Tunngle\TnglCtrl.exe [754584 2013-06-24] (Tunngle.net GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S2 Angelnt; C:\Windows\SysWow64\Drivers\Angelnt.sys [51072 2012-12-05] (Identcode Ltd.)
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-08-09] (Broadcom Corporation.)
R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [202576 2011-08-09] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [146432 2011-08-04] (ESET)
R3 ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [40648 2007-02-16] (SlySoft, Inc.)
R3 ElbyCDFL; C:\Windows\SysWOW64\Drivers\ElbyCDFL.sys [40648 2007-02-16] (SlySoft, Inc.)
R2 epfw; C:\Windows\system32\DRIVERS\epfw.sys [187632 2011-08-04] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [38288 2011-08-04] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62496 2011-08-04] (ESET)
S1 FileDisk; No ImagePath
R3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-02-04] (LogMeIn Inc.)
S3 Lavasoft Kernexplorer; C:\Program Files (x86)\Lavasoft\Ad-Aware\KernExplorer64.sys [17152 2014-02-02] ()
R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [69376 2011-04-29] (Lavasoft AB)
S3 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [36680 2013-01-16] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()
R3 ROCKEYNT; C:\Windows\system32\DRIVERS\Rockey4.sys [25600 2013-10-15] (Feitian Technologies Co., Ltd.)
R3 Rockey_USB; C:\Windows\system32\DRIVERS\Rockey4USB.sys [16384 2013-10-15] (Feitian Technologies Co., Ltd.)
R3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [3567232 2011-09-09] ()
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [204568 2013-10-28] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ss_bserd; C:\Windows\system32\DRIVERS\ss_bserd.sys [128000 2013-02-22] (MCCI Corporation)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [64000 2012-07-26] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-17 18:14 - 2014-02-17 18:14 - 00016976 _____ () C:\Users\Ja\Desktop\FRST.txt
2014-02-17 18:12 - 2014-02-17 18:14 - 00000000 ____D () C:\FRST
2014-02-17 18:08 - 2014-02-17 18:08 - 00112640 _____ (forum.viry.cz) C:\Users\Ja\Desktop\FRSTLauncher.exe
2014-02-17 18:07 - 2014-02-17 18:08 - 02152448 _____ (Farbar) C:\Users\Ja\Desktop\FRST64.exe
2014-02-17 17:13 - 2014-02-17 17:13 - 00262144 ____N () C:\Windows\Minidump\021714-26176-01.dmp
2014-02-17 17:13 - 2014-02-17 17:13 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-17 17:13 - 2014-02-17 17:13 - 00000000 _____ () C:\Windows\setupact.log
2014-02-16 17:37 - 2014-02-17 18:10 - 00074650 _____ () C:\Windows\WindowsUpdate.log
2014-02-15 19:04 - 2014-02-15 19:05 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-08 22:01 - 2014-02-12 17:05 - 00000064 _____ () C:\Windows\SysWOW64\rp_stats.dat
2014-02-08 22:01 - 2014-02-12 17:05 - 00000044 _____ () C:\Windows\SysWOW64\rp_rules.dat
2014-02-08 21:59 - 2014-02-17 17:13 - 00002456 _____ () C:\aaw7boot.log
2014-02-08 20:50 - 2014-02-08 20:50 - 00000969 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-08 20:49 - 2014-02-08 20:49 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Ja\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-04 14:56 - 2014-02-04 14:56 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-02-03 00:15 - 2014-02-02 23:39 - 00016432 _____ () C:\Windows\system32\lsdelete.exe
2014-02-02 23:40 - 2014-02-02 23:39 - 00055384 _____ (Sunbelt Software) C:\Windows\system32\Drivers\SBREDrv.sys
2014-02-02 23:23 - 2014-02-02 23:23 - 00001379 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-02-02 23:23 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-02-02 23:14 - 2014-02-02 23:17 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Ja\Downloads\spybot-2.2.exe
2014-02-02 23:01 - 2014-02-16 17:22 - 00003622 _____ () C:\Windows\System32\Tasks\Ad-Aware Update (Weekly)
2014-02-02 22:59 - 2014-02-02 22:59 - 00001060 _____ () C:\Users\Public\Desktop\Ad-Aware.lnk
2014-02-02 22:59 - 2011-04-29 12:12 - 00069376 _____ (Lavasoft AB) C:\Windows\system32\Drivers\Lbd.sys
2014-02-02 22:58 - 2014-02-02 22:58 - 00000000 ____D () C:\ProgramData\Lavasoft
2014-02-02 22:58 - 2014-02-02 22:58 - 00000000 ____D () C:\Program Files (x86)\Lavasoft
2014-02-02 22:54 - 2014-02-02 22:55 - 09994240 _____ () C:\Users\Ja\Downloads\Ad-Aware90Install.msi

==================== One Month Modified Files and Folders =======

2014-02-17 18:14 - 2014-02-17 18:14 - 00016976 _____ () C:\Users\Ja\Desktop\FRST.txt
2014-02-17 18:14 - 2014-02-17 18:12 - 00000000 ____D () C:\FRST
2014-02-17 18:10 - 2014-02-16 17:37 - 00074650 _____ () C:\Windows\WindowsUpdate.log
2014-02-17 18:08 - 2014-02-17 18:08 - 00112640 _____ (forum.viry.cz) C:\Users\Ja\Desktop\FRSTLauncher.exe
2014-02-17 18:08 - 2014-02-17 18:07 - 02152448 _____ (Farbar) C:\Users\Ja\Desktop\FRST64.exe
2014-02-17 18:08 - 2012-12-11 11:36 - 00000934 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-17 18:00 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\sru
2014-02-17 17:24 - 2012-12-05 20:07 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-17 17:20 - 2012-12-04 11:10 - 00003594 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3371812843-952179103-500597468-1001
2014-02-17 17:16 - 2012-12-04 23:06 - 00000000 ____D () C:\Users\Ja\AppData\Local\Windows Live
2014-02-17 17:15 - 2012-12-09 12:34 - 00000000 ____D () C:\Users\Ja\AppData\Local\LogMeIn Hamachi
2014-02-17 17:14 - 2012-12-11 11:36 - 00000930 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-17 17:13 - 2014-02-17 17:13 - 00262144 ____N () C:\Windows\Minidump\021714-26176-01.dmp
2014-02-17 17:13 - 2014-02-17 17:13 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-17 17:13 - 2014-02-17 17:13 - 00000000 _____ () C:\Windows\setupact.log
2014-02-17 17:13 - 2014-02-08 21:59 - 00002456 _____ () C:\aaw7boot.log
2014-02-17 17:13 - 2013-11-03 12:27 - 00000348 _____ () C:\Windows\Tasks\spmonitor.job
2014-02-17 17:13 - 2012-12-06 15:17 - 00000000 ____D () C:\Windows\Minidump
2014-02-17 17:13 - 2012-07-26 08:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-16 18:12 - 2012-12-04 14:44 - 00047512 _____ () C:\Windows\system32\perfh01B.dat
2014-02-16 18:12 - 2012-12-04 14:44 - 00011800 _____ () C:\Windows\system32\perfc01B.dat
2014-02-16 18:12 - 2012-07-26 08:28 - 00891824 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-16 17:51 - 2013-01-01 17:55 - 00035840 ___SH () C:\Users\Ja\Documents\Thumbs.db
2014-02-16 17:22 - 2014-02-02 23:01 - 00003622 _____ () C:\Windows\System32\Tasks\Ad-Aware Update (Weekly)
2014-02-16 17:13 - 2012-12-18 17:50 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-16 17:13 - 2012-12-03 17:06 - 00000000 ____D () C:\Users\Ja
2014-02-16 17:12 - 2012-07-26 06:26 - 00524288 ___SH () C:\Windows\system32\config\BBI
2014-02-16 16:46 - 2013-08-15 13:37 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-16 16:43 - 2012-12-11 19:56 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-15 19:05 - 2014-02-15 19:04 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-12 17:05 - 2014-02-08 22:01 - 00000064 _____ () C:\Windows\SysWOW64\rp_stats.dat
2014-02-12 17:05 - 2014-02-08 22:01 - 00000044 _____ () C:\Windows\SysWOW64\rp_rules.dat
2014-02-11 15:55 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-02-10 18:01 - 2012-12-04 14:18 - 00000000 ____D () C:\ALFA
2014-02-09 20:19 - 2012-12-04 17:24 - 00000000 ____D () C:\Users\Ja\Documents\CC
2014-02-09 19:38 - 2013-03-18 13:56 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-02-08 20:50 - 2014-02-08 20:50 - 00000969 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-08 20:49 - 2014-02-08 20:49 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Ja\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-04 14:56 - 2014-02-04 14:56 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-02-02 23:39 - 2014-02-03 00:15 - 00016432 _____ () C:\Windows\system32\lsdelete.exe
2014-02-02 23:39 - 2014-02-02 23:40 - 00055384 _____ (Sunbelt Software) C:\Windows\system32\Drivers\SBREDrv.sys
2014-02-02 23:28 - 2013-03-18 13:56 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-02-02 23:24 - 2013-03-18 13:56 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-02-02 23:23 - 2014-02-02 23:23 - 00001379 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-02-02 23:17 - 2014-02-02 23:14 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Ja\Downloads\spybot-2.2.exe
2014-02-02 22:59 - 2014-02-02 22:59 - 00001060 _____ () C:\Users\Public\Desktop\Ad-Aware.lnk
2014-02-02 22:58 - 2014-02-02 22:58 - 00000000 ____D () C:\ProgramData\Lavasoft
2014-02-02 22:58 - 2014-02-02 22:58 - 00000000 ____D () C:\Program Files (x86)\Lavasoft
2014-02-02 22:55 - 2014-02-02 22:54 - 09994240 _____ () C:\Users\Ja\Downloads\Ad-Aware90Install.msi
2014-02-02 20:24 - 2012-12-05 20:07 - 00003718 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-02 18:14 - 2013-12-25 16:07 - 00000000 ____D () C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth
2014-01-30 22:10 - 2013-10-09 14:46 - 00694240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-30 22:10 - 2013-10-09 14:46 - 00078296 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-27 19:06 - 2012-12-11 16:18 - 00000000 ____D () C:\Users\Ja\AppData\Local\Adobe
2014-01-26 20:43 - 2012-12-13 19:24 - 00000000 ____D () C:\Users\Ja\Documents\Eva
2014-01-23 13:12 - 2014-01-09 19:35 - 00000000 ____D () C:\Users\Ja\AppData\Local\Deployment
2014-01-23 13:10 - 2012-12-04 17:15 - 00000000 ____D () C:\Users\Ja\Documents\AutoPlan
2014-01-23 13:10 - 2012-12-04 16:05 - 00000000 ____D () C:\Users\Ja\AppData\Local\AutoPlan
2014-01-23 11:29 - 2012-12-05 10:32 - 00000000 ____D () C:\Users\Ja\AppData\Roaming\vlc
2014-01-18 19:23 - 2012-12-05 12:14 - 00000000 ____D () C:\Users\Ja\AppData\Roaming\Skype

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-16 17:38




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:297.75 GB) (Free:229.86 GB) NTFS
Drive e: () (Fixed) (Total:48.83 GB) (Free:16.14 GB) NTFS
Drive f: (Lokálny disk) (Fixed) (Total:249.26 GB) (Free:89.6 GB) NTFS

Available physical RAM: 885.79 MB
Total physical RAM: 2047.3 MB
Percentage of memory in use: 56%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows XP) (Size: 298 GB) (Disk ID: 0C800C7F)
Partition 1: (Active) - (Size=49 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=249 GB) - (Type=07 NTFS)
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: EF498C61)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\spmonitor.job => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\spmonitor.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Windows:213A1EC77C53795C
AlternateDataStreams: C:\Users\Ja\Documents\Izoplast-pod.eml:OECustomProperty

==================== Security Center ==================

AV: Lavasoft Ad-Watch Live! Anti-Virus (Disabled - Up to date) {9FF26384-70D4-CE6B-3ECB-E759A6A40116}
AV: ESET Smart Security 5.0 (Enabled - Up to date) {77DEAFED-8149-104B-25A1-21771CA47CD1}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 5.0 (Enabled - Up to date) {CCBF4E09-A773-1FC5-1F11-1A056723366C}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: Lavasoft Ad-Watch Live! (Disabled - Up to date) {24938260-56EE-C1E5-047B-DC2BDD234BAB}
FW: ESET personal firewall (Enabled) {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

  
***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Ja\Desktop" je 5 MB.
 
 
***** Startup Programs *****
 
 
***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
    EnableFirewall    REG_DWORD    0x1
    DisableNotifications    REG_DWORD    0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    EnableFirewall    REG_DWORD    0x1
    DisableNotifications    REG_DWORD    0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDTray.exe"="C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDFSSvc.exe"="C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDUpdate.exe"="C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDUpdSvc.exe"="C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
 
 
***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

 
==================== End Of Log ==============================
