IEXPLORER NEREAGUJE, VYSKAKUJÍCÍ OKNA S REKLAMOU

[kuba7710]

Dobrý den, iexplorer se chová nestandartně. Když kliknu na odkaz tak nereaguje. V pravém rohu vyskakuje reklama. Prosím Vás o pomoc. Mnohokrát děkuji.

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-02-2014 03
Ran by Kubíčci at 2014-02-01 15:33:24
Running from C:\Users\Kubíčci\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

ABBYY FineReader 11 (x32 Version: 11.0.289 - ABBYY)
Adobe AIR (x32 Version: 1.5.3.9120 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.5.3.9120 - Adobe Systems Inc.) Hidden
Adobe Community Help (x32 Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe Community Help (x32 Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Dreamweaver CS5 (x32 Version: 11.0 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated)
Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS5 (x32 Version: 12.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Czech (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Advertising Center (x32 Version: 0.0.0.1 - Nero AG) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (x32 Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (x32 Version: - Microsoft)
AMD APP SDK Runtime (Version: 2.5.775.2 - Advanced Micro Devices Inc.) Hidden
AMD AVIVO64 Codecs (Version: 11.7.0.11105 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (Version: 3.0.847.0 - Advanced Micro Devices, Inc.)
Apple Application Support (x32 Version: 2.3.4 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Aqua Bubble (x32 Version: - )
Aqua Pearls (x32 Version: - )
ArcSoft Panorama Maker 6 (x32 Version: 6.0.0.94 - ArcSoft)
ArcSoft TotalMedia Theatre 5 (x32 Version: 5.0.1.80 - ArcSoft)
ArcSoft TotalMedia Theatre 5 (x32 Version: 5.0.1.80 - ArcSoft) Hidden
ASUS Wireless Router Utilities (x32 Version: - )
avast! Free Antivirus (x32 Version: 9.0.2011 - Avast Software)
Beetle Ju 1 2 3 (x32 Version: 1.0.TBGT - The Burning Giraffe)
Bundled software uninstaller (x32 Version: - ) <==== ATTENTION
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (x32 Version: 2011.1105.2338.40591 - Název společnosti:) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2011.1105.2338.40591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2011.1105.2338.40591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Profiles Mobile (x32 Version: 2011.1105.2338.40591 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2011.1105.2337.40591 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2011.1105.2337.40591 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2011.1105.2337.40591 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2011.1105.2337.40591 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2011.1105.2337.40591 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2011.1105.2337.40591 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2011.1105.2337.40591 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2011.1105.2337.40591 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2011.1105.2337.40591 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2011.1105.2337.40591 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2011.1105.2337.40591 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2011.1105.2337.40591 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2011.1105.2337.40591 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2011.1105.2337.40591 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2011.1105.2337.40591 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2011.1105.2337.40591 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2011.1105.2338.40591 - Advanced Micro Devices, Inc.) Hidden
CCleaner (Version: 4.04 - Piriform)
Combined Community Codec Pack 2014-01-17 (x32 Version: 2014.01.17.0 - CCCP Project)
Contenta Converter PREMIUM (x32 Version: - Contenta Software)
Crusaders Of Space Tri Pack (x32 Version: 1.0.TBGT - The Burning Girafffe)
DAEMON Tools Lite (x32 Version: 4.48.1.0347 - Disc Soft Ltd)
Dell System Detect (HKCU Version: 5.4.0.4 - Dell)
Disk Studio 10 Bonus DVD (x32 Version: 10.0.000 - )
DolbyFiles (x32 Version: 2.0 - Nero AG) Hidden
DW WLAN Card (Version: 5.100.82.88 - Dell Inc.)
Google Earth Plug-in (x32 Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (x32 Version: 7.5.4805.320 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
HP Photosmart 6510 series Nápověda (x32 Version: 140.0.2.2 - Hewlett Packard)
HP Update (x32 Version: 5.003.003.001 - Hewlett-Packard)
IDT Audio (x32 Version: 1.0.6365.0 - IDT)
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
Intel(R) Control Center (x32 Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Display Audio Driver (x32 Version: 6.14.00.3086 - Intel Corporation)
Intel(R) Management Engine Components (x32 Version: 7.0.0.1118 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (Version: 2.1.1.0153 - Intel Corporation)
Java 7 Update 45 (x32 Version: 7.0.450 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
K-Lite Mega Codec Pack 9.8.0 (x32 Version: 9.8.0 - )
Magic Bullet Looks Studio (x32 Version: - )
McDonald's Dragons (x32 Version: - Name of your company)
McDonald's Fairies (x32 Version: - Name of your company)
MediaHuman YouTube to MP3 Converter version 3.0.1 (x32 Version: 3.0.1 - )
Menu Templates - Starter Kit (x32 Version: 9.0.4.0 - Nero AG) Hidden
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile CSY Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Access MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (x32 Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (x32 Version: 10.0.30319 - Microsoft Corporation)
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Movie Templates - Starter Kit (x32 Version: 9.0.4.0 - Nero AG) Hidden
Mozilla Firefox 26.0 (x86 cs) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
MultiGen-Paradigm Creator 3.0 (x32 Version: - )
MultiGen-Paradigm License Tools 2.0 (x32 Version: - )
Nero 9 (x32 Version: - Nero AG)
Nero BurningROM (x32 Version: 9.0.0.0 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 0.0.0.1 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 9.0.0.1 - Nero AG) Hidden
Nero Installer (x32 Version: 2.0.0.1 - Nero AG) Hidden
NeroBurningROM (x32 Version: 9.0.9.100 - Nero AG) Hidden
Ontrack EasyRecovery Home (x32 Version: 10.0.5.6 - Kroll Ontrack Inc.)
Ovladače videa společnosti Pinnacle (Version: 12.1.0.030 - Pinnacle Systems)
Ozzy Bubbles (x32 Version: - )
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Pinnacle Instant DVD Recorder (x32 Version: - )
Pinnacle Studio 14 (x32 Version: 14.0.0.7255 - Pinnacle Systems)
Pinnacle Studio Ultimate Collection Plugins (x32 Version: 14.0.0.7255 - Pinnacle Systems)
Play Now Radio (HKCU Version: - playnowradio)
PowerXpressHybrid (x32 Version: 1.00.0000 - Název společnosti:) Hidden
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Quickset64 (Version: 10.09.25 - Dell Inc.)
QuickTime (x32 Version: 7.74.80.86 - Apple Inc.)
Realtek Ethernet Controller Driver (x32 Version: 7.31.1025.2010 - Realtek)
Red Giant ToonIt Studio (x32 Version: - )
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0 - Renesas Electronics Corporation) Hidden
Sentinel System Driver (x32 Version: - )
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
SmartSound Quicktracks Plugin (x32 Version: 3.0.2.7 - SmartSound Software Inc)
SmartSound Quicktracks Plugin (x32 Version: 3.0.2.7 - SmartSound Software Inc) Hidden
Total Commander 64-bit (Remove or Repair) (Version: 8.01 - Ghisler Software GmbH)
Trapcode 3DStroke Studio (x32 Version: - )
Trapcode Particular Studio (x32 Version: - )
Trapcode Shine Studio (x32 Version: - )
Update for 2007 Microsoft Office System (KB967642) (x32 Version: - Microsoft)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (x32 Version: - Microsoft)
WIDCOMM Bluetooth Software (Version: 6.3.0.7600 - Broadcom Corporation)
WinRAR 4.20 (64-bit) (Version: 4.20.0 - win.rar GmbH)
Základní software zařízení HP Photosmart 6510 series (Version: 28.0.1315.0 - Hewlett-Packard Co.)
ZTE Drivers (x32 Version: 1.2059.0.12 - )

==================== Restore Points =========================

14-01-2014 16:26:25 Naplánovaný kontrolní bod
15-01-2014 07:04:03 Windows Update
17-01-2014 06:35:01 Windows Update
20-01-2014 19:33:00 Installed ASUS Wireless Router Utilities
20-01-2014 19:35:03 Installed ASUS Wireless Router Utilities
21-01-2014 13:19:58 Windows Update
21-01-2014 17:35:34 Installed MSXML 6.0 Parser
21-01-2014 17:41:54 Installed MSXML 6.0 Parser
21-01-2014 17:43:51 Installed ABBYY FineReader 11.
24-01-2014 15:11:55 Windows Update
28-01-2014 14:28:34 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:34 - 2013-09-16 13:29 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {3C8FD6DD-6FB9-4061-BE73-0FFC1566F39E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-07-22] (Piriform Ltd)
Task: {85E88DED-DA2E-4A25-86B6-C3260780F137} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-20] (Google Inc.)
Task: {93383167-95E5-46AE-89BA-E9D739D57AFD} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {A39A73D2-9EDF-4819-AB7E-2F1C919BD75D} - System32\Tasks\AdobeAAMUpdater-1.0-Kubíčci-PC-Kubíčci => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-01-15] (Adobe Systems Incorporated)
Task: {B9192A75-47AE-4C50-BDDC-621416B40E1A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-20] (Google Inc.)
Task: {BF4E6159-0510-48F0-8838-0B06B7FF6B16} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {C5E91C72-7F89-4C19-881D-92E9EA494E38} - System32\Tasks\Play Now Radio => C:\Users\Kubíčci\AppData\Local\playnowradio\playnowradio\1.3.3.19\playnowradio.exe [2014-01-22] (Pay By Ads LTD)
Task: {E4C78EF3-1F2C-46CB-805A-7E1925CF22D0} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-01-01] (AVAST Software)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-12-02 12:39 - 2011-09-25 21:36 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2011-11-05 22:36 - 2011-11-05 22:36 - 00369152 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2011-12-13 16:10 - 2011-12-13 16:10 - 00016384 _____ () c:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2014-01-31 22:05 - 2014-01-31 12:44 - 02168320 _____ () C:\Program Files\AVAST Software\Avast\defs\14013101\algo.dll
2014-01-01 18:06 - 2014-01-01 18:06 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2009-02-26 13:46 - 2009-02-26 13:46 - 00064344 _____ () C:\Program Files (x86)\Microsoft Office\Office12\ADDINS\ColleagueImport.dll
2011-06-22 11:46 - 2011-06-22 11:46 - 00434016 _____ () C:\Program Files (x86)\Microsoft Office\Office12\ADDINS\UmOutlookAddin.dll
2011-05-26 20:18 - 2011-05-26 20:18 - 00136536 _____ () C:\Program Files (x86)\Microsoft Office\Office12\OUTLCTL.DLL
2013-07-10 17:07 - 2013-07-10 17:07 - 00756888 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL
2013-08-22 15:17 - 2009-01-10 16:32 - 00011362 _____ () C:\Program Files (x86)\MediaHuman\YouTube to MP3 Converter\mingwm10.dll
2013-08-22 15:17 - 2009-06-23 00:42 - 00043008 _____ () C:\Program Files (x86)\MediaHuman\YouTube to MP3 Converter\libgcc_s_dw2-1.dll
2012-09-23 20:43 - 2012-09-23 20:43 - 00313992 _____ () C:\Program Files (x86)\Adobe\Reader 11.0\Reader\sqlite.dll
2012-12-18 20:08 - 2012-12-18 20:08 - 14588632 _____ () C:\Program Files (x86)\Adobe\Reader 11.0\Reader\NPSWF32.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Headset AG
Description: Bluetooth Headset AG
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Broadcom Corp.
Service: btwavdt
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

Name: Bluetooth AV Source
Description: Bluetooth AV Source
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Broadcom Corp.
Service: btwavdt
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

Name: Bluetooth Remote Control
Description: Bluetooth Remote Control
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Broadcom Corp.
Service: btwavdt
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

Name: Myš kompatibilní s technologií HID
Description: Myš kompatibilní s technologií HID
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: mouhid
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Headset AG
Description: Bluetooth Headset AG
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Broadcom Corp.
Service: btwavdt
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth AV Source
Description: Bluetooth AV Source
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Broadcom Corp.
Service: btwavdt
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

Name: Bluetooth Headset AG
Description: Bluetooth Headset AG
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Broadcom Corp.
Service: btwavdt
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

Name: Bluetooth L2CAP Interface
Description: Bluetooth L2CAP Interface
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Broadcom Corp.
Service: btwl2cap
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

Name: Bluetooth AV Source
Description: Bluetooth AV Source
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Broadcom Corp.
Service: btwavdt
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

Name: Bluetooth Headset AG
Description: Bluetooth Headset AG
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Broadcom Corp.
Service: btwavdt
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth AV Source
Description: Bluetooth AV Source
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Broadcom Corp.
Service: btwavdt
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/31/2014 09:14:03 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: playnowradio.exe, verze: 1.1.0.2, časové razítko: 0x52dfd897
Název chybujícího modulu: ole32.dll, verze: 6.1.7601.17514, časové razítko: 0x4ce7b96f
Kód výjimky: 0xc0000005
Posun chyby: 0x0003bc24
ID chybujícího procesu: 0x16d4
Čas spuštění chybující aplikace: 0xplaynowradio.exe0
Cesta k chybující aplikaci: playnowradio.exe1
Cesta k chybujícímu modulu: playnowradio.exe2
ID zprávy: playnowradio.exe3

Error: (01/31/2014 09:14:03 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: playnowradio.exe, verze: 1.1.0.2, časové razítko: 0x52dfd897
Název chybujícího modulu: ole32.dll, verze: 6.1.7601.17514, časové razítko: 0x4ce7b96f
Kód výjimky: 0xc0000005
Posun chyby: 0x0003bc24
ID chybujícího procesu: 0x1e84
Čas spuštění chybující aplikace: 0xplaynowradio.exe0
Cesta k chybující aplikaci: playnowradio.exe1
Cesta k chybujícímu modulu: playnowradio.exe2
ID zprávy: playnowradio.exe3

Error: (01/31/2014 09:06:01 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: IEXPLORE.EXE, verze: 11.0.9600.16428, časové razítko: 0x525b664c
Název chybujícího modulu: jscript9.dll, verze: 11.0.9600.16476, časové razítko: 0x5294589a
Kód výjimky: 0xc0000005
Posun chyby: 0x00008be4
ID chybujícího procesu: 0x2340
Čas spuštění chybující aplikace: 0xIEXPLORE.EXE0
Cesta k chybující aplikaci: IEXPLORE.EXE1
Cesta k chybujícímu modulu: IEXPLORE.EXE2
ID zprávy: IEXPLORE.EXE3

Error: (01/31/2014 05:55:26 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: IEXPLORE.EXE, verze: 11.0.9600.16428, časové razítko: 0x525b664c
Název chybujícího modulu: jscript9.dll, verze: 11.0.9600.16476, časové razítko: 0x5294589a
Kód výjimky: 0xc0000005
Posun chyby: 0x00008be4
ID chybujícího procesu: 0x3ff4
Čas spuštění chybující aplikace: 0xIEXPLORE.EXE0
Cesta k chybující aplikaci: IEXPLORE.EXE1
Cesta k chybujícímu modulu: IEXPLORE.EXE2
ID zprávy: IEXPLORE.EXE3

Error: (01/31/2014 03:58:19 PM) (Source: SideBySide) (User: )
Description: Generování kontextu aktivace pro assemblyIdentity1 se nezdařilo. Chyba v souboru manifestu nebo zásady assemblyIdentity2 na řádku assemblyIdentity3.
Hodnota MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu version v prvku assemblyIdentity je neplatná.

Error: (01/31/2014 10:49:33 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (01/30/2014 03:58:36 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (01/29/2014 01:49:57 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (01/29/2014 01:28:38 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: jusched.exe, verze: 2.1.9.8, časové razítko: 0x51d2fcd3
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00622080
ID chybujícího procesu: 0xfdc
Čas spuštění chybující aplikace: 0xjusched.exe0
Cesta k chybující aplikaci: jusched.exe1
Cesta k chybujícímu modulu: jusched.exe2
ID zprávy: jusched.exe3

Error: (01/28/2014 04:27:15 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: IEXPLORE.EXE, verze: 11.0.9600.16428, časové razítko: 0x525b664c
Název chybujícího modulu: jscript9.dll, verze: 11.0.9600.16476, časové razítko: 0x5294589a
Kód výjimky: 0xc0000005
Posun chyby: 0x00008be4
ID chybujícího procesu: 0x26c4
Čas spuštění chybující aplikace: 0xIEXPLORE.EXE0
Cesta k chybující aplikaci: IEXPLORE.EXE1
Cesta k chybujícímu modulu: IEXPLORE.EXE2
ID zprávy: IEXPLORE.EXE3


System errors:
=============
Error: (01/27/2014 03:22:03 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 43. Stav interní chyby: 252

Error: (01/27/2014 03:22:03 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 43. Stav interní chyby: 252

Error: (01/27/2014 03:21:57 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 43. Stav interní chyby: 252

Error: (01/27/2014 03:21:57 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 43. Stav interní chyby: 252

Error: (01/26/2014 09:12:37 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 43. Stav interní chyby: 252

Error: (01/26/2014 09:12:37 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 43. Stav interní chyby: 252

Error: (01/26/2014 09:10:56 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 43. Stav interní chyby: 252

Error: (01/26/2014 09:10:56 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 43. Stav interní chyby: 252

Error: (01/26/2014 09:10:56 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 43. Stav interní chyby: 252

Error: (01/26/2014 09:10:56 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 43. Stav interní chyby: 252


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2013-09-16 14:26:36.326
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-09-16 14:26:36.242
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-09-16 14:26:36.154
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-09-16 14:26:36.068
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-06-16 20:54:23.686
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-06-16 20:54:23.592
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-01-16 21:11:20.717
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\nusb3xhc.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-01-16 21:11:20.670
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\nusb3xhc.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-01-16 08:23:25.728
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\nusb3xhc.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-01-16 08:23:25.681
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\nusb3xhc.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Percentage of memory in use: 64%
Total physical RAM: 4003.17 MB
Available physical RAM: 1411.45 MB
Total Pagefile: 8004.52 MB
Available Pagefile: 4194.29 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:581.42 GB) (Free:71.97 GB) NTFS
Drive e: (SLUNICKO) (CDROM) (Total:0.16 GB) (Free:0 GB) CDFS
Drive f: () (Removable) (Total:7.6 GB) (Free:5.9 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596 GB) (Disk ID: 0C009846)
Partition 1: (Not Active) - (Size=100 MB) - (Type=DE)
Partition 2: (Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=581 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Size: 8 GB) (Disk ID: 92688310)
Partition 1: (Not Active) - (Size=8 GB) - (Type=0B)

==================== End Of Log ============================

[vyosek]

Zdravim

Dejte sem log FRST.txt

[kuba7710]

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-02-2014 03
Ran by Kubíčci (administrator) on KUBÍČCI-PC on 01-02-2014 15:32:41
Running from C:\Users\Kubíčci\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 6510 series\Bin\ScanToPCActivationApp.exe
(ArcSoft Inc.) C:\Program Files (x86)\ArcSoft\TotalMedia Theatre 5\TotalMedia Server\TM Server.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Apple Inc.) C:\Program Files (x86)\QuickTime\QTTask.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 6510 series\Bin\HPNetworkCommunicator.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Dell) C:\Users\Kubíčci\AppData\Local\Apps\2.0\LL706EAP.9G7\EJ3D09ZH.C5R\dell..tion_0f612f649c4a10af_0005.0004_3ddfe37344028d2c\DellSystemDetect.exe
(ABBYY) C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
() C:\Program Files (x86)\MediaHuman\YouTube to MP3 Converter\YouTubeToMp3.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil64_11_9_900_170_ActiveX.exe
(Pay By Ads LTD) C:\Users\Kubíčci\AppData\Local\playnowradio\playnowradio\1.3.3.19\playnowradio.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE
(Pay By Ads LTD) C:\Users\Kubíčci\AppData\Local\playnowradio\playnowradio\1.3.3.19\playnowradio.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1424896 2011-09-08] (IDT, Inc.)
HKLM\...\Run: [BLEServicesCtrl] - C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [178960 2012-03-15] (Intel Corporation)
HKLM\...\Run: [BTMTrayAgent] - C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [11407120 2012-03-27] (Intel Corporation)
HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\System32\LogiLDA.dll [1832760 2012-09-20] (Logitech, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2013-01-15] (Adobe Systems Incorporated)
HKLM\...\Run: [QuickSet] - C:\Program Files\Dell\QuickSet\QuickSet.exe [3668336 2011-03-24] (Dell Inc.)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [StartCCC] - c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-11-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [seznam-listicka-distribuce] - C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2014-01-01] (AVAST Software)
HKLM-x32\...\Run: [Bonus.SSR.FR11] - C:\Program Files (x86)\ABBYY FineReader 11\Bonus.ScreenshotReader.exe [925960 2011-08-18] (ABBYY.)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\RunOnce: [20131224] - C:\Program Files\AVAST Software\Avast\setup\emupdate\4db1e4f4-fd0b-4b66-97b0-3f310bed52a3.exe /check [181136 2014-01-30] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Run: [HP Photosmart 6510 series (NET)] - C:\Program Files\HP\HP Photosmart 6510 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Run: [DellSystemDetect] - C:\Users\Kubíčci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Run: [playnowradio] - C:\Users\Kubíčci\AppData\Local\playnowradio\playnowradio\1.3.3.19\playnowradio.exe [380928 2014-01-22] (Pay By Ads LTD)
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Policies\system: [DisableLockWorkstation] 0

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/
SearchScopes: HKLM-x32 - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL = http://search.mywebsearch.com/mywebsear ... earchTerms}
SearchScopes: HKCU - DefaultScope {822BD2EB-7874-40B0-B532-EA40E10EA94A} URL = http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKCU - {822BD2EB-7874-40B0-B532-EA40E10EA94A} URL = http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKCU - {BC6F5A7B-33BE-49CE-8182-7D227C8E2AE1} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: No Name - {6E13D095-45C3-4271-9475-F3B48227DD9F} - No File
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - No Name - {5911488E-9D1E-40ec-8CBB-06B231CC153F} - No File
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 172.16.2.1

FireFox:
========
FF ProfilePath: C:\Users\Kubíčci\AppData\Roaming\Mozilla\Firefox\Profiles\jyupsjax.default
FF Homepage: hxxp://www.google.cz/?rlz=1W4CHBA_csCZ546
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-12-02]

Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR DefaultSearchKeyword: yahoo.com
CHR DefaultSearchURL: http://klit.startnow.com/s/?q={searchTe ... .1-x64-SP0
CHR Extension: (avast! WebRep) - C:\Users\Kubíčci\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda [2012-12-05]

==================== Services (Whitelisted) =================

R2 ABBYY.Licensing.FineReader.Professional.11.0; C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [819976 2011-08-18] (ABBYY)
R2 ADExchange; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [43112 2012-02-16] (ArcSoft Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-01] (AVAST Software)

==================== Drivers (Whitelisted) ====================

R1 ArcSec; C:\Windows\System32\drivers\ArcSec.sys [312184 2010-09-21] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2014-01-01] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-01-01] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1034464 2014-01-01] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422216 2014-01-01] (AVAST Software)
S3 aswStm; C:\Windows\system32\drivers\aswStm.sys [79672 2014-01-04] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-12-19] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-01-01] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-11-24] (Disc Soft Ltd)
S1 PCLEPCI; C:\Windows\SysWOW64\drivers\pclepci.sys [14165 2004-07-16] (Pinnacle Systems GmbH)
S3 Sntnlusb; C:\Windows\SysWOW64\DRIVERS\SNTNLUSB.SYS [20032 2001-06-21] (Rainbow Technologies Inc.)
S3 btwaudio; system32\drivers\btwaudio.sys [x]
S3 btwavdt; system32\drivers\btwavdt.sys [x]
S3 btwl2cap; system32\DRIVERS\btwl2cap.sys [x]
S3 btwrchid; system32\DRIVERS\btwrchid.sys [x]
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S2 DS1410D; \??\C:\Windows\system32\drivers\ds1410d.sys [x]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [x]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]
S2 Sentinel; \SystemRoot\System32\Drivers\SENTINEL.SYS [x]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-01 15:32 - 2014-02-01 15:32 - 00016512 _____ () C:\Users\Kubíčci\Desktop\FRST.txt
2014-02-01 15:32 - 2014-02-01 15:32 - 00000000 ____D () C:\FRST
2014-02-01 15:31 - 2014-02-01 15:31 - 02080256 _____ (Farbar) C:\Users\Kubíčci\Downloads\FRST64.exe
2014-02-01 15:30 - 2014-02-01 15:30 - 00112640 _____ (forum.viry.cz) C:\Users\Kubíčci\Desktop\FRSTLauncher.exe
2014-02-01 15:29 - 2014-02-01 15:29 - 02080256 _____ (Farbar) C:\Users\Kubíčci\Desktop\FRST64.exe
2014-01-31 20:59 - 2014-01-31 20:59 - 00092823 _____ () C:\Users\Kubíčci\Desktop\export-reservation-20140131.xls
2014-01-29 02:32 - 2014-02-01 14:50 - 00001470 _____ () C:\Users\Kubíčci\Desktop\Play Now Radio.lnk
2014-01-28 20:00 - 2014-01-28 20:00 - 00003632 _____ () C:\Windows\System32\Tasks\Play Now Radio
2014-01-28 20:00 - 2014-01-28 20:00 - 00000000 ____D () C:\Users\Kubíčci\AppData\Local\playnowradio
2014-01-26 17:12 - 2014-01-26 17:12 - 00053658 _____ () C:\Users\Kubíčci\Desktop\import.csv
2014-01-26 17:10 - 2014-01-26 17:10 - 00233656 _____ () C:\Users\Kubíčci\Desktop\export-users-20140126.xls
2014-01-25 21:41 - 2014-01-26 14:40 - 00065536 ___HT () C:\Users\Kubíčci\Documents\~Outlradomir.kubicek@vrg.cz-00000002.pst.tmp
2014-01-25 21:07 - 2014-01-25 21:07 - 00000000 ____D () C:\Users\Kubíčci\AppData\Local\MediaHuman
2014-01-23 16:27 - 2014-01-30 17:26 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\HpUpdate
2014-01-21 19:02 - 2014-01-21 19:02 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\ABBYY
2014-01-21 18:56 - 2014-01-21 18:56 - 00002887 _____ () C:\Users\Public\Desktop\ABBYY FineReader 11.lnk
2014-01-21 18:53 - 2014-01-21 18:53 - 00000000 ____D () C:\Administrator's Guide
2014-01-21 18:48 - 2014-01-21 19:03 - 00000000 ____D () C:\Users\Kubíčci\AppData\Local\ABBYY
2014-01-21 18:48 - 2014-01-21 19:01 - 00000000 ____D () C:\Program Files (x86)\ABBYY FineReader 11
2014-01-21 18:48 - 2014-01-21 18:48 - 00000000 ____D () C:\ProgramData\ABBYY
2014-01-21 18:39 - 2014-01-21 18:39 - 00000132 _____ () C:\Users\Kubíčci\AppData\Roaming\Adobe Formát BMP CS5 – předvolby
2014-01-20 20:33 - 2014-01-20 20:33 - 00000000 ____D () C:\Program Files (x86)\ASUS
2014-01-20 20:33 - 2003-04-21 21:46 - 00061440 _____ (Printing Communications Assoc., Inc. (PCAUSA)) C:\Windows\SysWOW64\ASIW32N50.dll
2014-01-20 20:33 - 2002-09-10 19:35 - 00016302 _____ (Printing Communications Assoc., Inc. (PCAUSA)) C:\Windows\SysWOW64\ASINDIS5.sys
2014-01-20 20:33 - 2001-04-16 05:48 - 00015577 _____ () C:\Windows\SysWOW64\ASINDIS3.vxd
2014-01-20 20:30 - 2014-01-20 20:32 - 00000000 ____D () C:\Users\Kubíčci\Desktop\router
2014-01-18 16:24 - 2014-01-18 16:24 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\MPC-HC
2014-01-18 16:18 - 2014-01-18 16:18 - 00000000 ____D () C:\Program Files (x86)\Combined Community Codec Pack
2014-01-15 08:04 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 08:04 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 08:04 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 08:04 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 08:04 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 08:04 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 08:04 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 08:04 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 08:04 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-10 17:52 - 2014-01-10 17:53 - 00000000 ____D () C:\Users\Kubíčci\Desktop\Bulharsko
2014-01-09 22:05 - 2014-01-09 22:05 - 00000000 ____D () C:\ProgramData\Google
2014-01-09 22:04 - 2014-01-09 22:05 - 50063360 _____ () C:\Program Files (x86)\GUT40D8.tmp
2014-01-09 22:04 - 2014-01-09 22:04 - 00000000 ____D () C:\Program Files (x86)\GUM40D7.tmp
2014-01-06 18:15 - 2014-01-19 13:32 - 00009351 _____ () C:\Users\Kubíčci\Documents\zima2014.xlsx
2014-01-04 08:21 - 2014-01-04 08:21 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\AVAST Software

==================== One Month Modified Files and Folders =======

2014-02-01 15:32 - 2014-02-01 15:32 - 00016512 _____ () C:\Users\Kubíčci\Desktop\FRST.txt
2014-02-01 15:32 - 2014-02-01 15:32 - 00000000 ____D () C:\FRST
2014-02-01 15:31 - 2014-02-01 15:31 - 02080256 _____ (Farbar) C:\Users\Kubíčci\Downloads\FRST64.exe
2014-02-01 15:30 - 2014-02-01 15:30 - 00112640 _____ (forum.viry.cz) C:\Users\Kubíčci\Desktop\FRSTLauncher.exe
2014-02-01 15:29 - 2014-02-01 15:29 - 02080256 _____ (Farbar) C:\Users\Kubíčci\Desktop\FRST64.exe
2014-02-01 15:26 - 2012-12-02 11:51 - 02042992 _____ () C:\Windows\WindowsUpdate.log
2014-02-01 15:07 - 2012-12-02 13:44 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-01 15:05 - 2013-08-20 15:14 - 00000954 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-01 14:50 - 2014-01-29 02:32 - 00001470 _____ () C:\Users\Kubíčci\Desktop\Play Now Radio.lnk
2014-02-01 08:24 - 2013-10-15 16:37 - 00271360 _____ () C:\Users\Kubíčci\Documents\Outlradomir.kubicek@vrg.cz-00000002.pst
2014-01-31 20:59 - 2014-01-31 20:59 - 00092823 _____ () C:\Users\Kubíčci\Desktop\export-reservation-20140131.xls
2014-01-31 19:05 - 2013-08-20 15:14 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-30 17:26 - 2014-01-23 16:27 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\HpUpdate
2014-01-28 20:00 - 2014-01-28 20:00 - 00003632 _____ () C:\Windows\System32\Tasks\Play Now Radio
2014-01-28 20:00 - 2014-01-28 20:00 - 00000000 ____D () C:\Users\Kubíčci\AppData\Local\playnowradio
2014-01-28 19:58 - 2012-12-26 21:00 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\Skype
2014-01-27 13:03 - 2012-12-02 15:15 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-01-26 17:37 - 2013-01-19 11:51 - 00001952 _____ () C:\Users\Kubíčci\AppData\Local\SRDownloader.nast
2014-01-26 17:12 - 2014-01-26 17:12 - 00053658 _____ () C:\Users\Kubíčci\Desktop\import.csv
2014-01-26 17:10 - 2014-01-26 17:10 - 00233656 _____ () C:\Users\Kubíčci\Desktop\export-users-20140126.xls
2014-01-26 16:39 - 2013-02-28 23:11 - 00028858 _____ () C:\Users\Kubíčci\AppData\Local\SRDownloader.err
2014-01-26 15:14 - 2013-11-17 12:30 - 00000132 _____ () C:\Users\Kubíčci\AppData\Roaming\Adobe Formát GIF CS5 – předvolby
2014-01-26 14:40 - 2014-01-25 21:41 - 00065536 ___HT () C:\Users\Kubíčci\Documents\~Outlradomir.kubicek@vrg.cz-00000002.pst.tmp
2014-01-26 09:10 - 2013-01-19 11:50 - 00000000 ____D () C:\Users\Kubíčci\torrent
2014-01-25 21:07 - 2014-01-25 21:07 - 00000000 ____D () C:\Users\Kubíčci\AppData\Local\MediaHuman
2014-01-25 16:21 - 2013-09-16 18:22 - 00015374 _____ () C:\Windows\setupact.log
2014-01-23 16:27 - 2013-04-20 15:04 - 00000000 ____D () C:\Program Files (x86)\HP
2014-01-21 19:47 - 2009-07-14 16:18 - 00634818 _____ () C:\Windows\system32\perfh005.dat
2014-01-21 19:47 - 2009-07-14 16:18 - 00123376 _____ () C:\Windows\system32\perfc005.dat
2014-01-21 19:47 - 2009-07-14 06:13 - 01478982 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-01-21 19:03 - 2014-01-21 18:48 - 00000000 ____D () C:\Users\Kubíčci\AppData\Local\ABBYY
2014-01-21 19:02 - 2014-01-21 19:02 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\ABBYY
2014-01-21 19:01 - 2014-01-21 18:48 - 00000000 ____D () C:\Program Files (x86)\ABBYY FineReader 11
2014-01-21 18:56 - 2014-01-21 18:56 - 00002887 _____ () C:\Users\Public\Desktop\ABBYY FineReader 11.lnk
2014-01-21 18:53 - 2014-01-21 18:53 - 00000000 ____D () C:\Administrator's Guide
2014-01-21 18:48 - 2014-01-21 18:48 - 00000000 ____D () C:\ProgramData\ABBYY
2014-01-21 18:39 - 2014-01-21 18:39 - 00000132 _____ () C:\Users\Kubíčci\AppData\Roaming\Adobe Formát BMP CS5 – předvolby
2014-01-21 18:08 - 2013-12-31 22:15 - 00000000 ____D () C:\Users\Kubíčci\AppData\Local\Deployment
2014-01-20 21:01 - 2009-07-14 05:45 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-20 21:01 - 2009-07-14 05:45 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-20 20:33 - 2014-01-20 20:33 - 00000000 ____D () C:\Program Files (x86)\ASUS
2014-01-20 20:33 - 2012-12-02 12:27 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-01-20 20:32 - 2014-01-20 20:30 - 00000000 ____D () C:\Users\Kubíčci\Desktop\router
2014-01-20 11:15 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-01-19 13:32 - 2014-01-06 18:15 - 00009351 _____ () C:\Users\Kubíčci\Documents\zima2014.xlsx
2014-01-18 16:24 - 2014-01-18 16:24 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\MPC-HC
2014-01-18 16:18 - 2014-01-18 16:18 - 00000000 ____D () C:\Program Files (x86)\Combined Community Codec Pack
2014-01-17 18:00 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-01-17 07:56 - 2009-07-14 05:45 - 05023456 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-17 07:39 - 2012-12-02 20:39 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-17 07:38 - 2013-08-20 10:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-17 07:35 - 2013-07-17 10:18 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-10 17:56 - 2013-08-02 00:01 - 00000000 ____D () C:\Users\Kubíčci\Desktop\výběr
2014-01-10 17:56 - 2012-02-17 14:54 - 00000000 ____D () C:\Users\Kubíčci\Desktop\Sef na grilu - recepty
2014-01-10 17:55 - 2012-07-03 11:35 - 00000000 ____D () C:\Users\Kubíčci\Desktop\CANON_SC
2014-01-10 17:55 - 2012-02-17 14:43 - 00000000 ____D () C:\Users\Kubíčci\Desktop\Zapomenuté poklady české kuchyně 1.-3.díl
2014-01-10 17:55 - 1988-01-09 21:46 - 00000000 ____D () C:\Users\Kubíčci\Desktop\wna1330_drivers_130
2014-01-10 17:53 - 2014-01-10 17:52 - 00000000 ____D () C:\Users\Kubíčci\Desktop\Bulharsko
2014-01-09 22:05 - 2014-01-09 22:05 - 00000000 ____D () C:\ProgramData\Google
2014-01-09 22:05 - 2014-01-09 22:04 - 50063360 _____ () C:\Program Files (x86)\GUT40D8.tmp
2014-01-09 22:05 - 2012-12-02 13:44 - 00000000 ____D () C:\Program Files (x86)\Google
2014-01-09 22:04 - 2014-01-09 22:04 - 00000000 ____D () C:\Program Files (x86)\GUM40D7.tmp
2014-01-09 20:47 - 2013-09-23 18:41 - 00159100 _____ () C:\Windows\PFRO.log
2014-01-04 08:23 - 2014-01-01 18:06 - 00079672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-01-04 08:21 - 2014-01-04 08:21 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\AVAST Software

Some content of TEMP:
====================
C:\Users\Kubíčci\AppData\Local\Temp\bitool.dll
C:\Users\Kubíčci\AppData\Local\Temp\DTLite4481-0347.exe
C:\Users\Kubíčci\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Kubíčci\AppData\Local\Temp\GoogleUpdateSetup_1.3.21.169.exe
C:\Users\Kubíčci\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Users\Kubíčci\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-31 15:25

==================== End Of Log ============================

[vyosek]

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

• Ulozte nejlepe na plochu
• Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
• Probehne vytvoreni zalohy a nasledne prohledavani
• Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

[kuba7710]

a~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 7 Ultimate x64
Ran by Kubˇźci on so 01.02.2014 at 16:05:08,48
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{5911488E-9D1E-40ec-8CBB-06B231CC153F}



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\toolbar.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\toolbarbroker.exe
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\1clickdownload
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\bi
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\systweak
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\startnow toolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\toolbar.bandobject
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\toolbar.bandobject.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\toolbar.toolbarhelperobject
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\toolbar.toolbarhelperobject.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\zgclnt.mngr
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\zgclnt.mngr.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{822BD2EB-7874-40B0-B532-EA40E10EA94A}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E13D095-45C3-4271-9475-F3B48227DD9F}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Kubˇźci\AppData\Roaming\opencandy"
Successfully deleted: [Folder] "C:\Users\Kubˇźci\AppData\Roaming\systweak"
Successfully deleted: [Folder] "C:\Users\Kubˇźci\AppData\Roaming\thinstall"
Successfully deleted: [Folder] "C:\Users\Kubˇźci\appdata\local\iac"
Successfully deleted: [Folder] "C:\Users\Kubˇźci\appdata\locallow\iac"



~~~ FireFox

Emptied folder: C:\Users\Kubˇźci\AppData\Roaming\mozilla\firefox\profiles\jyupsjax.default\minidumps [13 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on so 01.02.2014 at 16:14:21,33
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


# AdwCleaner v3.018 - Report created 01/02/2014 at 16:28:11
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Kubíčci - KUBÍČCI-PC
# Running from : C:\Users\Kubíčci\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

File Deleted : C:\Windows\System32\roboot64.exe

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{7E8A36EA-2501-4ED3-A3C8-CFA9143FB169}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{FAA8C612-F1B6-461B-8B60-B54D74D9642E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1C888195-0160-4883-91B7-294C0CE2F277}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{99ACA0F7-D864-45CB-8C40-FD42A077E7CA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E65F40C8-3CEB-47C2-9E01-BF73323DF4E7}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{38BF9661-BDA0-4A74-BB3B-576EC7AE16DC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6857AC4A-95B4-4E2C-B2D2-8A235FCCEF4A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E13D095-45C3-4271-9475-F3B48227DD9F}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2CBD2A57-2FD5-4F1A-9FC8-90ED48FA4187}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{17B10E59-09E1-4C39-A738-6774D7AB7778}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1C888195-0160-4883-91B7-294C0CE2F277}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{47700C35-9E3E-4DAD-934C-0CE28A87237C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{72063D77-7590-4DA9-A7F8-F5ECAF3632C4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{99ACA0F7-D864-45CB-8C40-FD42A077E7CA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E65F40C8-3CEB-47C2-9E01-BF73323DF4E7}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v26.0 (cs)

[ File : C:\Users\Kubíčci\AppData\Roaming\Mozilla\Firefox\Profiles\jyupsjax.default\prefs.js ]


-\\ Google Chrome v

[ File : C:\Users\Kubíčci\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : icon_url

*************************

AdwCleaner[R0].txt - [2336 octets] - [01/02/2014 16:26:42]
AdwCleaner[S0].txt - [2230 octets] - [01/02/2014 16:28:11]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2290 octets] ##########

[vyosek]

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  srinfo;
  autoclean;
  emptyclsid;
  iedefaults;
  FFdefaults;
  CHRdefaults;
  emptyalltemp;
  resethosts;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

[kuba7710]

Zoek.exe v5.0.0.0 Updated 31-January-2014
Tool run by Kubˇźci on so 01.02.2014 at 17:36:34,15.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\KUBCI~1\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

1.2.2014 17:38:06 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1469209133-3573444324-2748907158-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully
HKEY_USERS\S-1-5-21-1469209133-3573444324-2748907158-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully

==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\KUBCI~1\AppData\Roaming\Mozilla\Firefox\Profiles\jyupsjax.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.cz/?rlz=1W4CHBA_csCZ546");

Added to C:\Users\KUBCI~1\AppData\Roaming\Mozilla\Firefox\Profiles\jyupsjax.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

==== Deleting Files \ Folders ======================

C:\Users\KUBCI~1\.android deleted
C:\PROGRA~2\GUT40D8.tmp deleted
C:\PROGRA~2\GUM40D7.tmp deleted
C:\windows\SysNative\tasks\Play Now Radio deleted
C:\Users\KUBCI~1\Desktop\SRDownloader.exe deleted

======== System Restore Points ========

RP172: 14.1.2014 17:26:25 - Naplánovaný kontrolní bod
RP173: 15.1.2014 8:04:03 - Windows Update
RP174: 17.1.2014 7:35:01 - Windows Update
RP175: 20.1.2014 20:33:00 - Installed ASUS Wireless Router Utilities
RP176: 20.1.2014 20:35:03 - Installed ASUS Wireless Router Utilities
RP177: 21.1.2014 14:19:58 - Windows Update
RP178: 21.1.2014 18:35:34 - Installed MSXML 6.0 Parser
RP179: 21.1.2014 18:41:54 - Installed MSXML 6.0 Parser
RP180: 21.1.2014 18:43:51 - Installed ABBYY FineReader 11.
RP181: 24.1.2014 16:11:55 - Windows Update
RP182: 28.1.2014 15:28:34 - Windows Update
RP183: 1.2.2014 17:37:46 - zoek.exe restore point

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [01.01.2014 18:06]

==== Firefox Extensions ======================

ProfilePath: C:\Users\KUBCI~1\AppData\Roaming\Mozilla\Firefox\Profiles\jyupsjax.default
- avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.cz/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.cz/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Unknown Url="Not_Found"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchT ... {startPage}"

==== Reset Google Chrome ======================

Nothing found to reset

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1469209133-3573444324-2748907158-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\KUBCI~1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\KUBCI~1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0ZB7U58A will be deleted at reboot
C:\Users\KUBCI~1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HXKXI7AA will be deleted at reboot
C:\Users\KUBCI~1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ILGKNT3W will be deleted at reboot
C:\Users\KUBCI~1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RPHQAE12 will be deleted at reboot
C:\Users\KUBCI~1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U7OBQMRR will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\KUBCI~1\AppData\Local\Mozilla\Firefox\Profiles\jyupsjax.default\Cache emptied successfully

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=72 folders=2 101806161 bytes)

==== Empty Temp Folders ======================

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\KUBCI~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\KUBCI~1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0ZB7U58A" not found
"C:\Users\KUBCI~1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HXKXI7AA" not found
"C:\Users\KUBCI~1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ILGKNT3W" not found
"C:\Users\KUBCI~1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RPHQAE12" not found
"C:\Users\KUBCI~1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U7OBQMRR" not found

==== EOF on so 01.02.2014 at 18:02:39,31 ======================

[vyosek]

Poprosim o novy log z FRST

[kuba7710]

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-02-2014 03
Ran by Kubíčci (administrator) on KUBÍČCI-PC on 02-02-2014 10:10:56
Running from C:\Users\Kubíčci\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ABBYY) C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 6510 series\Bin\ScanToPCActivationApp.exe
(ArcSoft Inc.) C:\Program Files (x86)\ArcSoft\TotalMedia Theatre 5\TotalMedia Server\TM Server.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Apple Inc.) C:\Program Files (x86)\QuickTime\QTTask.exe
(Dell) C:\Users\Kubíčci\AppData\Local\Apps\2.0\LL706EAP.9G7\EJ3D09ZH.C5R\dell..tion_0f612f649c4a10af_0005.0004_3ddfe37344028d2c\DellSystemDetect.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 6510 series\Bin\HPNetworkCommunicator.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil64_11_9_900_170_ActiveX.exe
(Share-rapid.com) C:\Users\Kubíčci\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X5A8JPYA\SRDownloader.exe
(Advanced Micro Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrv.exe
(Pay By Ads LTD) C:\Users\Kubíčci\AppData\Local\playnowradio\playnowradio\1.3.3.19\playnowradio.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Microsoft Corporation) C:\Windows\splwow64.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1424896 2011-09-08] (IDT, Inc.)
HKLM\...\Run: [BLEServicesCtrl] - C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [178960 2012-03-15] (Intel Corporation)
HKLM\...\Run: [BTMTrayAgent] - C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [11407120 2012-03-27] (Intel Corporation)
HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\System32\LogiLDA.dll [1832760 2012-09-20] (Logitech, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2013-01-15] (Adobe Systems Incorporated)
HKLM\...\Run: [QuickSet] - C:\Program Files\Dell\QuickSet\QuickSet.exe [3668336 2011-03-24] (Dell Inc.)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [StartCCC] - c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-11-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [seznam-listicka-distribuce] - C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2014-01-01] (AVAST Software)
HKLM-x32\...\Run: [Bonus.SSR.FR11] - C:\Program Files (x86)\ABBYY FineReader 11\Bonus.ScreenshotReader.exe [925960 2011-08-18] (ABBYY.)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [x]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Run: [HP Photosmart 6510 series (NET)] - C:\Program Files\HP\HP Photosmart 6510 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Run: [DellSystemDetect] - C:\Users\Kubíčci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Run: [playnowradio] - C:\Users\Kubíčci\AppData\Local\playnowradio\playnowradio\1.3.3.19\playnowradio.exe [380928 2014-01-22] (Pay By Ads LTD)
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Policies\system: [DisableLockWorkstation] 0

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 172.16.2.1

FireFox:
========
FF ProfilePath: C:\Users\Kubíčci\AppData\Roaming\Mozilla\Firefox\Profiles\jyupsjax.default
FF NewTab: hxxp://www.google.com/
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-12-02]

Chrome:
=======
CHR Extension: (avast! WebRep) - C:\Users\Kubíčci\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda [2012-12-05]

==================== Services (Whitelisted) =================

R2 ABBYY.Licensing.FineReader.Professional.11.0; C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [819976 2011-08-18] (ABBYY)
R2 ADExchange; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [43112 2012-02-16] (ArcSoft Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-01] (AVAST Software)

==================== Drivers (Whitelisted) ====================

R1 ArcSec; C:\Windows\System32\drivers\ArcSec.sys [312184 2010-09-21] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2014-01-01] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-01-01] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1034464 2014-01-01] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422216 2014-01-01] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [79672 2014-01-04] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-12-19] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-01-01] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-11-24] (Disc Soft Ltd)
S1 PCLEPCI; C:\Windows\SysWOW64\drivers\pclepci.sys [14165 2004-07-16] (Pinnacle Systems GmbH)
S3 Sntnlusb; C:\Windows\SysWOW64\DRIVERS\SNTNLUSB.SYS [20032 2001-06-21] (Rainbow Technologies Inc.)
S3 btwaudio; system32\drivers\btwaudio.sys [x]
S3 btwavdt; system32\drivers\btwavdt.sys [x]
S3 btwl2cap; system32\DRIVERS\btwl2cap.sys [x]
S3 btwrchid; system32\DRIVERS\btwrchid.sys [x]
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S2 DS1410D; \??\C:\Windows\system32\drivers\ds1410d.sys [x]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [x]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]
S2 Sentinel; \SystemRoot\System32\Drivers\SENTINEL.SYS [x]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-02 10:10 - 2014-02-02 10:11 - 00015323 _____ () C:\Users\Kubíčci\Desktop\FRST.txt
2014-02-01 21:04 - 2013-12-10 12:16 - 871770475 _____ () C:\Users\Kubíčci\Desktop\Zvonilka 1 Tinker Bell 2008 cz DVDRip.avi
2014-02-01 20:41 - 2014-02-01 21:02 - 865285308 _____ () C:\Users\Kubíčci\Desktop\Zvonilka 1 Tinker Bell 2008 cz DVDRip.rar
2014-02-01 17:51 - 2014-02-01 17:35 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-02-01 17:37 - 2014-02-01 18:02 - 00008923 _____ () C:\zoek-results.log
2014-02-01 17:35 - 2014-02-01 17:47 - 00000000 ____D () C:\zoek_backup
2014-02-01 17:34 - 2014-02-01 17:34 - 01283072 _____ () C:\Users\Kubíčci\Desktop\zoek.exe
2014-02-01 16:26 - 2014-02-01 16:39 - 00000000 ____D () C:\AdwCleaner
2014-02-01 16:25 - 2014-02-01 16:25 - 01166132 _____ () C:\Users\Kubíčci\Desktop\adwcleaner.exe
2014-02-01 16:14 - 2014-02-01 16:14 - 00002896 _____ () C:\Users\Kubíčci\Desktop\JRT.txt
2014-02-01 16:05 - 2014-02-01 16:05 - 00000000 ____D () C:\Windows\ERUNT
2014-02-01 16:04 - 2014-02-01 16:04 - 01037068 _____ (Thisisu) C:\Users\Kubíčci\Desktop\JRT.exe
2014-02-01 15:33 - 2014-02-01 15:34 - 00038174 _____ () C:\Users\Kubíčci\Desktop\Addition.txt
2014-02-01 15:32 - 2014-02-02 10:10 - 00000000 ____D () C:\FRST
2014-02-01 15:31 - 2014-02-01 15:31 - 02080256 _____ (Farbar) C:\Users\Kubíčci\Downloads\FRST64.exe
2014-02-01 15:30 - 2014-02-01 15:30 - 00112640 _____ (forum.viry.cz) C:\Users\Kubíčci\Desktop\FRSTLauncher.exe
2014-02-01 15:29 - 2014-02-01 15:29 - 02080256 _____ (Farbar) C:\Users\Kubíčci\Desktop\FRST64.exe
2014-01-31 20:59 - 2014-01-31 20:59 - 00092823 _____ () C:\Users\Kubíčci\Desktop\export-reservation-20140131.xls
2014-01-29 02:32 - 2014-02-02 09:48 - 00001470 _____ () C:\Users\Kubíčci\Desktop\Play Now Radio.lnk
2014-01-28 20:00 - 2014-01-28 20:00 - 00000000 ____D () C:\Users\Kubíčci\AppData\Local\playnowradio
2014-01-26 17:12 - 2014-01-26 17:12 - 00053658 _____ () C:\Users\Kubíčci\Desktop\import.csv
2014-01-26 17:10 - 2014-01-26 17:10 - 00233656 _____ () C:\Users\Kubíčci\Desktop\export-users-20140126.xls
2014-01-25 21:41 - 2014-02-02 09:49 - 00065536 ___HT () C:\Users\Kubíčci\Documents\~Outlradomir.kubicek@vrg.cz-00000002.pst.tmp
2014-01-25 21:07 - 2014-01-25 21:07 - 00000000 ____D () C:\Users\Kubíčci\AppData\Local\MediaHuman
2014-01-23 16:27 - 2014-01-30 17:26 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\HpUpdate
2014-01-21 19:02 - 2014-01-21 19:02 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\ABBYY
2014-01-21 18:56 - 2014-01-21 18:56 - 00002887 _____ () C:\Users\Public\Desktop\ABBYY FineReader 11.lnk
2014-01-21 18:53 - 2014-01-21 18:53 - 00000000 ____D () C:\Administrator's Guide
2014-01-21 18:48 - 2014-01-21 19:03 - 00000000 ____D () C:\Users\Kubíčci\AppData\Local\ABBYY
2014-01-21 18:48 - 2014-01-21 19:01 - 00000000 ____D () C:\Program Files (x86)\ABBYY FineReader 11
2014-01-21 18:48 - 2014-01-21 18:48 - 00000000 ____D () C:\ProgramData\ABBYY
2014-01-21 18:39 - 2014-01-21 18:39 - 00000132 _____ () C:\Users\Kubíčci\AppData\Roaming\Adobe Formát BMP CS5 – předvolby
2014-01-20 20:33 - 2014-01-20 20:33 - 00000000 ____D () C:\Program Files (x86)\ASUS
2014-01-20 20:33 - 2003-04-21 21:46 - 00061440 _____ (Printing Communications Assoc., Inc. (PCAUSA)) C:\Windows\SysWOW64\ASIW32N50.dll
2014-01-20 20:33 - 2002-09-10 19:35 - 00016302 _____ (Printing Communications Assoc., Inc. (PCAUSA)) C:\Windows\SysWOW64\ASINDIS5.sys
2014-01-20 20:33 - 2001-04-16 05:48 - 00015577 _____ () C:\Windows\SysWOW64\ASINDIS3.vxd
2014-01-20 20:30 - 2014-01-20 20:32 - 00000000 ____D () C:\Users\Kubíčci\Desktop\router
2014-01-18 16:24 - 2014-01-18 16:24 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\MPC-HC
2014-01-18 16:18 - 2014-01-18 16:18 - 00000000 ____D () C:\Program Files (x86)\Combined Community Codec Pack
2014-01-15 08:04 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 08:04 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 08:04 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 08:04 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 08:04 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 08:04 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 08:04 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 08:04 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 08:04 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-10 17:52 - 2014-01-10 17:53 - 00000000 ____D () C:\Users\Kubíčci\Desktop\Bulharsko
2014-01-09 22:05 - 2014-01-09 22:05 - 00000000 ____D () C:\ProgramData\Google
2014-01-06 18:15 - 2014-01-19 13:32 - 00009351 _____ () C:\Users\Kubíčci\Documents\zima2014.xlsx
2014-01-04 08:21 - 2014-01-04 08:21 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\AVAST Software

==================== One Month Modified Files and Folders =======

2014-02-02 10:11 - 2014-02-02 10:10 - 00015323 _____ () C:\Users\Kubíčci\Desktop\FRST.txt
2014-02-02 10:10 - 2014-02-01 15:32 - 00000000 ____D () C:\FRST
2014-02-02 10:08 - 2013-10-15 16:37 - 00271360 _____ () C:\Users\Kubíčci\Documents\Outlradomir.kubicek@vrg.cz-00000002.pst
2014-02-02 10:07 - 2012-12-02 13:44 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-02 10:05 - 2013-08-20 15:14 - 00000954 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-02 10:03 - 2012-12-26 21:00 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\Skype
2014-02-02 09:59 - 2012-12-02 11:51 - 02088743 _____ () C:\Windows\WindowsUpdate.log
2014-02-02 09:49 - 2014-01-25 21:41 - 00065536 ___HT () C:\Users\Kubíčci\Documents\~Outlradomir.kubicek@vrg.cz-00000002.pst.tmp
2014-02-02 09:49 - 2012-12-02 15:15 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-02-02 09:48 - 2014-01-29 02:32 - 00001470 _____ () C:\Users\Kubíčci\Desktop\Play Now Radio.lnk
2014-02-01 21:33 - 2013-01-19 11:51 - 00001952 _____ () C:\Users\Kubíčci\AppData\Local\SRDownloader.nast
2014-02-01 21:02 - 2014-02-01 20:41 - 865285308 _____ () C:\Users\Kubíčci\Desktop\Zvonilka 1 Tinker Bell 2008 cz DVDRip.rar
2014-02-01 20:57 - 2013-01-19 11:50 - 00000000 ____D () C:\Users\Kubíčci\torrent
2014-02-01 20:56 - 2013-02-28 23:11 - 00028974 _____ () C:\Users\Kubíčci\AppData\Local\SRDownloader.err
2014-02-01 19:05 - 2013-08-20 15:14 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-01 18:10 - 2009-07-14 05:45 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-01 18:10 - 2009-07-14 05:45 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-01 18:04 - 2013-12-31 22:15 - 00000000 ____D () C:\Users\Kubíčci\AppData\Local\Deployment
2014-02-01 18:02 - 2014-02-01 17:37 - 00008923 _____ () C:\zoek-results.log
2014-02-01 18:00 - 2013-09-16 18:22 - 00015486 _____ () C:\Windows\setupact.log
2014-02-01 18:00 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-01 17:59 - 2013-09-23 18:41 - 00159434 _____ () C:\Windows\PFRO.log
2014-02-01 17:47 - 2014-02-01 17:35 - 00000000 ____D () C:\zoek_backup
2014-02-01 17:47 - 2012-12-02 12:19 - 00000000 ____D () C:\Users\Kubíčci
2014-02-01 17:35 - 2014-02-01 17:51 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-02-01 17:34 - 2014-02-01 17:34 - 01283072 _____ () C:\Users\Kubíčci\Desktop\zoek.exe
2014-02-01 16:39 - 2014-02-01 16:26 - 00000000 ____D () C:\AdwCleaner
2014-02-01 16:25 - 2014-02-01 16:25 - 01166132 _____ () C:\Users\Kubíčci\Desktop\adwcleaner.exe
2014-02-01 16:14 - 2014-02-01 16:14 - 00002896 _____ () C:\Users\Kubíčci\Desktop\JRT.txt
2014-02-01 16:08 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-02-01 16:05 - 2014-02-01 16:05 - 00000000 ____D () C:\Windows\ERUNT
2014-02-01 16:04 - 2014-02-01 16:04 - 01037068 _____ (Thisisu) C:\Users\Kubíčci\Desktop\JRT.exe
2014-02-01 15:34 - 2014-02-01 15:33 - 00038174 _____ () C:\Users\Kubíčci\Desktop\Addition.txt
2014-02-01 15:31 - 2014-02-01 15:31 - 02080256 _____ (Farbar) C:\Users\Kubíčci\Downloads\FRST64.exe
2014-02-01 15:30 - 2014-02-01 15:30 - 00112640 _____ (forum.viry.cz) C:\Users\Kubíčci\Desktop\FRSTLauncher.exe
2014-02-01 15:29 - 2014-02-01 15:29 - 02080256 _____ (Farbar) C:\Users\Kubíčci\Desktop\FRST64.exe
2014-01-31 20:59 - 2014-01-31 20:59 - 00092823 _____ () C:\Users\Kubíčci\Desktop\export-reservation-20140131.xls
2014-01-30 17:26 - 2014-01-23 16:27 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\HpUpdate
2014-01-28 20:00 - 2014-01-28 20:00 - 00000000 ____D () C:\Users\Kubíčci\AppData\Local\playnowradio
2014-01-26 17:12 - 2014-01-26 17:12 - 00053658 _____ () C:\Users\Kubíčci\Desktop\import.csv
2014-01-26 17:10 - 2014-01-26 17:10 - 00233656 _____ () C:\Users\Kubíčci\Desktop\export-users-20140126.xls
2014-01-26 15:14 - 2013-11-17 12:30 - 00000132 _____ () C:\Users\Kubíčci\AppData\Roaming\Adobe Formát GIF CS5 – předvolby
2014-01-25 21:07 - 2014-01-25 21:07 - 00000000 ____D () C:\Users\Kubíčci\AppData\Local\MediaHuman
2014-01-23 16:27 - 2013-04-20 15:04 - 00000000 ____D () C:\Program Files (x86)\HP
2014-01-21 19:47 - 2009-07-14 16:18 - 00634818 _____ () C:\Windows\system32\perfh005.dat
2014-01-21 19:47 - 2009-07-14 16:18 - 00123376 _____ () C:\Windows\system32\perfc005.dat
2014-01-21 19:47 - 2009-07-14 06:13 - 01478982 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-01-21 19:03 - 2014-01-21 18:48 - 00000000 ____D () C:\Users\Kubíčci\AppData\Local\ABBYY
2014-01-21 19:02 - 2014-01-21 19:02 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\ABBYY
2014-01-21 19:01 - 2014-01-21 18:48 - 00000000 ____D () C:\Program Files (x86)\ABBYY FineReader 11
2014-01-21 18:56 - 2014-01-21 18:56 - 00002887 _____ () C:\Users\Public\Desktop\ABBYY FineReader 11.lnk
2014-01-21 18:53 - 2014-01-21 18:53 - 00000000 ____D () C:\Administrator's Guide
2014-01-21 18:48 - 2014-01-21 18:48 - 00000000 ____D () C:\ProgramData\ABBYY
2014-01-21 18:39 - 2014-01-21 18:39 - 00000132 _____ () C:\Users\Kubíčci\AppData\Roaming\Adobe Formát BMP CS5 – předvolby
2014-01-20 20:33 - 2014-01-20 20:33 - 00000000 ____D () C:\Program Files (x86)\ASUS
2014-01-20 20:33 - 2012-12-02 12:27 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-01-20 20:32 - 2014-01-20 20:30 - 00000000 ____D () C:\Users\Kubíčci\Desktop\router
2014-01-19 13:32 - 2014-01-06 18:15 - 00009351 _____ () C:\Users\Kubíčci\Documents\zima2014.xlsx
2014-01-18 16:24 - 2014-01-18 16:24 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\MPC-HC
2014-01-18 16:18 - 2014-01-18 16:18 - 00000000 ____D () C:\Program Files (x86)\Combined Community Codec Pack
2014-01-17 07:56 - 2009-07-14 05:45 - 05023456 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-17 07:39 - 2012-12-02 20:39 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-17 07:38 - 2013-08-20 10:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-17 07:35 - 2013-07-17 10:18 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-10 17:56 - 2013-08-02 00:01 - 00000000 ____D () C:\Users\Kubíčci\Desktop\výběr
2014-01-10 17:56 - 2012-02-17 14:54 - 00000000 ____D () C:\Users\Kubíčci\Desktop\Sef na grilu - recepty
2014-01-10 17:55 - 2012-07-03 11:35 - 00000000 ____D () C:\Users\Kubíčci\Desktop\CANON_SC
2014-01-10 17:55 - 2012-02-17 14:43 - 00000000 ____D () C:\Users\Kubíčci\Desktop\Zapomenuté poklady české kuchyně 1.-3.díl
2014-01-10 17:55 - 1988-01-09 21:46 - 00000000 ____D () C:\Users\Kubíčci\Desktop\wna1330_drivers_130
2014-01-10 17:53 - 2014-01-10 17:52 - 00000000 ____D () C:\Users\Kubíčci\Desktop\Bulharsko
2014-01-09 22:05 - 2014-01-09 22:05 - 00000000 ____D () C:\ProgramData\Google
2014-01-09 22:05 - 2012-12-02 13:44 - 00000000 ____D () C:\Program Files (x86)\Google
2014-01-04 08:23 - 2014-01-01 18:06 - 00079672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-01-04 08:21 - 2014-01-04 08:21 - 00000000 ____D () C:\Users\Kubíčci\AppData\Roaming\AVAST Software

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-31 15:25

==================== End Of Log ============================

[vyosek]

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2013-01-15] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
  HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [AdobeCS5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
  HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
  HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
  HKLM-x32\...\Run: [seznam-listicka-distribuce] - C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
  HKLM-x32\...\Run: [Bonus.SSR.FR11] - C:\Program Files (x86)\ABBYY FineReader 11\Bonus.ScreenshotReader.exe [925960 2011-08-18] (ABBYY.)
  HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
  HKLM-x32\...\Run: [] - [x]
  HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
  HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
  HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Run: [playnowradio] - C:\Users\Kubíčci\AppData\Local\playnowradio\playnowradio\1.3.3.19\playnowradio.exe [380928 2014-01-22] (Pay By Ads LTD)
  HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Policies\system: [DisableLockWorkstation] 0
  
  SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
  SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
  
  FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
  FF Plugin: @microsoft.com/GENUINE - disabled No File
  FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
  
  S3 btwaudio; system32\drivers\btwaudio.sys [x]
  S3 btwavdt; system32\drivers\btwavdt.sys [x]
  S3 btwl2cap; system32\DRIVERS\btwl2cap.sys [x]
  S3 btwrchid; system32\DRIVERS\btwrchid.sys [x]
  S3 catchme; \??\C:\ComboFix\catchme.sys [x]
  S2 DS1410D; \??\C:\Windows\system32\drivers\ds1410d.sys [x]
  S3 Huawei; system32\DRIVERS\ewdcsc.sys [x]
  S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
  S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]
  S2 Sentinel; \SystemRoot\System32\Drivers\SENTINEL.SYS [x]
  S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
  S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
  S3 VGPU; System32\drivers\rdvgkmd.sys [x]
  
  2014-02-01 17:51 - 2014-02-01 17:35 - 00024064 _____ () C:\Windows\zoek-delete.exe
  2014-02-01 17:37 - 2014-02-01 18:02 - 00008923 _____ () C:\zoek-results.log
  2014-02-01 17:35 - 2014-02-01 17:47 - 00000000 ____D () C:\zoek_backup
  2014-02-01 17:34 - 2014-02-01 17:34 - 01283072 _____ () C:\Users\Kubíčci\Desktop\zoek.exe
  2014-02-01 16:25 - 2014-02-01 16:25 - 01166132 _____ () C:\Users\Kubíčci\Desktop\adwcleaner.exe
  2014-02-01 16:14 - 2014-02-01 16:14 - 00002896 _____ () C:\Users\Kubíčci\Desktop\JRT.txt
  2014-02-01 16:04 - 2014-02-01 16:04 - 01037068 _____ (Thisisu) C:\Users\Kubíčci\Desktop\JRT.exe
  2014-02-01 15:33 - 2014-02-01 15:34 - 00038174 _____ () C:\Users\Kubíčci\Desktop\Addition.txt
  2014-02-01 15:31 - 2014-02-01 15:31 - 02080256 _____ (Farbar) C:\Users\Kubíčci\Downloads\FRST64.exe
  2014-02-01 15:30 - 2014-02-01 15:30 - 00112640 _____ (forum.viry.cz) C:\Users\Kubíčci\Desktop\FRSTLauncher.exe
  
  Hosts:
  CMD: shutdown /r /f /t 2
  
  End

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[kuba7710]

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-02-2014 03
Ran by Kubíčci at 2014-02-02 17:27:48 Run:1
Running from C:\Users\Kubíčci\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2013-01-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [seznam-listicka-distribuce] - C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [Bonus.SSR.FR11] - C:\Program Files (x86)\ABBYY FineReader 11\Bonus.ScreenshotReader.exe [925960 2011-08-18] (ABBYY.)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [x]
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Run: [playnowradio] - C:\Users\Kubíčci\AppData\Local\playnowradio\playnowradio\1.3.3.19\playnowradio.exe [380928 2014-01-22] (Pay By Ads LTD)
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\...\Policies\system: [DisableLockWorkstation] 0

SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}

FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File

S3 btwaudio; system32\drivers\btwaudio.sys [x]
S3 btwavdt; system32\drivers\btwavdt.sys [x]
S3 btwl2cap; system32\DRIVERS\btwl2cap.sys [x]
S3 btwrchid; system32\DRIVERS\btwrchid.sys [x]
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S2 DS1410D; \??\C:\Windows\system32\drivers\ds1410d.sys [x]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [x]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]
S2 Sentinel; \SystemRoot\System32\Drivers\SENTINEL.SYS [x]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

2014-02-01 17:51 - 2014-02-01 17:35 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-02-01 17:37 - 2014-02-01 18:02 - 00008923 _____ () C:\zoek-results.log
2014-02-01 17:35 - 2014-02-01 17:47 - 00000000 ____D () C:\zoek_backup
2014-02-01 17:34 - 2014-02-01 17:34 - 01283072 _____ () C:\Users\Kubíčci\Desktop\zoek.exe
2014-02-01 16:25 - 2014-02-01 16:25 - 01166132 _____ () C:\Users\Kubíčci\Desktop\adwcleaner.exe
2014-02-01 16:14 - 2014-02-01 16:14 - 00002896 _____ () C:\Users\Kubíčci\Desktop\JRT.txt
2014-02-01 16:04 - 2014-02-01 16:04 - 01037068 _____ (Thisisu) C:\Users\Kubíčci\Desktop\JRT.exe
2014-02-01 15:33 - 2014-02-01 15:34 - 00038174 _____ () C:\Users\Kubíčci\Desktop\Addition.txt
2014-02-01 15:31 - 2014-02-01 15:31 - 02080256 _____ (Farbar) C:\Users\Kubíčci\Downloads\FRST64.exe
2014-02-01 15:30 - 2014-02-01 15:30 - 00112640 _____ (forum.viry.cz) C:\Users\Kubíčci\Desktop\FRSTLauncher.exe

Hosts:
CMD: shutdown /r /f /t 2

End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SwitchBoard => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\AdobeCS5ServiceManager => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\APSDaemon => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Bonus.SSR.FR11 => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\HP Software Update => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Skype => Value deleted successfully.
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => Value deleted successfully.
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\Software\Microsoft\Windows\CurrentVersion\Run\\playnowradio => Value deleted successfully.
HKU\S-1-5-21-1469209133-3573444324-2748907158-1000\Software\Microsoft\Windows\CurrentVersion\Policies\system\\DisableLockWorkstation => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key deleted successfully.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key not found.
Firefox Keyword.URL deleted successfully.
HKLM\Software\MozillaPlugins\FF Plugin: @microsoft.com/GENUINE - disabled No File => Key not found.
"FF Plugin: @microsoft.com/GENUINE - disabled No File" => not found.
HKLM\Software\Wow6432Node\MozillaPlugins\FF Plugin-x32: @microsoft.com/GENUINE - disabled No File => Key not found.
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File not found.
btwaudio => Service deleted successfully.
btwavdt => Service deleted successfully.
btwl2cap => Service deleted successfully.
btwrchid => Service deleted successfully.
catchme => Service deleted successfully.
DS1410D => Service deleted successfully.
Huawei => Service deleted successfully.
hwdatacard => Service deleted successfully.
hwusbdev => Service deleted successfully.
Sentinel => Service deleted successfully.
Synth3dVsc => Service deleted successfully.
tsusbhub => Service deleted successfully.
VGPU => Service deleted successfully.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\Kubíčci\Desktop\zoek.exe => Moved successfully.
C:\Users\Kubíčci\Desktop\adwcleaner.exe => Moved successfully.
C:\Users\Kubíčci\Desktop\JRT.txt => Moved successfully.
C:\Users\Kubíčci\Desktop\JRT.exe => Moved successfully.
C:\Users\Kubíčci\Desktop\Addition.txt => Moved successfully.
C:\Users\Kubíčci\Downloads\FRST64.exe => Moved successfully.
C:\Users\Kubíčci\Desktop\FRSTLauncher.exe => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r /f /t 2 =========


========= End of CMD: =========


==== End of Fixlog ====

[vyosek]

Tak jeste uklidime

T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse