Ntb se seka

[vyosek]

Poprosim o FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

[cedan]

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-03-2014 01
Ran by HP 8710w Workstation (administrator) on PC on 07-03-2014 20:48:05
Running from C:\Users\HP 8710w Workstation\Downloads
Windows 7 Professional Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(Hewlett-Packard Company) C:\Windows\system32\Hpservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe
(Andrea Electronics Corporation) C:\Windows\system32\AEADISRV.EXE
() C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe
(Analog Devices, Inc.) C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Conexant Systems, Inc.) C:\Windows\system32\DRIVERS\xaudio64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(Wargaming.net) C:\Games\World_of_Tanks\WorldOfTanks.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MpCmdRun.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [] - [X]
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2174760 2010-06-04] (Synaptics Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SoundMAXPnP] - C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [1183744 2007-02-21] (Analog Devices, Inc.)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [IObit Malware Fighter] - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [1573184 2013-12-13] (IObit)
HKLM-x32\...\Run: [] - [X]
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\Run: [HP Deskjet 3520 series (NET)] - C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2551656 2012-01-31] (Hewlett-Packard Co.)
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\Run: [Zoner Photo Studio Autoupdate] - C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [800280 2013-09-16] (ZONER software)
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: E - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: F - F:\Autorun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: G - G:\Autorun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {139c7562-8b52-11e2-91f9-001f3b41b05d} - F:\.\Autorun.exe AUTORUN=1
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {139c7571-8b52-11e2-91f9-001f3b41b05d} - F:\.\Autorun.exe AUTORUN=1
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {2acfa570-d04d-11e1-9856-00218609dcde} - F:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {2b7145e4-d0f8-11e1-988e-00218609dcde} - F:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {2b71460b-d0f8-11e1-988e-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {3f440a7d-cf81-11e1-9894-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {440d9b1f-bee5-11e1-9ed7-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {440d9b2f-bee5-11e1-9ed7-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {61b65efc-d10c-11e1-98ab-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {61b65f33-d10c-11e1-98ab-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {61b65f3d-d10c-11e1-98ab-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {6b4d171d-8e22-11e1-9e73-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {824008d1-83f2-11e1-922a-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {824008d9-83f2-11e1-922a-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {979ab722-d0f7-11e1-98f1-00218609dcde} - F:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {a25c2f9c-d1ac-11e1-9ee3-00218609dcde} - G:\Autorun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {a3b5fada-cf82-11e1-98ec-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {b4052603-cf6b-11e1-a62f-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {d6f6ebab-8a71-11e2-ac22-00218609dcde} - F:\.\Autorun.exe AUTORUN=1

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13415
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {02D7F91A-39E9-4A03-B20F-5B946AC35427} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKCU - {22450D50-F49B-4445-B109-EED229DC41E8} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {328D9851-0553-41C6-A747-2C7CCBEFA4B2} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKCU - {3C893BF9-C8B6-4C21-9823-43B0BC982B20} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKCU - {4D69FA62-3CE5-464A-8255-B0B4EC3ED103} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKCU - {56167194-330E-420C-9D1D-5D725E15532B} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {8E6AC9F9-4752-45AE-BD31-2BDF207C1594} URL = http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKCU - {E18BEAB9-934A-4000-957F-620B87EEF062} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {E221EAA4-4187-4E81-84AB-A85B42ADC1B3} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Ads Removal - {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} - C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll (Adblock)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/s ... wflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF ProfilePath: C:\Users\HP 8710w Workstation\AppData\Roaming\Mozilla\Firefox\Profiles\ne98b4cd.default
FF NewTab: hxxp://www.google.com/
FF DefaultSearchEngine: Google
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @java.com/DTPlugin,version=10.11.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.11.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\HP 8710w Workstation\AppData\Roaming\Mozilla\Firefox\Profiles\ne98b4cd.default\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Ads Removal - C:\Users\HP 8710w Workstation\AppData\Roaming\Mozilla\Firefox\Profiles\ne98b4cd.default\Extensions\adsremoval@adsremoval.net [2014-03-07]
FF Extension: Seznam lištička - C:\Users\HP 8710w Workstation\AppData\Roaming\Mozilla\Firefox\Profiles\ne98b4cd.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2013-10-14]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2013-07-13]

Chrome:
=======
CHR Extension: (Dokumenty Google) - C:\Users\HP 8710w Workstation\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-07]
CHR Extension: (Disk Google) - C:\Users\HP 8710w Workstation\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-07]
CHR Extension: (YouTube) - C:\Users\HP 8710w Workstation\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-04-05]
CHR Extension: (Vyhledávání Google) - C:\Users\HP 8710w Workstation\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-04-05]
CHR Extension: (Ads Removal) - C:\Users\HP 8710w Workstation\AppData\Local\Google\Chrome\User Data\Default\Extensions\fopdddcinljmpmioaklghcalngfhbaen [2014-03-07]
CHR Extension: (Peněženka Google) - C:\Users\HP 8710w Workstation\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Gmail) - C:\Users\HP 8710w Workstation\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-04-05]

==================== Services (Whitelisted) =================

R2 AEADIFilters; C:\Windows\system32\AEADISRV.EXE [80384 2007-02-06] (Andrea Electronics Corporation)
R2 DokanMounter; C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe [14848 2011-01-10] ()
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [341824 2013-11-11] (IObit)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R2 Dokan; C:\Windows\system32\drivers\dokan.sys [120408 2011-01-10] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-10-14] (DT Soft Ltd)
R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2013-03-23] (IObit)
R3 HBtnKey; C:\Windows\System32\DRIVERS\cpqbttn.sys [19000 2010-02-25] (Hewlett-Packard Company)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [31136 2013-09-30] (REALiX(tm))
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2013-11-19] (IObit.com)
S3 RICOH SmartCard Reader; C:\Windows\System32\DRIVERS\rismcx64.sys [59008 2009-07-20] (RICOH Company, Ltd.)
R3 rismcx64; C:\Windows\System32\DRIVERS\rismcx64.sys [59008 2009-07-20] (RICOH Company, Ltd.)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2013-11-19] (IObit.com)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbfake; system32\DRIVERS\ewusbfake.sys [X]
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-07 20:48 - 2014-03-07 20:49 - 00018163 _____ () C:\Users\HP 8710w Workstation\Downloads\FRST.txt
2014-03-07 20:47 - 2014-03-07 20:48 - 00000000 ____D () C:\FRST
2014-03-07 20:47 - 2014-03-07 20:47 - 02156544 _____ (Farbar) C:\Users\HP 8710w Workstation\Downloads\FRST64.exe
2014-03-07 20:45 - 2014-03-07 20:45 - 00112640 _____ (forum.viry.cz) C:\Users\HP 8710w Workstation\Downloads\Nepotvrzeno 33301.crdownload
2014-03-07 02:49 - 2014-03-06 23:51 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-03-06 23:52 - 2014-03-07 05:17 - 00015988 _____ () C:\zoek-results.log
2014-03-06 23:51 - 2014-03-07 02:05 - 00000000 ____D () C:\zoek_backup
2014-03-06 23:51 - 2014-03-06 23:51 - 01284608 _____ () C:\Users\HP 8710w Workstation\Downloads\zoek.exe
2014-03-06 23:01 - 2014-03-06 23:04 - 00000000 ____D () C:\AdwCleaner
2014-03-06 22:59 - 2014-03-06 22:59 - 01244192 _____ () C:\Users\HP 8710w Workstation\Downloads\adwcleaner.exe
2014-03-06 08:56 - 2014-03-06 08:56 - 00001073 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-06 08:56 - 2014-03-06 08:56 - 00000000 ____D () C:\Users\HP 8710w Workstation\AppData\Roaming\Malwarebytes
2014-03-06 08:56 - 2014-03-06 08:56 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-06 08:56 - 2014-03-06 08:56 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-03-06 08:56 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-06 08:12 - 2014-03-06 08:13 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\HP 8710w Workstation\Downloads\mbam-setup.exe
2014-03-05 00:22 - 2014-03-06 15:03 - 00000000 ____D () C:\Program Files\trend micro
2014-03-05 00:22 - 2014-03-05 00:23 - 00000000 ____D () C:\rsit
2014-03-05 00:21 - 2014-03-05 00:22 - 00935175 _____ () C:\Users\HP 8710w Workstation\Downloads\RSITx64.exe
2014-03-03 18:17 - 2014-03-07 19:43 - 00000616 _____ () C:\Windows\setupact.log
2014-03-03 18:17 - 2014-03-03 18:17 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-03 18:16 - 2014-03-07 19:28 - 00074134 _____ () C:\Windows\PFRO.log
2014-03-01 08:39 - 2014-03-01 08:39 - 15740232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 31432480 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 23683360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 17715784 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 12324640 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-03-01 08:38 - 2014-03-01 08:38 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 03142432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 02956576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 02782496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 02713728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 02410784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433489.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433489.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 00892192 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 00875296 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 00863520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 00844576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-02-28 21:54 - 2014-02-28 21:54 - 00000110 ____H () C:\Users\HP 8710w Workstation\Downloads\001_CMTP_logo_2 (1).jpg.uid-zps
2014-02-27 16:01 - 2014-02-27 16:01 - 00000110 ____H () C:\Users\HP 8710w Workstation\Downloads\image5.png.uid-zps
2014-02-24 23:02 - 2014-02-24 23:02 - 02522143 _____ () C:\Users\HP 8710w Workstation\Downloads\Citizen Herren-Armbanduhr XL Super Titanium Chronograph Quarz Titan CA0340-55A Amazon.de Uhren.htm
2014-02-24 23:02 - 2014-02-24 23:02 - 00000000 ____D () C:\Users\HP 8710w Workstation\Downloads\Citizen Herren-Armbanduhr XL Super Titanium Chronograph Quarz Titan CA0340-55A Amazon.de Uhren_files
2014-02-19 19:27 - 2014-02-19 19:40 - 147266000 _____ () C:\Users\HP 8710w Workstation\ts3_recording_14_02_19_19_27_19.wav
2014-02-19 10:41 - 2014-02-19 10:41 - 00000160 _____ () C:\Users\HP 8710w Workstation\Downloads\stažený soubor (1)
2014-02-19 10:41 - 2014-02-19 10:41 - 00000160 _____ () C:\Users\HP 8710w Workstation\Downloads\stažený soubor
2014-02-18 09:56 - 2014-03-01 08:38 - 14669032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-02-18 09:56 - 2014-02-18 09:56 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433250.dll
2014-02-18 09:56 - 2014-02-18 09:56 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433250.dll
2014-02-16 09:27 - 2014-02-16 09:29 - 27098838 _____ () C:\Users\HP 8710w Workstation\Downloads\8.11_Crabtr33_XVM_CZ_modpack_v1.00.7z
2014-02-15 15:03 - 2014-02-15 15:03 - 00001058 _____ () C:\Users\Public\Desktop\Smart Defrag 3.lnk
2014-02-15 15:03 - 2013-12-24 10:40 - 00021184 _____ (IObit) C:\Windows\system32\Drivers\SmartDefragDriver.sys
2014-02-13 00:08 - 2013-12-21 10:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-13 00:08 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-13 00:07 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-13 00:07 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-13 00:07 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-13 00:07 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-13 00:07 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-13 00:07 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-13 00:07 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-13 00:07 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-13 00:07 - 2014-02-06 11:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-13 00:07 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-13 00:07 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-13 00:07 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-13 00:07 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-13 00:07 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-13 00:07 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-13 00:07 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-13 00:07 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-13 00:07 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-13 00:07 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-13 00:07 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-13 00:07 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-13 00:07 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-13 00:07 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-13 00:07 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-13 00:07 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-13 00:07 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-13 00:07 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-13 00:07 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-13 00:07 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-13 00:07 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-13 00:07 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-13 00:07 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-13 00:07 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-13 00:07 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-13 00:07 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-13 00:07 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-13 00:07 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-13 00:07 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-13 00:07 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-12 17:50 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-12 17:50 - 2014-01-01 00:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-12 17:50 - 2013-12-06 03:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-12 17:50 - 2013-12-06 03:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-12 17:50 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-12 17:50 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-12 17:49 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-12 17:49 - 2013-12-24 23:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-12 17:49 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-12 17:49 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-12 17:49 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-12 17:49 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-12 17:49 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-12 17:49 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-12 17:49 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-12 17:49 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-12 17:49 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-12 17:49 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-12 17:49 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-12 17:49 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-12 17:49 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-12 17:49 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-12 17:49 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-12 17:49 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-12 17:49 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-12 17:49 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-12 17:49 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-12 17:49 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-07 20:54 - 2014-02-07 20:55 - 00000000 ____D () C:\Program Files\Virtual Audio Cable
2014-02-07 20:54 - 2014-02-07 20:54 - 00066728 _____ (Eugene V. Muzychenko) C:\Windows\system32\Drivers\vrtaucbl.sys

==================== One Month Modified Files and Folders =======

2014-03-07 20:49 - 2014-03-07 20:48 - 00018163 _____ () C:\Users\HP 8710w Workstation\Downloads\FRST.txt
2014-03-07 20:48 - 2014-03-07 20:47 - 00000000 ____D () C:\FRST
2014-03-07 20:47 - 2014-03-07 20:47 - 02156544 _____ (Farbar) C:\Users\HP 8710w Workstation\Downloads\FRST64.exe
2014-03-07 20:45 - 2014-03-07 20:45 - 00112640 _____ (forum.viry.cz) C:\Users\HP 8710w Workstation\Downloads\Nepotvrzeno 33301.crdownload
2014-03-07 20:36 - 2012-04-05 09:00 - 00000980 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-07 20:13 - 2012-06-28 13:45 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-07 19:57 - 2012-02-03 13:25 - 01552674 _____ () C:\Windows\WindowsUpdate.log
2014-03-07 19:51 - 2009-07-14 05:45 - 00014256 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-07 19:51 - 2009-07-14 05:45 - 00014256 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-07 19:47 - 2012-08-05 21:31 - 00000000 ____D () C:\Users\HP 8710w Workstation\AppData\Roaming\TS3Client
2014-03-07 19:43 - 2014-03-03 18:17 - 00000616 _____ () C:\Windows\setupact.log
2014-03-07 19:43 - 2012-04-05 09:00 - 00000976 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-07 19:43 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-07 19:28 - 2014-03-03 18:16 - 00074134 _____ () C:\Windows\PFRO.log
2014-03-07 05:17 - 2014-03-06 23:52 - 00015988 _____ () C:\zoek-results.log
2014-03-07 03:04 - 2013-01-23 18:16 - 00000664 ____H () C:\Windows\Tasks\Norton Product InstallerIdle.job
2014-03-07 02:05 - 2014-03-06 23:51 - 00000000 ____D () C:\zoek_backup
2014-03-07 01:15 - 2012-02-03 13:33 - 00000000 ____D () C:\Users\HP 8710w Workstation
2014-03-06 23:51 - 2014-03-07 02:49 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-03-06 23:51 - 2014-03-06 23:51 - 01284608 _____ () C:\Users\HP 8710w Workstation\Downloads\zoek.exe
2014-03-06 23:04 - 2014-03-06 23:01 - 00000000 ____D () C:\AdwCleaner
2014-03-06 22:59 - 2014-03-06 22:59 - 01244192 _____ () C:\Users\HP 8710w Workstation\Downloads\adwcleaner.exe
2014-03-06 15:03 - 2014-03-05 00:22 - 00000000 ____D () C:\Program Files\trend micro
2014-03-06 08:56 - 2014-03-06 08:56 - 00001073 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-06 08:56 - 2014-03-06 08:56 - 00000000 ____D () C:\Users\HP 8710w Workstation\AppData\Roaming\Malwarebytes
2014-03-06 08:56 - 2014-03-06 08:56 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-06 08:56 - 2014-03-06 08:56 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-03-06 08:13 - 2014-03-06 08:12 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\HP 8710w Workstation\Downloads\mbam-setup.exe
2014-03-06 05:28 - 2013-02-28 07:45 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-06 05:27 - 2012-04-01 17:39 - 00000000 ____D () C:\ProgramData\Skype
2014-03-05 22:59 - 2009-07-14 16:18 - 00669132 _____ () C:\Windows\system32\perfh005.dat
2014-03-05 22:59 - 2009-07-14 16:18 - 00141760 _____ () C:\Windows\system32\perfc005.dat
2014-03-05 22:59 - 2009-07-14 06:13 - 01584626 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-05 00:23 - 2014-03-05 00:22 - 00000000 ____D () C:\rsit
2014-03-05 00:22 - 2014-03-05 00:21 - 00935175 _____ () C:\Users\HP 8710w Workstation\Downloads\RSITx64.exe
2014-03-03 18:17 - 2014-03-03 18:17 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-03 00:44 - 2012-04-09 17:02 - 00000000 ____D () C:\Windows\Minidump
2014-03-02 10:40 - 2009-07-14 06:08 - 00032616 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-03-01 08:43 - 2014-01-29 16:14 - 00000000 ____D () C:\DrvInstall
2014-03-01 08:42 - 2012-02-03 14:10 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-03-01 08:39 - 2014-03-01 08:39 - 15740232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-03-01 08:39 - 2010-12-04 05:45 - 18257576 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 31432480 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 23683360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 17715784 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 12324640 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-03-01 08:38 - 2014-03-01 08:38 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 03142432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 02956576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 02782496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 02713728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 02410784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433489.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433489.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 00892192 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 00875296 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 00863520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-03-01 08:38 - 2014-03-01 08:38 - 00844576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-03-01 08:38 - 2014-02-18 09:56 - 14669032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-03-01 08:38 - 2014-01-12 23:55 - 00024544 _____ () C:\Windows\system32\nvinfo.pb
2014-03-01 08:38 - 2010-12-04 05:45 - 03090184 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-02-28 21:54 - 2014-02-28 21:54 - 00000110 ____H () C:\Users\HP 8710w Workstation\Downloads\001_CMTP_logo_2 (1).jpg.uid-zps
2014-02-28 21:29 - 2013-03-24 14:34 - 00000000 ____D () C:\Users\HP 8710w Workstation\Downloads\Náhrada TWIST Micro Duo leifheit-online.cz_files
2014-02-27 16:01 - 2014-02-27 16:01 - 00000110 ____H () C:\Users\HP 8710w Workstation\Downloads\image5.png.uid-zps
2014-02-27 15:30 - 2013-10-14 10:39 - 00000000 ____D () C:\Users\HP 8710w Workstation\Downloads\Pinnacle-Studio-16-Ultimate-16.0.1.98-CZ-Multilingual
2014-02-24 23:02 - 2014-02-24 23:02 - 02522143 _____ () C:\Users\HP 8710w Workstation\Downloads\Citizen Herren-Armbanduhr XL Super Titanium Chronograph Quarz Titan CA0340-55A Amazon.de Uhren.htm
2014-02-24 23:02 - 2014-02-24 23:02 - 00000000 ____D () C:\Users\HP 8710w Workstation\Downloads\Citizen Herren-Armbanduhr XL Super Titanium Chronograph Quarz Titan CA0340-55A Amazon.de Uhren_files
2014-02-21 21:13 - 2012-06-28 13:45 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-21 21:13 - 2012-04-19 17:30 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-21 21:13 - 2012-02-03 17:00 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-19 19:40 - 2014-02-19 19:27 - 147266000 _____ () C:\Users\HP 8710w Workstation\ts3_recording_14_02_19_19_27_19.wav
2014-02-19 10:41 - 2014-02-19 10:41 - 00000160 _____ () C:\Users\HP 8710w Workstation\Downloads\stažený soubor (1)
2014-02-19 10:41 - 2014-02-19 10:41 - 00000160 _____ () C:\Users\HP 8710w Workstation\Downloads\stažený soubor
2014-02-18 18:49 - 2012-05-11 19:15 - 00000000 ____D () C:\Windows\rescache
2014-02-18 13:55 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-02-18 09:56 - 2014-02-18 09:56 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433250.dll
2014-02-18 09:56 - 2014-02-18 09:56 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433250.dll
2014-02-18 09:33 - 2013-07-14 13:30 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-18 09:30 - 2012-02-03 23:59 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-16 14:31 - 2012-04-05 09:00 - 00003976 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-16 14:31 - 2012-04-05 09:00 - 00003724 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-16 09:29 - 2014-02-16 09:27 - 27098838 _____ () C:\Users\HP 8710w Workstation\Downloads\8.11_Crabtr33_XVM_CZ_modpack_v1.00.7z
2014-02-15 15:03 - 2014-02-15 15:03 - 00001058 _____ () C:\Users\Public\Desktop\Smart Defrag 3.lnk
2014-02-15 15:02 - 2013-08-29 15:37 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-02-13 00:10 - 2012-03-18 12:02 - 01560276 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-10 15:35 - 2009-07-14 06:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-02-08 18:42 - 2010-12-04 04:45 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-02-08 18:42 - 2009-06-23 11:59 - 06712608 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-02-08 18:42 - 2009-06-23 11:59 - 03498272 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-02-08 18:42 - 2009-06-23 11:59 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-02-08 18:42 - 2009-06-23 11:59 - 00923936 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-02-08 18:42 - 2009-06-23 11:59 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-02-07 20:55 - 2014-02-07 20:54 - 00000000 ____D () C:\Program Files\Virtual Audio Cable
2014-02-07 20:54 - 2014-02-07 20:54 - 00066728 _____ (Eugene V. Muzychenko) C:\Windows\system32\Drivers\vrtaucbl.sys
2014-02-06 13:16 - 2014-02-13 00:07 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-13 00:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-13 00:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-13 00:07 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-13 00:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-13 00:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-13 00:07 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-13 00:07 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 11:52 - 2014-02-13 00:07 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 11:49 - 2014-02-13 00:07 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-13 00:07 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-13 00:07 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-13 00:07 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-13 00:07 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-13 00:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-13 00:07 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 11:11 - 2014-02-13 00:07 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-13 00:07 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-13 00:07 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-13 00:07 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 10:57 - 2014-02-13 00:07 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:52 - 2014-02-13 00:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-13 00:07 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-13 00:07 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:49 - 2014-02-13 00:07 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-06 10:47 - 2014-02-13 00:07 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-13 00:07 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-13 00:07 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 10:25 - 2014-02-13 00:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 10:24 - 2014-02-13 00:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 10:22 - 2014-02-13 00:07 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-13 00:07 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-13 00:07 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-13 00:07 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-13 00:07 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-13 00:07 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-13 00:07 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-13 00:07 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-13 00:07 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-05 21:16 - 2013-05-19 20:39 - 00001747 _____ () C:\Users\HP 8710w Workstation\Desktop\Nový textový dokument.txt

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-28 13:23

==================== End Of Log ============================

[cedan]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-03-2014 01
Ran by HP 8710w Workstation at 2014-03-07 20:49:58
Running from C:\Users\HP 8710w Workstation\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: IObit Malware Fighter (Enabled - Up to date) {A751AC20-3B48-5237-898A-78C4436BB78D}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version: - Microsoft)
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\{FF2A5498-4EFE-430F-A138-7EB365DBEBAD}) (Version: 12.0.0.112 - Adobe Systems, Inc)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.2.122 - Adobe Systems, Inc.)
Advanced SystemCare 7 (HKLM-x32\...\Advanced SystemCare 7_is1) (Version: 7.1.0 - IObit)
Advanced Tactical Center™ 1.12 (HKLM-x32\...\ATC_is1) (Version: 1.1.2.0 - Foolish Entertainment)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
AuthenTec TrueSuite (HKLM\...\{E6C44758-FF49-47D1-8182-65E3818ACE23}) (Version: 2.0.0.57 - AuthenTec, Inc.)
Bandicam (HKLM-x32\...\Bandicam) (Version: - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - )
bob internet (HKLM-x32\...\bob internet) (Version: 1.16.1.0 - A1 Telekom Austria AG)
bob internet (x32 Version: 1.16.1.0 - A1 Telekom Austria AG) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.01 - Piriform)
Codec Pack - All In 1 6.0.3.0 (HKLM-x32\...\Cool's_Codec_pack_4.12) (Version: - )
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
DJIA3525FWUpdateAlert (x32 Version: 1.00.0000 - HP) Hidden
Dokan Library 0.6.0 (HKLM-x32\...\DokanLibrary) (Version: - )
Driver Booster (HKLM-x32\...\Driver Booster_is1) (Version: 1.2 - IObit)
Game Booster 3 (HKLM-x32\...\Game Booster_is1) (Version: 3.4 - IObit)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.2.53.5169 - Gretech Corporation)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.146 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
HP Deskjet 3520 series Nápověda (HKLM-x32\...\{D259C419-D776-4163-B27C-19722C555237}) (Version: 27.0.0 - Hewlett Packard)
HP Deskjet 3520 series Setup Guide (HKLM-x32\...\{AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}) (Version: 27.0.0 - Hewlett Packard)
HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.3341 - HP Photo Creations Powered by RocketLife)
HP Product Detection (HKLM-x32\...\{AF5D2519-C6B4-4AFD-9A8D-FBF74DD4F0A0}) (Version: 11.15.0004 - HP)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
HWiNFO32 Version 4.12 (HKLM-x32\...\HWiNFO32_is1) (Version: 4.12 - Martin Malík - REALiX)
HWiNFO64 Version 4.22 (HKLM\...\HWiNFO64_is1) (Version: 4.22 - Martin Malík - REALiX)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 18.7 - Intel)
IObit Malware Fighter (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 2.1 - IObit)
Java 7 Update 11 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417011FF}) (Version: 7.0.110 - Oracle)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416031FF}) (Version: 6.0.310 - Oracle)
Java(TM) 6 Update 35 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216033FF}) (Version: 6.0.350 - Oracle)
Malwarebytes Anti-Malware verze 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (CSY) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Antimalware Service CS-CZ Language Pack (Version: 3.0.8402.2 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Access MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (x32 Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Client CS-CZ Language Pack (Version: 2.1.1116.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 22.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 22.0 (x86 cs)) (Version: 22.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 22.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA 3D Vision Controller Driver (x32 Version: 275.33 - NVIDIA Corporation) Hidden
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.6128 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.145.1024 - NVIDIA Corporation) Hidden
NVIDIA nView 136.28 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 136.28 - NVIDIA Corporation)
NVIDIA nView Desktop Manager (HKLM\...\nView Desktop Manager) (Version: - )
NVIDIA nView Desktop Manager (Version: 6.14.10.13585 - NVIDIA Corporation) Hidden
NVIDIA Ovladač řídící jednotky 3D Vision 275.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 275.33 - NVIDIA Corporation)
NVIDIA PhysX (x32 Version: 9.10.0514 - NVIDIA Corporation) Hidden
NVIDIA Systémový software PhysX 9.10.0514 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.10.0514 - NVIDIA Corporation)
Ovládací panel NVIDIA 334.89 (Version: 334.89 - NVIDIA Corporation) Hidden
Ovladače videa společnosti Pinnacle (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems)
Pinnacle Studio 16 - Install Manager (HKLM-x32\...\{F1886CD7-9F73-417A-92E9-7E0AB0F0E099}) (Version: 16.0.75 - Avid Technology, Inc.)
Pinnacle Studio 16 (HKLM-x32\...\{284BFDBC-DAC6-43EC-85A8-E1CEC0D3A114}) (Version: 16.0.0.75 - Avid Technology, Inc.)
PokerStars.net (HKLM-x32\...\PokerStars.net) (Version: - PokerStars.net)
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
RICOH Media Driver (HKLM-x32\...\{F5CC2EF8-20A4-4366-A681-3FE849E65809}) (Version: 2.10.00.04 - RICOH)
Seznam Software (HKCU\...\SeznamInstall) (Version: - Seznam.cz)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Smart Defrag 3 (HKLM-x32\...\Smart Defrag 3_is1) (Version: 3.0 - IObit)
Snagit 11 (HKLM-x32\...\{68723B04-57EC-11E1-A6A8-9E2D4824019B}) (Version: 11.1.0 - TechSmith Corporation)
Soft Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_PCI_VEN_14F1&DEV_2C06_hpZ1379y) (Version: - )
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.24.0 - Synaptics Incorporated)
System Requirements Lab for Intel (HKLM-x32\...\{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}) (Version: 4.5.13.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.13.1 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.24322 - TeamViewer)
TomTom HOME (HKLM-x32\...\{9017CEAF-BE5A-4F73-8A0E-C87E26971E55}) (Version: 2.9.3 - Název společnosti:)
TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{A030537D-0034-46AD-A730-B1119786F607}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{128A5449-CF71-4DA4-A746-F49E3B5DB584}) (Version: - Microsoft)
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version: - )
WinRAR 4.10 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.10.0 - win.rar GmbH)
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)
Youtube Downloader HD v. 2.9.9.7 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com)
Základní software zařízení HP Deskjet 3520 series (HKLM\...\{77B131D6-3AE7-4983-9ABC-71A912C7D445}) (Version: 27.0.847.0 - Hewlett-Packard Co.)
Zoner Photo Studio 16 (HKLM\...\ZonerPhotoStudio16_CZ_is1) (Version: 16.0.1.2 - ZONER software)

==================== Restore Points =========================

01-03-2014 07:37:45 Driver Booster : NVIDIA Quadro FX 1600M
01-03-2014 08:11:33 Windows Update
05-03-2014 15:18:41 Windows Update
06-03-2014 04:26:13 Windows Update
06-03-2014 22:52:59 zoek.exe restore point

==================== Hosts content: ==========================

2009-07-14 03:34 - 2014-03-06 23:53 - 00000840 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {1EC6591F-FA35-4E8E-A660-EE5D1F8805C0} - \Driver Booster Update No Task File
Task: {318E456D-8CF7-4B16-9A5A-F891143B5AD6} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-01-10] (IObit)
Task: {4158338E-31C8-455B-A694-EFFEA49F4A28} - System32\Tasks\ASC7_SkipUac_HP 8710w Workstation => C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASC.exe [2013-12-16] (IObit)
Task: {4DDECEBD-4B2D-4C20-8037-2F5E6E442D60} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-04-23] (Piriform Ltd)
Task: {6602258D-E2C7-49C1-9037-545853CFA487} - System32\Tasks\ASC7_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe [2013-12-03] (IObit)
Task: {6691CA33-CFEE-4D28-ADAB-F3DDB8DCDC0C} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe [2013-09-04] ()
Task: {A476AB6A-574C-4BBE-919E-E2F8A365F3EA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-04-05] (Google Inc.)
Task: {A9DEE520-6A23-4FD9-8EC4-3D072A4F10B5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21] (Adobe Systems Incorporated)
Task: {D3395A84-5015-4ADA-A413-E6000BF6BF98} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-04-05] (Google Inc.)
Task: {DCB4B869-FC03-42B7-9A7F-7549C7B66564} - System32\Tasks\Norton Product InstallerIdle => C:\Windows\SysWOW64\Adobe\Shockwave 11\SymInstallStub.exe
Task: {F7845A9F-317C-4828-8409-8C9AED952C51} - \Dealply No Task File
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Norton Product InstallerIdle.job => C:\Windows\SysWOW64\Adobe\Shockwave 11\SymInstallStub.exe

==================== Loaded Modules (whitelisted) =============

2012-07-20 06:53 - 2014-02-08 18:42 - 00117024 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-02-03 13:45 - 2012-05-18 23:53 - 00380736 _____ () C:\Program Files\NVIDIA Corporation\nview\nvshell.dll
2012-03-17 10:30 - 2012-01-09 19:44 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
2011-01-10 13:49 - 2011-01-10 13:49 - 00014848 _____ () C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
2012-07-30 15:13 - 2013-10-27 10:23 - 00302056 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2012-07-30 15:13 - 2013-10-27 10:23 - 00320488 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2011-05-10 14:48 - 2013-10-27 10:23 - 00565224 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2013-09-11 14:30 - 2013-10-27 10:23 - 00700904 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2014-01-29 16:19 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\madExcept_.bpl
2014-01-29 16:19 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\madBasic_.bpl
2014-01-29 16:19 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\madDisAsm_.bpl
2014-01-29 16:19 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\webres.dll
2013-08-31 22:06 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\madExcept_.bpl
2013-08-31 22:06 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\madBasic_.bpl
2013-08-31 22:06 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\madDisAsm_.bpl
2013-08-31 22:06 - 2013-12-12 18:46 - 08001344 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\WebUI.dll
2013-12-04 15:00 - 2013-10-16 22:17 - 00185168 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\libcurl-4.dll
2013-08-31 22:06 - 2013-05-16 19:26 - 00182080 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\unrar.dll
2013-08-31 22:06 - 2013-05-16 19:26 - 00145216 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\zlibwapi.dll
2014-01-03 20:14 - 2013-12-17 15:43 - 00327680 _____ () C:\Games\World_of_Tanks\voip.dll
2014-01-03 20:14 - 2013-12-17 15:43 - 00321520 _____ () C:\Games\World_of_Tanks\ortp.dll
2014-01-03 20:14 - 2013-12-17 15:43 - 00270336 _____ () C:\Games\World_of_Tanks\libcurl.dll
2014-01-03 20:14 - 2013-12-17 15:43 - 00386600 _____ () C:\Games\World_of_Tanks\NxCooking.dll
2014-01-03 20:14 - 2013-12-17 15:43 - 00071208 _____ () C:\Games\World_of_Tanks\PhysXLoader.dll
2014-03-04 17:55 - 2014-03-02 03:35 - 00051016 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\chrome_elf.dll
2014-03-04 17:55 - 2014-03-02 03:35 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\libglesv2.dll
2014-03-04 17:55 - 2014-03-02 03:35 - 00100168 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\libegl.dll
2014-03-04 17:55 - 2014-03-02 03:35 - 04061000 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\pdf.dll
2014-03-04 17:55 - 2014-03-02 03:35 - 00394568 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\ppGoogleNaClPluginChrome.dll
2014-03-04 17:55 - 2014-03-02 03:35 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\HP 8710w Workstation\Downloads\message_4152.eml:OECustomProperty

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Snagit 11.lnk => C:\Windows\pss\Snagit 11.lnk.CommonStartup
MSCONFIG\startupreg: cz.seznam.software.autoupdate => "C:\Users\HP 8710w Workstation\AppData\Roaming\Seznam.cz\szninstall.exe" -c
MSCONFIG\startupreg: cz.seznam.software.szndesktop => "C:\Users\HP 8710w Workstation\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: seznam-listicka-distribuce => "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: TomTomHOME.exe => "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
MSCONFIG\startupreg: Zoner Photo Studio Service 16 => "C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe"

==================== Faulty Device Manager Devices =============

Name: Řadič jednoduché komunikace pro sběrnici PCI
Description: Řadič jednoduché komunikace pro sběrnici PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Sériový port sběrnice PCI
Description: Sériový port sběrnice PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (02/18/2014 10:02:06 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Služba Šifrování neinicializovala databázi katalogu. Chyba součásti ESENT: -528.

Error: (02/18/2014 10:02:06 AM) (Source: ESENT) (User: )
Description: Catalog Database (1240) Catalog Database: Při otevírání souboru protokolu C:\Windows\system32\CatRoot2\edb.log došlo k chybě -1811 (0xfffff8ed).

Error: (02/15/2014 05:50:11 PM) (Source: IMFservice) (User: )
Description: Neplatný popisovač

Error: (02/05/2014 11:40:39 PM) (Source: IMFservice) (User: )
Description: Neplatný popisovač

Error: (02/05/2014 11:40:39 PM) (Source: IMFservice) (User: )
Description: Neplatný popisovač

Error: (01/29/2014 04:15:54 PM) (Source: RasClient) (User: )
Description: CoID={813451BE-6B5F-4AA8-8136-33987B070433}: Uživatel PC\HP 8710w Workstation vytočil připojení s názvem bob, které se nezdařilo. Kód chyby vrácený při selhání je 633.

Error: (01/27/2014 08:47:05 PM) (Source: .NET Runtime) (User: )
Description: Aplikace: NGStudio.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: kód výjimky c0000005, adresa výjimky 5F12B4BF

Error: (01/27/2014 00:11:51 AM) (Source: Application Hang) (User: )
Description: Program ts3client_win64.exe verze 3.0.13.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: afc

Čas spuštění: 01cf1a8800b6bbb6

Čas ukončení: 78

Cesta k aplikaci: C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe

ID hlášení: 2a75f4d9-86df-11e3-bc64-00218609dcde

Error: (01/16/2014 05:17:08 PM) (Source: IMFservice) (User: )
Description: Neplatný popisovač

Error: (01/16/2014 05:17:08 PM) (Source: IMFservice) (User: )
Description: Neplatný popisovač


System errors:
=============
Error: (03/07/2014 08:49:33 PM) (Source: Disk) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (03/07/2014 07:45:45 PM) (Source: Disk) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (03/07/2014 07:45:42 PM) (Source: Disk) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (03/07/2014 07:45:38 PM) (Source: Disk) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (03/07/2014 07:45:35 PM) (Source: Disk) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (03/07/2014 07:45:32 PM) (Source: Disk) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (03/07/2014 07:45:28 PM) (Source: Disk) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (03/07/2014 07:44:26 PM) (Source: Service Control Manager) (User: )
Description: Služba Zprostředkovatel domácích skupin závisí na službě Hostitel poskytovatele rozpoznávání funkce, která neuspěla při spuštění v důsledku následující chyby:
%%1058

Error: (03/07/2014 07:31:14 PM) (Source: Disk) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (03/07/2014 07:31:11 PM) (Source: Disk) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.


Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Percentage of memory in use: 61%
Total physical RAM: 4031.3 MB
Available physical RAM: 1551.13 MB
Total Pagefile: 8060.79 MB
Available Pagefile: 4844.88 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.78 GB) (Free:3.69 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive f: (DV M23_SD) (Removable) (Total:3.69 GB) (Free:0.02 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: B0C9B0C9)

Partition: GPT Partition Type.

========================================================
Disk: 1 (Size: 4 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End Of Log ============================

[cedan]

:/ udelal jsem neco spatne ze jsem jeste nedostal odpoved? nebo uz ten log je kompletni a tim padem jiz cele toto tema vyresene?

[vyosek]

Omlouvam se, mel jsem pracovni zalezitosti

Odinstalujte IObit Malware Fighter a Advanced SystemCare 7 - jsou to kramy a delaji jen skodu nez uzitek

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  HKLM\...\Run: [] - [X]
  HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
  HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
  HKLM-x32\...\Run: [IObit Malware Fighter] - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [1573184 2013-12-13] (IObit)
  HKLM-x32\...\Run: [] - [X]
  Winlogon\Notify\ScCertProp: wlnotify.dll [X]
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\Run: [HP Deskjet 3520 series (NET)] - C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2551656 2012-01-31] (Hewlett-Packard Co.)
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\Run: [Zoner Photo Studio Autoupdate] - C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [800280 2013-09-16] (ZONER software)
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: E - E:\AutoRun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: F - F:\Autorun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: G - G:\Autorun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {139c7562-8b52-11e2-91f9-001f3b41b05d} - F:\.\Autorun.exe AUTORUN=1
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {139c7571-8b52-11e2-91f9-001f3b41b05d} - F:\.\Autorun.exe AUTORUN=1
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {2acfa570-d04d-11e1-9856-00218609dcde} - F:\AutoRun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {2b7145e4-d0f8-11e1-988e-00218609dcde} - F:\AutoRun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {2b71460b-d0f8-11e1-988e-00218609dcde} - E:\AutoRun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {3f440a7d-cf81-11e1-9894-00218609dcde} - E:\AutoRun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {440d9b1f-bee5-11e1-9ed7-00218609dcde} - E:\AutoRun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {440d9b2f-bee5-11e1-9ed7-00218609dcde} - E:\AutoRun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {61b65efc-d10c-11e1-98ab-00218609dcde} - E:\AutoRun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {61b65f33-d10c-11e1-98ab-00218609dcde} - E:\AutoRun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {61b65f3d-d10c-11e1-98ab-00218609dcde} - E:\AutoRun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {6b4d171d-8e22-11e1-9e73-00218609dcde} - E:\AutoRun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {824008d1-83f2-11e1-922a-00218609dcde} - E:\AutoRun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {824008d9-83f2-11e1-922a-00218609dcde} - E:\AutoRun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {979ab722-d0f7-11e1-98f1-00218609dcde} - F:\AutoRun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {a25c2f9c-d1ac-11e1-9ee3-00218609dcde} - G:\Autorun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {a3b5fada-cf82-11e1-98ec-00218609dcde} - E:\AutoRun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {b4052603-cf6b-11e1-a62f-00218609dcde} - E:\AutoRun.exe
  HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {d6f6ebab-8a71-11e2-ac22-00218609dcde} - F:\.\Autorun.exe AUTORUN=1
  
  FF SearchPlugin: C:\Users\HP 8710w Workstation\AppData\Roaming\Mozilla\Firefox\Profiles\ne98b4cd.default\searchplugins\yahoo_ff.xml
  FF Extension: Ads Removal - C:\Users\HP 8710w Workstation\AppData\Roaming\Mozilla\Firefox\Profiles\ne98b4cd.default\Extensions\adsremoval@adsremoval.net [2014-03-07]
  
  CHR Extension: (Ads Removal) - C:\Users\HP 8710w Workstation\AppData\Local\Google\Chrome\User Data\Default\Extensions\fopdddcinljmpmioaklghcalngfhbaen [2014-03-07]
  
  R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [341824 2013-11-11] (IObit)
  R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2013-03-23] (IObit)
  R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2013-11-19] (IObit.com)
  R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2013-11-19] (IObit.com)
  S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
  S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
  S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
  S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
  S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
  S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
  S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
  S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
  S3 hwusbfake; system32\DRIVERS\ewusbfake.sys [X]
  
  2014-03-07 02:49 - 2014-03-06 23:51 - 00024064 _____ () C:\Windows\zoek-delete.exe
  2014-03-06 23:52 - 2014-03-07 05:17 - 00015988 _____ () C:\zoek-results.log
  2014-03-06 23:51 - 2014-03-07 02:05 - 00000000 ____D () C:\zoek_backup
  2014-03-06 23:51 - 2014-03-06 23:51 - 01284608 _____ () C:\Users\HP 8710w Workstation\Downloads\zoek.exe
  2014-03-06 22:59 - 2014-03-06 22:59 - 01244192 _____ () C:\Users\HP 8710w Workstation\Downloads\adwcleaner.exe
  2014-03-06 08:12 - 2014-03-06 08:13 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\HP 8710w Workstation\Downloads\mbam-setup.exe
  2014-03-06 08:12 - 2014-03-06 08:13 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\HP 8710w Workstation\Downloads\mbam-setup.exe
  C:\Program Files (x86)\IObit
  
  Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\Norton Product InstallerIdle.job => C:\Windows\SysWOW64\Adobe\Shockwave 11\SymInstallStub.exe
  
  Hosts:
  CMD: shutdown /r /f /t 2
  
  End

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[cedan]

Vse dle doporuceni jsem odinstaloval jak IOBit tak i Advanced system care. Restartoval PC a udelal ten FIXLIST dle navodu.
Jen doufam ze jsem to udelal spravne protoze ten LOG vybehl jeste pred tim nez jsem to musel restartovat rucne

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-03-2014 01
Ran by HP 8710w Workstation at 2014-03-09 10:48:41 Run:1
Running from C:\Users\HP 8710w Workstation\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [] - [X]
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [IObit Malware Fighter] - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [1573184 2013-12-13] (IObit)
HKLM-x32\...\Run: [] - [X]
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\Run: [HP Deskjet 3520 series (NET)] - C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2551656 2012-01-31] (Hewlett-Packard Co.)
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\Run: [Zoner Photo Studio Autoupdate] - C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [800280 2013-09-16] (ZONER software)
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: E - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: F - F:\Autorun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: G - G:\Autorun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {139c7562-8b52-11e2-91f9-001f3b41b05d} - F:\.\Autorun.exe AUTORUN=1
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {139c7571-8b52-11e2-91f9-001f3b41b05d} - F:\.\Autorun.exe AUTORUN=1
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {2acfa570-d04d-11e1-9856-00218609dcde} - F:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {2b7145e4-d0f8-11e1-988e-00218609dcde} - F:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {2b71460b-d0f8-11e1-988e-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {3f440a7d-cf81-11e1-9894-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {440d9b1f-bee5-11e1-9ed7-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {440d9b2f-bee5-11e1-9ed7-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {61b65efc-d10c-11e1-98ab-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {61b65f33-d10c-11e1-98ab-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {61b65f3d-d10c-11e1-98ab-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {6b4d171d-8e22-11e1-9e73-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {824008d1-83f2-11e1-922a-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {824008d9-83f2-11e1-922a-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {979ab722-d0f7-11e1-98f1-00218609dcde} - F:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {a25c2f9c-d1ac-11e1-9ee3-00218609dcde} - G:\Autorun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {a3b5fada-cf82-11e1-98ec-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {b4052603-cf6b-11e1-a62f-00218609dcde} - E:\AutoRun.exe
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\...\MountPoints2: {d6f6ebab-8a71-11e2-ac22-00218609dcde} - F:\.\Autorun.exe AUTORUN=1

FF SearchPlugin: C:\Users\HP 8710w Workstation\AppData\Roaming\Mozilla\Firefox\Profiles\ne98b4cd.default\searchplugins\yahoo_ff.xml
FF Extension: Ads Removal - C:\Users\HP 8710w Workstation\AppData\Roaming\Mozilla\Firefox\Profiles\ne98b4cd.default\Extensions\adsremoval@adsremoval.net [2014-03-07]

CHR Extension: (Ads Removal) - C:\Users\HP 8710w Workstation\AppData\Local\Google\Chrome\User Data\Default\Extensions\fopdddcinljmpmioaklghcalngfhbaen [2014-03-07]

R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [341824 2013-11-11] (IObit)
R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2013-03-23] (IObit)
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2013-11-19] (IObit.com)
R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2013-11-19] (IObit.com)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbfake; system32\DRIVERS\ewusbfake.sys [X]

2014-03-07 02:49 - 2014-03-06 23:51 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-03-06 23:52 - 2014-03-07 05:17 - 00015988 _____ () C:\zoek-results.log
2014-03-06 23:51 - 2014-03-07 02:05 - 00000000 ____D () C:\zoek_backup
2014-03-06 23:51 - 2014-03-06 23:51 - 01284608 _____ () C:\Users\HP 8710w Workstation\Downloads\zoek.exe
2014-03-06 22:59 - 2014-03-06 22:59 - 01244192 _____ () C:\Users\HP 8710w Workstation\Downloads\adwcleaner.exe
2014-03-06 08:12 - 2014-03-06 08:13 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\HP 8710w Workstation\Downloads\mbam-setup.exe
2014-03-06 08:12 - 2014-03-06 08:13 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\HP 8710w Workstation\Downloads\mbam-setup.exe
C:\Program Files (x86)\IObit

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Norton Product InstallerIdle.job => C:\Windows\SysWOW64\Adobe\Shockwave 11\SymInstallStub.exe

Hosts:
CMD: shutdown /r /f /t 2

End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\HP Software Update => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\IObit Malware Fighter => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp => Key deleted successfully.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\Software\Microsoft\Windows\CurrentVersion\Run\\HP Deskjet 3520 series (NET) => Value deleted successfully.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Zoner Photo Studio Autoupdate => Value deleted successfully.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-3878015499-2240099498-1799337887-1000 => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-3878015499-2240099498-1799337887-1000 => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-3878015499-2240099498-1799337887-1000 => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{139c7562-8b52-11e2-91f9-001f3b41b05d} => Key deleted successfully.
HKCR\CLSID\{139c7562-8b52-11e2-91f9-001f3b41b05d} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{139c7571-8b52-11e2-91f9-001f3b41b05d} => Key deleted successfully.
HKCR\CLSID\{139c7571-8b52-11e2-91f9-001f3b41b05d} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2acfa570-d04d-11e1-9856-00218609dcde} => Key deleted successfully.
HKCR\CLSID\{2acfa570-d04d-11e1-9856-00218609dcde} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2b7145e4-d0f8-11e1-988e-00218609dcde} => Key deleted successfully.
HKCR\CLSID\{2b7145e4-d0f8-11e1-988e-00218609dcde} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2b71460b-d0f8-11e1-988e-00218609dcde} => Key deleted successfully.
HKCR\CLSID\{2b71460b-d0f8-11e1-988e-00218609dcde} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3f440a7d-cf81-11e1-9894-00218609dcde} => Key deleted successfully.
HKCR\CLSID\{3f440a7d-cf81-11e1-9894-00218609dcde} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{440d9b1f-bee5-11e1-9ed7-00218609dcde} => Key deleted successfully.
HKCR\CLSID\{440d9b1f-bee5-11e1-9ed7-00218609dcde} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{440d9b2f-bee5-11e1-9ed7-00218609dcde} => Key deleted successfully.
HKCR\CLSID\{440d9b2f-bee5-11e1-9ed7-00218609dcde} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{61b65efc-d10c-11e1-98ab-00218609dcde} => Key deleted successfully.
HKCR\CLSID\{61b65efc-d10c-11e1-98ab-00218609dcde} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{61b65f33-d10c-11e1-98ab-00218609dcde} => Key deleted successfully.
HKCR\CLSID\{61b65f33-d10c-11e1-98ab-00218609dcde} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{61b65f3d-d10c-11e1-98ab-00218609dcde} => Key deleted successfully.
HKCR\CLSID\{61b65f3d-d10c-11e1-98ab-00218609dcde} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b4d171d-8e22-11e1-9e73-00218609dcde} => Key deleted successfully.
HKCR\CLSID\{6b4d171d-8e22-11e1-9e73-00218609dcde} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{824008d1-83f2-11e1-922a-00218609dcde} => Key deleted successfully.
HKCR\CLSID\{824008d1-83f2-11e1-922a-00218609dcde} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{824008d9-83f2-11e1-922a-00218609dcde} => Key deleted successfully.
HKCR\CLSID\{824008d9-83f2-11e1-922a-00218609dcde} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{979ab722-d0f7-11e1-98f1-00218609dcde} => Key deleted successfully.
HKCR\CLSID\{979ab722-d0f7-11e1-98f1-00218609dcde} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a25c2f9c-d1ac-11e1-9ee3-00218609dcde} => Key deleted successfully.
HKCR\CLSID\{a25c2f9c-d1ac-11e1-9ee3-00218609dcde} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a3b5fada-cf82-11e1-98ec-00218609dcde} => Key deleted successfully.
HKCR\CLSID\{a3b5fada-cf82-11e1-98ec-00218609dcde} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b4052603-cf6b-11e1-a62f-00218609dcde} => Key deleted successfully.
HKCR\CLSID\{b4052603-cf6b-11e1-a62f-00218609dcde} => Key not found.
HKU\S-1-5-21-3878015499-2240099498-1799337887-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d6f6ebab-8a71-11e2-ac22-00218609dcde} => Key deleted successfully.
HKCR\CLSID\{d6f6ebab-8a71-11e2-ac22-00218609dcde} => Key not found.
C:\Users\HP 8710w Workstation\AppData\Roaming\Mozilla\Firefox\Profiles\ne98b4cd.default\searchplugins\yahoo_ff.xml => Moved successfully.
C:\Users\HP 8710w Workstation\AppData\Roaming\Mozilla\Firefox\Profiles\ne98b4cd.default\Extensions\adsremoval@adsremoval.net => Moved successfully.
C:\Users\HP 8710w Workstation\AppData\Local\Google\Chrome\User Data\Default\Extensions\fopdddcinljmpmioaklghcalngfhbaen => Moved successfully.
IMFservice => Service not found.
FileMonitor => Service not found.
RegFilter => Service not found.
UrlFilter => Service not found.
WinRing0_1_2_0 => Service deleted successfully.
ew_hwusbdev => Service deleted successfully.
ew_usbenumfilter => Service deleted successfully.
huawei_cdcacm => Service deleted successfully.
huawei_enumerator => Service deleted successfully.
huawei_ext_ctrl => Service deleted successfully.
huawei_wwanecm => Service deleted successfully.
hwdatacard => Service deleted successfully.
hwusbfake => Service deleted successfully.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\HP 8710w Workstation\Downloads\zoek.exe => Moved successfully.
C:\Users\HP 8710w Workstation\Downloads\adwcleaner.exe => Moved successfully.
C:\Users\HP 8710w Workstation\Downloads\mbam-setup.exe => Moved successfully.
"C:\Users\HP 8710w Workstation\Downloads\mbam-setup.exe" => File/Directory not found.
"C:\Program Files (x86)\IObit" => File/Directory not found.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\Norton Product InstallerIdle.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r /f /t 2 =========


========= End of CMD: =========


==== End of Fixlog ====

[vyosek]

Tak jeste uklidime

T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Napiste jak se chova ntb