Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:11-05-2014 01
Ran by Lipicek (administrator) on LIPICKOVI on 12-05-2014 22:12:15
Running from C:\Users\Lipicek\Downloads
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST:
http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(IObit) C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare 7\Monitor.exe
(IObit) C:\Program Files\IObit\Smart Defrag 3\SmartDefrag.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe
(Sony) C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe
() C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe
() C:\Users\Lipicek\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare 7\ASC.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(C. Ghisler & Co.) C:\totalcmd\TOTALCMD.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5110672 2013-09-12] (ESET)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-279618919-707270848-677470778-1001\...\Run: [Advanced SystemCare 7] => C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe [2285344 2013-12-18] (IObit)
HKU\S-1-5-21-279618919-707270848-677470778-1001\...\Run: [Sony PC Companion] => C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [449760 2013-10-31] (Sony)
HKU\S-1-5-21-279618919-707270848-677470778-1001\...\Run: [86474004B45898B4256EC1FDBC78A82E4D0EF17C._service_run] => C:\Program Files\Google\Chrome\Application\chrome.exe [841032 2014-04-24] (Google Inc.)
HKU\S-1-5-21-279618919-707270848-677470778-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-279618919-707270848-677470778-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Lipicek\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-279618919-707270848-677470778-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Lipicek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
==================== Internet (Whitelisted) ====================
URLSearchHook: HKCU - (No Name) - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - No File
SearchScopes: HKCU - {22F783F9-7F24-4995-9B95-6E01F96771AB} URL =
http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKCU - {3BB40C40-4881-412A-89D6-BE718DB3DB64} URL =
http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKCU - {3FC87F42-9B8A-45C0-9F78-FD54702B3821} URL =
http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKCU - {6AB6768D-0468-4DCB-B10C-BEC297302466} URL =
http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {7E7F838D-3B8A-411A-A81A-1246690D204D} URL =
http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKCU - {81D4241C-2E95-46F0-BDAC-77B0F0531036} URL =
http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKCU - {A4BCEE4B-56A4-44ED-9841-EA247098B599} URL =
http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKCU - {EC1001A6-D5C1-47EB-84B5-15D2D232E1F1} URL =
http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKCU - {F07053E8-F74B-4751-9676-3C43B8080C07} URL =
http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Lipicek\AppData\Roaming\Mozilla\Firefox\Profiles\r322mpa7.default
FF user.js: detected! => C:\Users\Lipicek\AppData\Roaming\Mozilla\Firefox\Profiles\r322mpa7.default\user.js
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Lipicek\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Apps Hat - C:\Users\Lipicek\AppData\Roaming\Mozilla\Firefox\Profiles\r322mpa7.default\Extensions\
39ed7c16-185d-4f88-b976-666d4928ba01@fe4550c1-7a4f-4a62-ad1c-45e0afdf81a4.com [2014-04-08]
FF Extension: Seznam lištička - C:\Users\Lipicek\AppData\Roaming\Mozilla\Firefox\Profiles\r322mpa7.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-05-12]
FF HKLM\...\Thunderbird\Extensions: [
eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-02-15]
Chrome:
=======
CHR HomePage: hxxp://
www.seznam.cz/?clid=13415
CHR DefaultSearchKeyword: yahoo.com search
CHR DefaultSearchProvider: Yahoo
CHR DefaultSearchURL:
http://search.yahoo.com/search?fr=chr-g ... earchTerms}
CHR DefaultNewTabURL:
CHR Extension: (Dokumenty Google) - C:\Users\Lipicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-16]
CHR Extension: (Disk Google) - C:\Users\Lipicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-16]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Lipicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2014-02-16]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Lipicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2014-02-16]
CHR Extension: (YouTube) - C:\Users\Lipicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-16]
CHR Extension: (Vyhledávání Google) - C:\Users\Lipicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-16]
CHR Extension: (Box - 10GB of FREE storage) - C:\Users\Lipicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejnkaeblpdcamcioiiabclakabcbjmbl [2014-02-16]
CHR Extension: (AdBlock) - C:\Users\Lipicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-02-16]
CHR Extension: (Ads Removal) - C:\Users\Lipicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcefkcdkepgkpbgncjchhbjgoanleod [2014-02-16]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Lipicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-02-16]
CHR Extension: (Domain Error Assistant) - C:\Users\Lipicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-02-16]
CHR Extension: (Slick Savings) - C:\Users\Lipicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-02-16]
CHR Extension: (Advanced SystemCare Surfing Protection) - C:\Users\Lipicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd [2014-02-16]
CHR Extension: (Peněženka Google) - C:\Users\Lipicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-16]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Lipicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-02-16]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Lipicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-02-16]
CHR Extension: (Gmail) - C:\Users\Lipicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-16]
CHR HKLM\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files\Common Files\Spigot\GC\saebay_1.1.crx [2013-10-14]
CHR HKLM\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files\Common Files\Spigot\GC\ErrorAssistant_1.3.crx [2013-12-27]
CHR HKLM\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files\Common Files\Spigot\GC\coupons_2.4.crx [2013-04-26]
CHR HKLM\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx [2014-02-16]
CHR HKLM\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files\Common Files\Spigot\GC\saamazon_1.0.crx [2012-11-22]
========================== Services (Whitelisted) =================
R2 AdvancedSystemCareService7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [881440 2013-12-09] (IObit)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1337752 2013-09-12] (ESET)
S4 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2151744 2014-02-16] (IObit)
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)
==================== Drivers (Whitelisted) ====================
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-03-02] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [188808 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [134248 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [174400 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [37416 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [49240 2013-09-17] (ESET)
S3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [145280 2014-02-16] (ITE )
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [18624 2013-12-24] (IObit)
S2 Aspi32; System32\drivers\aspi32.sys [X]
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [48128 2009-07-14] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-05-12 22:12 - 2014-05-12 22:12 - 00013544 _____ () C:\Users\Lipicek\Downloads\FRST.txt
2014-05-12 22:12 - 2014-05-12 22:12 - 00000000 ____D () C:\FRST
2014-05-12 22:11 - 2014-05-12 22:11 - 01056256 _____ (Farbar) C:\Users\Lipicek\Downloads\FRST.exe
2014-05-12 21:49 - 2014-05-12 21:49 - 00139406 _____ () C:\Users\Lipicek\Desktop\Mozilla.xml
2014-05-03 21:18 - 2014-05-04 19:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-05-03 21:18 - 2014-05-03 21:18 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-03 21:17 - 2014-05-05 15:50 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-05-03 21:16 - 2014-04-14 04:11 - 00361984 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-03 21:16 - 2014-04-14 04:07 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-02 23:30 - 2014-04-29 14:48 - 17384448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-02 23:30 - 2014-04-29 14:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-02 19:01 - 2014-03-06 10:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-02 19:01 - 2014-03-06 10:02 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-02 19:01 - 2014-03-06 10:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-02 19:01 - 2014-03-06 10:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-02 19:01 - 2014-03-06 09:47 - 02178048 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-02 19:01 - 2014-03-06 09:46 - 04254720 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-02 19:01 - 2014-03-06 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-02 19:01 - 2014-03-06 09:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-02 19:01 - 2014-03-06 09:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-02 19:01 - 2014-03-06 09:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-02 19:01 - 2014-03-06 09:38 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-02 19:01 - 2014-03-06 09:36 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-02 19:01 - 2014-03-06 09:28 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-02 19:01 - 2014-03-06 09:22 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-02 19:01 - 2014-03-06 09:18 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-02 19:01 - 2014-03-06 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-02 19:01 - 2014-03-06 09:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-02 19:01 - 2014-03-06 09:01 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-02 19:01 - 2014-03-06 08:46 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-02 19:01 - 2014-03-06 08:40 - 01967104 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-02 19:01 - 2014-03-06 08:36 - 11745792 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-02 19:01 - 2014-03-06 07:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-02 19:01 - 2014-03-06 07:41 - 01789440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-02 19:01 - 2014-03-06 07:36 - 01143808 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-22 21:48 - 2014-04-22 21:48 - 00000000 ____D () C:\Users\Lipicek\AppData\Roaming\Unity
2014-04-22 21:39 - 2014-04-22 21:39 - 00000000 ____D () C:\Users\Lipicek\AppData\Local\Unity
2014-04-22 21:35 - 2014-04-22 21:35 - 00000000 ____D () C:\Users\Lipicek\AppData\Roaming\Oracle
2014-04-22 21:21 - 2014-04-22 21:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-04-22 21:21 - 2014-04-14 20:13 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-04-22 21:21 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-04-22 21:21 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-04-22 21:21 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-04-22 21:20 - 2014-04-22 21:21 - 00004117 _____ () C:\Windows\system32\jupdate-1.7.0_55-b14.log
==================== One Month Modified Files and Folders =======
2014-05-12 22:12 - 2014-05-12 22:12 - 00013544 _____ () C:\Users\Lipicek\Downloads\FRST.txt
2014-05-12 22:12 - 2014-05-12 22:12 - 00000000 ____D () C:\FRST
2014-05-12 22:11 - 2014-05-12 22:11 - 01056256 _____ (Farbar) C:\Users\Lipicek\Downloads\FRST.exe
2014-05-12 21:49 - 2014-05-12 21:49 - 00139406 _____ () C:\Users\Lipicek\Desktop\Mozilla.xml
2014-05-12 21:35 - 2014-03-01 14:26 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-12 21:28 - 2014-03-26 20:18 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf491fcddd9fb3.job
2014-05-12 21:26 - 2009-07-14 06:34 - 00021296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-12 21:26 - 2009-07-14 06:34 - 00021296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-12 21:24 - 2014-03-11 17:04 - 40333312 _____ () C:\Windows\system32\config\SOFTWARE.iobit
2014-05-12 21:24 - 2014-03-11 17:04 - 00249856 _____ () C:\Windows\system32\config\DEFAULT.iobit
2014-05-12 21:24 - 2014-03-11 17:04 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iobit
2014-05-12 21:24 - 2014-03-11 17:04 - 00024576 _____ () C:\Windows\system32\config\SAM.iobit
2014-05-12 21:24 - 2014-03-02 18:53 - 00000000 ____D () C:\Users\Lipicek\AppData\Roaming\Seznam.cz
2014-05-12 21:24 - 2014-02-15 22:38 - 00000000 ____D () C:\Users\Lipicek
2014-05-12 21:24 - 2010-11-20 23:01 - 01582262 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-12 21:19 - 2014-02-16 00:11 - 00000938 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-12 21:19 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-12 21:10 - 2014-02-15 23:54 - 00000000 ____D () C:\Lipicek
2014-05-12 16:09 - 2014-02-15 22:31 - 01418811 _____ () C:\Windows\WindowsUpdate.log
2014-05-05 15:50 - 2014-05-03 21:17 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-05-04 19:01 - 2014-05-03 21:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-05-04 10:09 - 2014-02-26 19:53 - 00000000 ____D () C:\Users\Lipicek\AppData\Roaming\MOBILedit
2014-05-03 21:18 - 2014-05-03 21:18 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-02 22:00 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-05-02 09:35 - 2014-02-18 22:56 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-05-02 09:35 - 2014-02-18 22:56 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-05-02 09:34 - 2014-02-16 00:15 - 00002129 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-04-29 14:48 - 2014-05-02 23:30 - 17384448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-29 14:34 - 2014-05-02 23:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-22 21:48 - 2014-04-22 21:48 - 00000000 ____D () C:\Users\Lipicek\AppData\Roaming\Unity
2014-04-22 21:39 - 2014-04-22 21:39 - 00000000 ____D () C:\Users\Lipicek\AppData\Local\Unity
2014-04-22 21:35 - 2014-04-22 21:35 - 00000000 ____D () C:\Users\Lipicek\AppData\Roaming\Oracle
2014-04-22 21:26 - 2014-02-26 18:33 - 00000000 ____D () C:\ProgramData\Oracle
2014-04-22 21:21 - 2014-04-22 21:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-04-22 21:21 - 2014-04-22 21:20 - 00004117 _____ () C:\Windows\system32\jupdate-1.7.0_55-b14.log
2014-04-22 21:21 - 2014-02-26 18:25 - 00000000 ____D () C:\Program Files\Java
2014-04-19 08:03 - 2014-03-11 23:42 - 39620608 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2014-04-19 08:03 - 2014-03-11 23:42 - 00249856 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak
2014-04-19 08:03 - 2014-03-11 23:42 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak
2014-04-19 08:03 - 2014-03-11 23:42 - 00024576 _____ () C:\Windows\system32\config\SAM.iodefrag.bak
2014-04-16 14:56 - 2014-03-07 20:37 - 00000000 ____D () C:\FFOutput
2014-04-16 14:27 - 2014-03-03 19:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Moborobo
2014-04-16 14:27 - 2014-03-03 19:39 - 00000000 ____D () C:\Program Files\Moborobo
2014-04-14 20:13 - 2014-04-22 21:21 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-04-14 20:05 - 2014-04-22 21:21 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-04-14 20:05 - 2014-04-22 21:21 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-04-14 20:04 - 2014-04-22 21:21 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-04-14 04:11 - 2014-05-03 21:16 - 00361984 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-14 04:07 - 2014-05-03 21:16 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
Files to move or delete:
====================
C:\ProgramData\ISTask.dll
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-05-12 16:35
==================== End Of Log ============================