Díky za pomoc
Log z FRST
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Tom (administrator) on ALIENLIZARD on 06-04-2014 14:56:02
Running from C:\Users\Tom\Downloads
Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
() C:\Program Files (x86)\Mobogenie\MgAssist.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avpui.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331_STI.EXE
( ) C:\Program Files (x86)\LockKey\LockKey.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster X-Fi Surround 5.1 Pro\Volume Panel\VolPanlu.exe
(Creative Technology Ltd.) C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\system32\cmd.exe
(Microsoft Corporation) C:\Windows\system32\PING.EXE
(Microsoft Corporation) C:\Windows\system32\AUDIODG.EXE
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2809856 2012-01-16] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\btvstack.exe [1022592 2012-04-28] (Atheros Commnucations)
HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\athbttray.exe [801920 2012-04-28] (Atheros Commnucations)
HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [8071680 2014-02-12] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [6193152 2014-02-12] (Lenovo(beijing) Limited)
HKLM\...\Run: [Creative SB Monitoring Utility] - C:\Windows\system32\sbavmon.dll [115712 2010-07-29] (Creative Technology Ltd.)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] - C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [507744 2011-12-20] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [331BigDog] - C:\Program Files (x86)\USB Camera\VM331_STI.EXE [548864 2011-11-24] (Vimicro)
HKLM-x32\...\Run: [LockKey] - C:\Program Files (x86)\LockKey\LockKey.exe [337776 2011-08-25] ( )
HKLM-x32\...\Run: [VolPanel] - C:\Program Files (x86)\Creative\Sound Blaster X-Fi Surround 5.1 Pro\Volume Panel\VolPanlu.exe [241789 2010-02-18] (Creative Technology Ltd)
HKLM-x32\...\Run: [Module Loader] - C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe [57344 2007-07-23] (Creative Technology Ltd.)
HKLM-x32\...\Run: [AdobeCEPServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2013-03-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [748736 2014-04-02] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3023474365-939871986-2922477184-1000\...\Run: [ShowBatteryBar] - C:\Program Files\BatteryBar\ShowBatteryBar.exe [89600 2009-05-28] ()
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-12-19] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [141336 2013-12-19] (NVIDIA Corporation)
Startup: C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
==================== Internet (Whitelisted) ====================
SearchScopes: HKLM-x32 - DefaultScope {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.exitingsearch.info/?l= ... Z&unqvl=50
SearchScopes: HKLM-x32 - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.exitingsearch.info/?l= ... Z&unqvl=50
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - D:\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\4aer8fbi.default
FF SearchEngineOrder.1: WebSearch
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "WebSearch");: user_pref("browser.search.order.1,S", "WebSearch");
FF Homepage: about:home
FF Keyword.URL: hxxp://websearch.exitingsearch.info/?pid=1925&r=2014/03/16&hid=15679506383626917256&lg=EN&cc=CZ&unqvl=50&l=1&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_44.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - D:\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - D:\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: YoutubeAdblocker - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\4aer8fbi.default\Extensions\ojva.0a@ejpeiyt-.com [2014-03-16]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\4aer8fbi.default\Extensions\adblockpopups@jessehakanen.net.xpi [2014-02-12]
FF Extension: ClipConverter - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\4aer8fbi.default\Extensions\clipconverter@clipconverter.cc.xpi [2014-03-26]
FF Extension: Adblock Plus - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\4aer8fbi.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-02-12]
FF HKLM-x32\...\Firefox\Extensions: [url_advisor@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com [2014-04-04]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-04-04]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com [2014-04-04]
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (YoutubeAdblocker) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifdaldbdbajfipbhdbebmcpefnpkpkao [2014-03-16]
CHR Extension: (safeweb) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjdkbbdneghgoekokjhgbgjalpeldhld [2014-03-16]
CHR Extension: (Win by Browsing) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\oobdmiffgnobnpagcjjmpcajhdaoighg [2014-03-16]
CHR HKLM-x32\...\Chrome\Extension: [blbkdnmdcafmfhinpmnlhhddbepgkeaa] - https://chrome.google.com/webstore/deta ... ddbepgkeaa [2014-03-16]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\urladvisor.crx [2013-10-08]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\content_blocker_chrome.crx [2013-10-08]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\virtkbd.crx [2013-10-08]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe [214512 2013-10-08] (Kaspersky Lab ZAO)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-29] (Intel Corporation)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-03-05] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [857912 2014-03-05] (Malwarebytes Corporation)
R2 MgAssistService; C:\Program Files (x86)\Mobogenie\MgAssist.exe [70848 2014-04-02] ()
S3 Microsoft SharePoint Workspace Audit Service; D:\Microsoft Office\Office14\GROOVE.EXE [30963576 2010-01-21] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-02-14] ()
S2 SKLProService; D:\ProKAward\rsasws.exe [98304 2013-03-25] ()
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [163456 2012-04-28] (Atheros)
==================== Drivers (Whitelisted) ====================
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2014-04-05] (Kaspersky Lab ZAO)
S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [115296 2014-04-05] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [625248 2014-04-05] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29792 2013-10-08] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29280 2014-04-05] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-10-08] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [55904 2013-05-14] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [178272 2014-04-05] (Kaspersky Lab ZAO)
S3 ksaud; C:\Windows\System32\drivers\ksaud.sys [1588608 2011-09-13] (Creative Technology Ltd.)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [104048 2012-03-02] (Qualcomm Atheros Co., Ltd.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-03-05] (Malwarebytes Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 trufos; C:\Windows\System32\drivers\trufos.sys [350160 2014-04-02] (BitDefender S.R.L.)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [952832 2011-12-06] (Vimicro Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-04-06 14:56 - 2014-04-06 14:56 - 00019113 _____ () C:\Users\Tom\Downloads\FRST.txt
2014-04-06 14:55 - 2014-04-06 14:56 - 00000000 ____D () C:\FRST
2014-04-06 14:55 - 2014-04-06 14:55 - 02157056 _____ (Farbar) C:\Users\Tom\Downloads\FRST64.exe
2014-04-06 14:54 - 2014-04-06 14:54 - 00000280 _____ () C:\Users\Tom\fixlist.txt
2014-04-06 14:53 - 2014-04-06 14:53 - 00001053 _____ () C:\Users\Public\Desktop\WiFi Channel Scanner.lnk
2014-04-06 14:53 - 2014-04-06 14:53 - 00000000 ____D () C:\Program Files (x86)\WiFi Channel Scanner
2014-04-06 14:52 - 2014-04-06 14:53 - 00314126 _____ (wifichannelscanner.com ) C:\Users\Tom\Downloads\wifichannelscanner_setup.exe
2014-04-06 00:56 - 2014-04-06 00:56 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\66B00DEF.sys
2014-04-05 23:34 - 2011-06-16 21:40 - 00448761 _____ () C:\Users\Tom\Desktop\Henry Cloud a John Townsend - Hranice v chození.odt
2014-04-05 22:33 - 2014-04-05 22:34 - 05696175 _____ () C:\Users\Tom\Downloads\Tess u ty_e.mp4
2014-04-05 14:39 - 2014-04-05 14:39 - 00495006 _____ () C:\Users\Tom\Downloads\Henry-Cloud-a-John-Townsend---Hranice-v-chození.7z
2014-04-04 22:09 - 2014-04-04 22:09 - 00648026 _____ () C:\Users\Tom\Downloads\march23update.rar
2014-04-04 22:04 - 2014-04-04 22:04 - 00001363 _____ () C:\Users\Tom\Desktop\Continue Installer.exe.lnk
2014-04-04 22:03 - 2014-04-04 22:08 - 00000000 ____D () C:\Users\Tom\AppData\Local\Mobogenie
2014-04-04 22:03 - 2014-04-04 22:04 - 00000000 ____D () C:\Program Files (x86)\Mobogenie
2014-04-04 22:03 - 2014-04-04 22:03 - 00001019 _____ () C:\Users\Tom\Desktop\Mobogenie.lnk
2014-04-04 22:03 - 2014-04-04 22:03 - 00000000 ____D () C:\Users\Tom\Documents\Mobogenie
2014-04-04 22:03 - 2014-04-04 22:03 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
2014-04-04 22:03 - 2014-04-04 22:03 - 00000000 ____D () C:\Users\Tom\AppData\Local\cache
2014-04-04 22:03 - 2014-04-04 22:03 - 00000000 ____D () C:\Users\Tom\.android
2014-04-04 22:03 - 2014-04-04 22:03 - 00000000 _____ () C:\Users\Tom\daemonprocess.txt
2014-04-04 22:01 - 2014-04-04 22:01 - 00972207 _____ () C:\Users\Tom\Downloads\Keygen Installer.zip
2014-04-04 21:44 - 2014-04-04 21:49 - 149322252 _____ () C:\Users\Tom\Downloads\Kaspersky Anti-Virus 2014 Final++keygen 2018.rar
2014-04-04 21:33 - 2014-04-05 12:26 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\KW
2014-04-04 21:31 - 2014-04-06 14:49 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-04-04 21:31 - 2014-04-04 21:31 - 00001089 _____ () C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
2014-04-04 21:31 - 2014-04-04 21:31 - 00000000 ____D () C:\Windows\ELAMBKUP
2014-04-04 21:31 - 2014-04-04 21:31 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab
2014-04-04 21:31 - 2013-05-06 09:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2014-04-04 21:30 - 2014-04-05 10:23 - 00625248 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2014-04-04 21:30 - 2014-04-05 10:23 - 00115296 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2014-04-04 21:29 - 2014-04-05 12:26 - 00006842 _____ () C:\ProgramData\IDMGrHelp.exe.tmp
2014-04-04 21:04 - 2014-04-05 19:50 - 00006558 _____ () C:\Windows\PFRO.log
2014-04-04 20:54 - 2014-04-06 14:34 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-04 20:54 - 2014-04-04 20:54 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-04 20:54 - 2014-04-04 20:54 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-04 20:54 - 2014-04-04 20:54 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-04-04 20:54 - 2014-03-05 09:26 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-04 20:54 - 2014-03-05 09:26 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-04 20:54 - 2014-03-05 09:26 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-04 20:52 - 2014-04-04 20:52 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Tom\Downloads\mbam-setup-2.0.0.1000.exe
2014-04-04 20:07 - 2014-04-04 20:07 - 00112104 _____ () C:\Users\Tom\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-04 20:06 - 2014-04-06 14:34 - 00001288 _____ () C:\Windows\setupact.log
2014-04-04 20:06 - 2014-04-04 20:06 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-04 20:05 - 2014-04-04 20:06 - 05093224 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-04-04 13:42 - 2014-04-04 14:22 - 387321856 _____ () C:\Users\Tom\Downloads\06x03---Pán-času.avi
2014-04-04 10:22 - 2014-04-04 10:50 - 464157160 _____ () C:\Users\Tom\Downloads\Pan-casu---06x01---Nemozny-astronaut----RUS.avi
2014-04-04 08:20 - 2014-04-04 08:49 - 516935424 _____ () C:\Users\Tom\Downloads\Pán-času-s05e13-cz-(#).avi
2014-04-04 07:00 - 2014-04-04 07:21 - 363617110 _____ () C:\Users\Tom\Downloads\Pán.času(Dr.Who)S05E12-Pandorika.se.otvíra.avi
2014-04-02 09:50 - 2014-04-02 09:51 - 00000000 ____D () C:\Users\Tom\Downloads\chemie
2014-04-02 08:26 - 2014-04-02 08:26 - 00655872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr90.dll
2014-04-02 08:26 - 2014-04-02 08:26 - 00632064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr80.dll
2014-04-02 08:26 - 2014-04-02 08:26 - 00572928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp90.dll
2014-04-02 08:26 - 2014-04-02 08:26 - 00554240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp80.dll
2014-04-02 08:26 - 2014-04-02 08:26 - 00350160 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2014-04-02 08:26 - 2014-04-02 08:26 - 00034048 _____ (MicroWorld Technologies Inc.) C:\Windows\SysWOW64\eEmpty.exe
2014-04-02 08:26 - 2014-04-02 08:26 - 00000028 _____ () C:\Windows\Lic.xxx
2014-04-02 08:25 - 2014-04-02 08:25 - 00001016 _____ () C:\Users\Tom\Desktop\MWAVSCAN.lnk
2014-04-02 08:25 - 2014-04-02 08:25 - 00000000 ____D () C:\ProgramData\MicroWorld
2014-04-02 08:16 - 2014-04-02 08:22 - 197963056 _____ () C:\Users\Tom\Downloads\mwav.exe
2014-04-02 08:10 - 2014-04-02 08:10 - 01413120 _____ (Option^Explicit Software Solutions) C:\Users\Tom\Downloads\winsockfix.exe
2014-04-01 16:51 - 2014-04-01 16:51 - 00008580 _____ () C:\Users\Tom\Documents\cc_20140401_165137.reg
2014-03-31 16:47 - 2014-03-31 16:47 - 00042672 _____ () C:\Users\Tom\Documents\cc_20140331_164734.reg
2014-03-31 16:39 - 2014-03-31 16:40 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-31 16:39 - 2014-03-31 16:39 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-03-31 16:32 - 2014-03-31 16:32 - 02869622 _____ () C:\Users\Tom\Downloads\ccleaner-professional-+-key.rar
2014-03-31 16:32 - 2012-07-06 19:05 - 00000000 ____D () C:\Users\Tom\Desktop\ccleaner professional +key
2014-03-31 16:23 - 2014-03-31 16:23 - 00002768 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-03-31 16:14 - 2014-03-31 16:14 - 00000000 ____D () C:\Users\Tom\Desktop\atheros
2014-03-31 16:14 - 2013-11-20 10:00 - 04028928 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys
2014-03-31 16:10 - 2013-11-28 09:28 - 00086756 _____ () C:\Windows\athrextx.cat
2014-03-31 16:10 - 2013-11-28 09:28 - 00086752 _____ () C:\Windows\athrext.cat
2014-03-31 16:10 - 2013-11-20 10:00 - 04028928 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\athrx.sys
2014-03-31 16:10 - 2013-11-20 10:00 - 03244032 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\athr.sys
2014-03-31 16:08 - 2014-03-31 16:08 - 02558978 _____ () C:\Users\Tom\Downloads\win7-10.0.0.274-whql.zip
2014-03-31 12:12 - 2014-03-31 12:12 - 06884022 _____ () C:\Users\Tom\Downloads\Walter_Isaacson_Steve_Jobs_ebook_CZ.epub.Epub
2014-03-31 08:36 - 2014-03-31 08:45 - 00115552 _____ () C:\Users\Tom\Downloads\run nigga run.mp3.sfk
2014-03-31 08:36 - 2014-03-31 08:36 - 07540522 _____ () C:\Users\Tom\Downloads\run nigga run.mp4
2014-03-31 08:23 - 2014-03-31 08:35 - 00399992 _____ () C:\Users\Tom\Downloads\Rocky theme song.mp3.sfk
2014-03-30 18:02 - 2014-03-30 18:02 - 02763911 _____ (Colasoft Co., Ltd. ) C:\Users\Tom\Downloads\cmac11_build196.exe
2014-03-30 18:02 - 2014-03-30 18:02 - 00000000 ____D () C:\Program Files (x86)\Colasoft MAC Scanner 1.1
2014-03-30 18:02 - 2006-11-07 12:46 - 00020480 _____ (Colasoft Co., Ltd.) C:\Windows\SysWOW64\CSCODER63U.dll
2014-03-30 18:02 - 2006-11-06 16:32 - 00094208 _____ (Colasoft Co., Ltd.) C:\Windows\SysWOW64\CSMFCSTD63U.dll
2014-03-30 18:02 - 2006-10-30 17:28 - 00102400 _____ (Colasoft Co., Ltd.) C:\Windows\SysWOW64\CSMUI63U.dll
2014-03-30 18:02 - 2006-10-30 17:25 - 00049152 _____ (Colasoft Co., Ltd.) C:\Windows\SysWOW64\CSIPI63U.dll
2014-03-30 18:02 - 2006-10-27 13:46 - 00147456 _____ (Colasoft Co., Ltd.) C:\Windows\SysWOW64\CSXTUI22U.dll
2014-03-30 18:02 - 2006-10-27 13:41 - 00204800 _____ (Colasoft Co., Ltd.) C:\Windows\SysWOW64\CSUPDATE11U.dll
2014-03-30 18:02 - 2006-10-27 13:10 - 00110592 _____ (Colasoft Co., Ltd.) C:\Windows\SysWOW64\CSCPPSTD63U.dll
2014-03-30 18:02 - 2006-10-19 09:12 - 04231168 _____ (Codejock Software) C:\Windows\SysWOW64\CSXTP1031u.dll
2014-03-30 18:02 - 2003-03-19 10:12 - 01047552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71u.dll
2014-03-30 15:35 - 2014-03-30 15:35 - 00021970 _____ () C:\Users\Tom\Downloads\hud-time-win7gadgets-com.zip
2014-03-29 22:54 - 2014-03-29 23:06 - 34827424 _____ (Skype Technologies S.A.) C:\Users\Tom\Downloads\SkypeSetupFull.exe
2014-03-29 22:53 - 2014-03-29 22:53 - 00003146 _____ () C:\Windows\System32\Tasks\{9172DBA5-4235-4EED-940A-CB477E373015}
2014-03-29 22:52 - 2014-03-29 22:52 - 01678496 _____ (Skype Technologies S.A.) C:\Users\Tom\Downloads\SkypeSetup.exe
2014-03-29 22:52 - 2014-03-29 22:52 - 00003146 _____ () C:\Windows\System32\Tasks\{73605481-1D03-4192-9719-20DBC151F99A}
2014-03-28 09:58 - 2014-03-28 10:05 - 132063163 _____ () C:\Users\Tom\Downloads\Wiliam-Shakespeare---Romeo-a-Julie-(pdf,mp3).rar
2014-03-27 11:53 - 2014-03-27 11:53 - 00002019 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-03-27 11:53 - 2014-03-27 11:53 - 00000000 ____D () C:\ProgramData\McAfee
2014-03-27 11:53 - 2014-03-27 11:53 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-03-26 14:28 - 2014-03-26 14:29 - 00261792 _____ () C:\Users\Tom\Downloads\TV & Movie Themes - Star Wars - Imperial March.mp3.sfk
2014-03-26 14:09 - 2014-03-26 14:09 - 00116063 _____ () C:\Users\Tom\Downloads\[kickass.to]pinnacle.studio.14.ultimate.collection.incl.crack.torrent
2014-03-25 12:42 - 2014-03-31 12:08 - 00027048 _____ () C:\Users\Tom\Documents\Film.veg
2014-03-25 12:42 - 2014-03-26 22:50 - 00025576 _____ () C:\Users\Tom\Documents\Film.veg.bak
2014-03-23 16:35 - 2014-03-23 16:35 - 01060858 _____ () C:\Users\Tom\Downloads\20081013145812(1).zip
2014-03-23 16:35 - 2008-09-04 18:39 - 01048196 _____ () C:\Users\Tom\Desktop\wr543gv2-en-up.bin
2014-03-23 16:17 - 2014-03-23 16:17 - 08126464 _____ () C:\Users\Tom\Desktop\openwrt-ar71xx-tl-wr1043nd-v1-squashfs-factory.bin
2014-03-23 16:15 - 2014-03-23 16:15 - 00000600 _____ () C:\Users\Tom\AppData\Local\PUTTY.RND
2014-03-23 16:14 - 2014-03-23 16:14 - 00495616 _____ (Simon Tatham) C:\Users\Tom\Downloads\putty.exe
2014-03-23 16:00 - 2014-03-23 16:00 - 01060858 _____ () C:\Users\Tom\Downloads\20081013145812.zip
2014-03-21 00:31 - 2014-03-21 00:33 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-21 00:31 - 2014-03-02 15:05 - 90015360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-20 22:14 - 2014-03-20 22:14 - 00064174 _____ () C:\Users\Tom\Downloads\Lock-Stock-Two-Smoking-Barrels(0000016374).sub
2014-03-19 13:46 - 2014-03-24 09:27 - 00000000 ____D () C:\Users\Tom\Desktop\povedené
2014-03-18 21:48 - 2014-03-18 21:48 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Publish Providers
2014-03-18 21:46 - 2014-03-18 21:46 - 00000000 ____D () C:\ProgramData\Sony
2014-03-18 21:46 - 2014-03-18 21:46 - 00000000 ____D () C:\Program Files\Sony
2014-03-18 21:46 - 2014-03-18 21:46 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-03-18 21:45 - 2014-03-18 21:45 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-03-18 21:41 - 2014-03-18 21:41 - 00002552 _____ () C:\Users\Tom\Documents\Register Vegas Pro.htm
2014-03-18 21:35 - 2014-03-18 21:46 - 00000000 ____D () C:\Users\Tom\AppData\Local\Sony
2014-03-18 21:31 - 2014-03-31 16:44 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Sony
2014-03-18 17:02 - 2014-03-19 14:20 - 00000000 ____D () C:\Users\Tom\Desktop\sada
2014-03-18 17:00 - 2014-03-18 17:00 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-03-17 20:19 - 2014-03-17 20:19 - 00000000 ____D () C:\Users\Tom\Documents\My Games
2014-03-16 11:41 - 2014-03-16 11:41 - 00000000 ____D () C:\Users\Tom\Documents\Optimizer Pro
2014-03-16 11:26 - 2014-03-19 23:54 - 00000000 ____D () C:\Program Files (x86)\LiveSupport
2014-03-16 11:25 - 2014-04-04 21:03 - 00000000 ____D () C:\ProgramData\safEEweb
2014-03-16 11:25 - 2014-04-04 21:03 - 00000000 ____D () C:\Program Files (x86)\safEEweb
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Tom\AppData\Local\Torch
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Tom\AppData\Local\Packages
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Tom\AppData\Local\Google
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Tom\AppData\Local\Comodo
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Guest\AppData\Local\Torch
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Guest
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Administrator
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\ProgramData\SnowApp
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\ProgramData\dd790214cda43974
2014-03-16 11:24 - 2014-03-16 11:24 - 00000000 ____D () C:\ProgramData\InstallMate
2014-03-15 09:52 - 2014-03-15 09:53 - 06060477 _____ () C:\Users\Tom\Documents\pptC7A3.pptm [Autosaved].pptm
2014-03-13 17:25 - 2014-03-01 08:05 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-13 17:25 - 2014-03-01 07:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-13 17:25 - 2014-03-01 07:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-13 17:25 - 2014-03-01 06:58 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-13 17:25 - 2014-03-01 06:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-13 17:25 - 2014-03-01 06:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-13 17:25 - 2014-03-01 06:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-13 17:25 - 2014-03-01 06:40 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-13 17:25 - 2014-03-01 06:37 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-13 17:25 - 2014-03-01 06:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-13 17:25 - 2014-03-01 06:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-13 17:25 - 2014-03-01 06:32 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-13 17:25 - 2014-03-01 06:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-13 17:25 - 2014-03-01 06:23 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-13 17:25 - 2014-03-01 06:17 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-13 17:25 - 2014-03-01 06:11 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-13 17:25 - 2014-03-01 06:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-13 17:25 - 2014-03-01 05:54 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-13 17:25 - 2014-03-01 05:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-13 17:25 - 2014-03-01 05:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-13 17:25 - 2014-03-01 05:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-13 17:25 - 2014-03-01 05:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-13 17:25 - 2014-03-01 05:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-13 17:25 - 2014-03-01 05:42 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-13 17:25 - 2014-03-01 05:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-13 17:25 - 2014-03-01 05:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-13 17:25 - 2014-03-01 05:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-13 17:25 - 2014-03-01 05:35 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-13 17:25 - 2014-03-01 05:18 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-13 17:25 - 2014-03-01 05:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-13 17:25 - 2014-03-01 05:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-13 17:25 - 2014-03-01 05:10 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-13 17:25 - 2014-03-01 05:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-13 17:25 - 2014-03-01 05:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-13 17:25 - 2014-03-01 04:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-13 17:25 - 2014-03-01 04:38 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-13 17:25 - 2014-03-01 04:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-13 17:25 - 2014-03-01 04:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-13 17:25 - 2014-03-01 04:25 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-13 17:25 - 2014-03-01 04:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-03-13 17:25 - 2014-02-07 03:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-13 17:25 - 2014-01-29 04:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-13 17:25 - 2014-01-29 04:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-03-13 17:25 - 2014-01-28 04:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-13 17:23 - 2014-02-04 04:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-13 17:23 - 2014-02-04 04:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-13 17:23 - 2014-02-04 04:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-03-13 17:23 - 2014-02-04 04:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-03-11 12:06 - 2014-04-02 08:27 - 00000047 _____ () C:\Windows\SysWOW64\windows.ini
2014-03-11 12:02 - 2014-04-04 19:58 - 00000542 _____ () C:\Users\Tom\Desktop\Award Keylogger Pro.lnk
2014-03-11 12:02 - 2009-05-13 20:35 - 01706800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdiplus.dll
2014-03-11 12:02 - 2009-05-13 20:35 - 00258352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unicows.dll
2014-03-11 12:02 - 2009-05-13 20:35 - 00050688 _____ (Stardock.Net, Inc) C:\Windows\SysWOW64\wbhelp2.dll
2014-03-11 12:02 - 2009-05-13 20:35 - 00028160 _____ (Neil Banfield) C:\Windows\SysWOW64\anim.dll
2014-03-11 11:59 - 2014-03-11 11:59 - 00000000 ____D () C:\Users\Tom\Documents\Paradox Interactive
2014-03-11 11:55 - 2010-06-02 05:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-03-11 11:55 - 2010-06-02 05:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-03-11 11:55 - 2010-06-02 05:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-03-11 11:55 - 2010-06-02 05:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-03-11 11:55 - 2010-06-02 05:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-03-11 11:55 - 2010-06-02 05:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-03-11 11:55 - 2010-05-26 12:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-03-11 11:55 - 2010-05-26 12:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-03-11 11:55 - 2010-05-26 12:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-03-11 11:55 - 2010-05-26 12:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-03-11 11:55 - 2010-02-04 11:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-03-11 11:55 - 2010-02-04 11:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-03-11 11:55 - 2010-02-04 11:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-03-11 11:55 - 2010-02-04 11:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-03-11 11:55 - 2010-02-04 11:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-03-11 11:55 - 2010-02-04 11:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-03-11 11:55 - 2010-02-04 11:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-03-11 11:55 - 2010-02-04 11:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-03-11 11:53 - 2014-03-11 11:53 - 00000697 _____ () C:\Users\Public\Desktop\Europa Universalis IV.lnk
2014-03-10 18:25 - 2014-03-10 18:25 - 00000000 ____D () C:\ProgramData\Origin
2014-03-09 17:59 - 2014-03-09 17:59 - 00024064 _____ () C:\Users\Tom\Downloads\sablona_technicky_scenar.xls
2014-03-09 15:48 - 2014-03-09 15:48 - 00064053 _____ () C:\Users\Tom\Downloads\Escape-plan(0000230693).srt
2014-03-09 15:46 - 2014-03-09 15:46 - 00064106 _____ () C:\Users\Tom\Downloads\Escape-plan(0000230750).srt
2014-03-09 15:43 - 2014-03-09 15:43 - 00063450 _____ () C:\Users\Tom\Downloads\Escape-Plan(0000229937).srt
2014-03-09 15:40 - 2014-03-09 15:40 - 00068363 _____ () C:\Users\Tom\Downloads\Escape-Plan(0000232131).srt
2014-03-07 22:38 - 2014-03-07 22:38 - 00246174 _____ () C:\Users\Tom\Downloads\Auctionator_v0315.zip
==================== One Month Modified Files and Folders =======
2014-04-06 14:56 - 2014-04-06 14:56 - 00019113 _____ () C:\Users\Tom\Downloads\FRST.txt
2014-04-06 14:56 - 2014-04-06 14:55 - 00000000 ____D () C:\FRST
2014-04-06 14:55 - 2014-04-06 14:55 - 02157056 _____ (Farbar) C:\Users\Tom\Downloads\FRST64.exe
2014-04-06 14:55 - 2014-02-12 14:04 - 01984252 _____ () C:\Windows\WindowsUpdate.log
2014-04-06 14:54 - 2014-04-06 14:54 - 00000280 _____ () C:\Users\Tom\fixlist.txt
2014-04-06 14:54 - 2014-02-12 14:04 - 00000000 ____D () C:\Users\Tom
2014-04-06 14:53 - 2014-04-06 14:53 - 00001053 _____ () C:\Users\Public\Desktop\WiFi Channel Scanner.lnk
2014-04-06 14:53 - 2014-04-06 14:53 - 00000000 ____D () C:\Program Files (x86)\WiFi Channel Scanner
2014-04-06 14:53 - 2014-04-06 14:52 - 00314126 _____ (wifichannelscanner.com ) C:\Users\Tom\Downloads\wifichannelscanner_setup.exe
2014-04-06 14:53 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-04-06 14:49 - 2014-04-04 21:31 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-04-06 14:34 - 2014-04-04 20:54 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-06 14:34 - 2014-04-04 20:06 - 00001288 _____ () C:\Windows\setupact.log
2014-04-06 14:33 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-06 13:19 - 2014-02-20 09:41 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\uTorrent
2014-04-06 11:29 - 2009-07-14 07:13 - 00782470 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-06 00:56 - 2014-04-06 00:56 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\66B00DEF.sys
2014-04-05 23:32 - 2014-02-12 16:38 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\TS3Client
2014-04-05 22:34 - 2014-04-05 22:33 - 05696175 _____ () C:\Users\Tom\Downloads\Tess u ty_e.mp4
2014-04-05 19:50 - 2014-04-04 21:04 - 00006558 _____ () C:\Windows\PFRO.log
2014-04-05 14:39 - 2014-04-05 14:39 - 00495006 _____ () C:\Users\Tom\Downloads\Henry-Cloud-a-John-Townsend---Hranice-v-chození.7z
2014-04-05 12:26 - 2014-04-04 21:33 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\KW
2014-04-05 12:26 - 2014-04-04 21:29 - 00006842 _____ () C:\ProgramData\IDMGrHelp.exe.tmp
2014-04-05 10:23 - 2014-04-04 21:30 - 00625248 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2014-04-05 10:23 - 2014-04-04 21:30 - 00115296 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2014-04-05 10:23 - 2013-10-08 13:49 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kl1.sys
2014-04-05 10:23 - 2013-10-08 13:49 - 00029280 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klkbdflt.sys
2014-04-05 10:23 - 2013-06-06 17:38 - 00178272 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kneps.sys
2014-04-04 22:09 - 2014-04-04 22:09 - 00648026 _____ () C:\Users\Tom\Downloads\march23update.rar
2014-04-04 22:08 - 2014-04-04 22:03 - 00000000 ____D () C:\Users\Tom\AppData\Local\Mobogenie
2014-04-04 22:04 - 2014-04-04 22:04 - 00001363 _____ () C:\Users\Tom\Desktop\Continue Installer.exe.lnk
2014-04-04 22:04 - 2014-04-04 22:03 - 00000000 ____D () C:\Program Files (x86)\Mobogenie
2014-04-04 22:03 - 2014-04-04 22:03 - 00001019 _____ () C:\Users\Tom\Desktop\Mobogenie.lnk
2014-04-04 22:03 - 2014-04-04 22:03 - 00000000 ____D () C:\Users\Tom\Documents\Mobogenie
2014-04-04 22:03 - 2014-04-04 22:03 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
2014-04-04 22:03 - 2014-04-04 22:03 - 00000000 ____D () C:\Users\Tom\AppData\Local\cache
2014-04-04 22:03 - 2014-04-04 22:03 - 00000000 ____D () C:\Users\Tom\.android
2014-04-04 22:03 - 2014-04-04 22:03 - 00000000 _____ () C:\Users\Tom\daemonprocess.txt
2014-04-04 22:01 - 2014-04-04 22:01 - 00972207 _____ () C:\Users\Tom\Downloads\Keygen Installer.zip
2014-04-04 21:49 - 2014-04-04 21:44 - 149322252 _____ () C:\Users\Tom\Downloads\Kaspersky Anti-Virus 2014 Final++keygen 2018.rar
2014-04-04 21:31 - 2014-04-04 21:31 - 00001089 _____ () C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
2014-04-04 21:31 - 2014-04-04 21:31 - 00000000 ____D () C:\Windows\ELAMBKUP
2014-04-04 21:31 - 2014-04-04 21:31 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab
2014-04-04 21:03 - 2014-03-16 11:25 - 00000000 ____D () C:\ProgramData\safEEweb
2014-04-04 21:03 - 2014-03-16 11:25 - 00000000 ____D () C:\Program Files (x86)\safEEweb
2014-04-04 20:54 - 2014-04-04 20:54 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-04 20:54 - 2014-04-04 20:54 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-04 20:54 - 2014-04-04 20:54 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-04-04 20:52 - 2014-04-04 20:52 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Tom\Downloads\mbam-setup-2.0.0.1000.exe
2014-04-04 20:07 - 2014-04-04 20:07 - 00112104 _____ () C:\Users\Tom\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-04 20:06 - 2014-04-04 20:06 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-04 20:06 - 2014-04-04 20:05 - 05093224 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-04-04 20:02 - 2014-02-15 21:58 - 00000000 ____D () C:\Users\Tom\AppData\Local\CrashDumps
2014-04-04 19:58 - 2014-03-11 12:02 - 00000542 _____ () C:\Users\Tom\Desktop\Award Keylogger Pro.lnk
2014-04-04 14:22 - 2014-04-04 13:42 - 387321856 _____ () C:\Users\Tom\Downloads\06x03---Pán-času.avi
2014-04-04 11:27 - 2014-02-15 01:28 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\vlc
2014-04-04 10:50 - 2014-04-04 10:22 - 464157160 _____ () C:\Users\Tom\Downloads\Pan-casu---06x01---Nemozny-astronaut----RUS.avi
2014-04-04 08:49 - 2014-04-04 08:20 - 516935424 _____ () C:\Users\Tom\Downloads\Pán-času-s05e13-cz-(#).avi
2014-04-04 07:21 - 2014-04-04 07:00 - 363617110 _____ () C:\Users\Tom\Downloads\Pán.času(Dr.Who)S05E12-Pandorika.se.otvíra.avi
2014-04-02 22:25 - 2009-07-14 06:45 - 00016864 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-02 22:25 - 2009-07-14 06:45 - 00016864 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-02 09:51 - 2014-04-02 09:50 - 00000000 ____D () C:\Users\Tom\Downloads\chemie
2014-04-02 08:27 - 2014-03-11 12:06 - 00000047 _____ () C:\Windows\SysWOW64\windows.ini
2014-04-02 08:26 - 2014-04-02 08:26 - 00655872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr90.dll
2014-04-02 08:26 - 2014-04-02 08:26 - 00632064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr80.dll
2014-04-02 08:26 - 2014-04-02 08:26 - 00572928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp90.dll
2014-04-02 08:26 - 2014-04-02 08:26 - 00554240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp80.dll
2014-04-02 08:26 - 2014-04-02 08:26 - 00350160 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2014-04-02 08:26 - 2014-04-02 08:26 - 00034048 _____ (MicroWorld Technologies Inc.) C:\Windows\SysWOW64\eEmpty.exe
2014-04-02 08:26 - 2014-04-02 08:26 - 00000028 _____ () C:\Windows\Lic.xxx
2014-04-02 08:25 - 2014-04-02 08:25 - 00001016 _____ () C:\Users\Tom\Desktop\MWAVSCAN.lnk
2014-04-02 08:25 - 2014-04-02 08:25 - 00000000 ____D () C:\ProgramData\MicroWorld
2014-04-02 08:25 - 2009-07-14 04:34 - 00000500 _____ () C:\Windows\win.ini
2014-04-02 08:22 - 2014-04-02 08:16 - 197963056 _____ () C:\Users\Tom\Downloads\mwav.exe
2014-04-02 08:10 - 2014-04-02 08:10 - 01413120 _____ (Option^Explicit Software Solutions) C:\Users\Tom\Downloads\winsockfix.exe
2014-04-01 16:51 - 2014-04-01 16:51 - 00008580 _____ () C:\Users\Tom\Documents\cc_20140401_165137.reg
2014-04-01 00:06 - 2014-02-17 15:08 - 00000000 ____D () C:\Users\Tom\Documents\FIFA 14
2014-03-31 16:47 - 2014-03-31 16:47 - 00042672 _____ () C:\Users\Tom\Documents\cc_20140331_164734.reg
2014-03-31 16:44 - 2014-03-18 21:31 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Sony
2014-03-31 16:44 - 2014-02-12 22:58 - 00000000 ____D () C:\Windows\Panther
2014-03-31 16:40 - 2014-03-31 16:39 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-31 16:39 - 2014-03-31 16:39 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-03-31 16:32 - 2014-03-31 16:32 - 02869622 _____ () C:\Users\Tom\Downloads\ccleaner-professional-+-key.rar
2014-03-31 16:23 - 2014-03-31 16:23 - 00002768 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-03-31 16:14 - 2014-03-31 16:14 - 00000000 ____D () C:\Users\Tom\Desktop\atheros
2014-03-31 16:08 - 2014-03-31 16:08 - 02558978 _____ () C:\Users\Tom\Downloads\win7-10.0.0.274-whql.zip
2014-03-31 12:12 - 2014-03-31 12:12 - 06884022 _____ () C:\Users\Tom\Downloads\Walter_Isaacson_Steve_Jobs_ebook_CZ.epub.Epub
2014-03-31 12:08 - 2014-03-25 12:42 - 00027048 _____ () C:\Users\Tom\Documents\Film.veg
2014-03-31 08:45 - 2014-03-31 08:36 - 00115552 _____ () C:\Users\Tom\Downloads\run nigga run.mp3.sfk
2014-03-31 08:36 - 2014-03-31 08:36 - 07540522 _____ () C:\Users\Tom\Downloads\run nigga run.mp4
2014-03-31 08:35 - 2014-03-31 08:23 - 00399992 _____ () C:\Users\Tom\Downloads\Rocky theme song.mp3.sfk
2014-03-30 18:02 - 2014-03-30 18:02 - 02763911 _____ (Colasoft Co., Ltd. ) C:\Users\Tom\Downloads\cmac11_build196.exe
2014-03-30 18:02 - 2014-03-30 18:02 - 00000000 ____D () C:\Program Files (x86)\Colasoft MAC Scanner 1.1
2014-03-30 15:35 - 2014-03-30 15:35 - 00021970 _____ () C:\Users\Tom\Downloads\hud-time-win7gadgets-com.zip
2014-03-30 14:32 - 2014-02-12 16:11 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-29 23:06 - 2014-03-29 22:54 - 34827424 _____ (Skype Technologies S.A.) C:\Users\Tom\Downloads\SkypeSetupFull.exe
2014-03-29 22:53 - 2014-03-29 22:53 - 00003146 _____ () C:\Windows\System32\Tasks\{9172DBA5-4235-4EED-940A-CB477E373015}
2014-03-29 22:52 - 2014-03-29 22:52 - 01678496 _____ (Skype Technologies S.A.) C:\Users\Tom\Downloads\SkypeSetup.exe
2014-03-29 22:52 - 2014-03-29 22:52 - 00003146 _____ () C:\Windows\System32\Tasks\{73605481-1D03-4192-9719-20DBC151F99A}
2014-03-29 19:53 - 2014-02-15 00:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-28 10:05 - 2014-03-28 09:58 - 132063163 _____ () C:\Users\Tom\Downloads\Wiliam-Shakespeare---Romeo-a-Julie-(pdf,mp3).rar
2014-03-27 11:55 - 2014-03-03 14:27 - 00000000 ____D () C:\ProgramData\Adobe
2014-03-27 11:54 - 2014-03-03 14:27 - 00000000 ____D () C:\Users\Tom\AppData\Local\Adobe
2014-03-27 11:54 - 2014-02-12 16:28 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Adobe
2014-03-27 11:53 - 2014-03-27 11:53 - 00002019 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-03-27 11:53 - 2014-03-27 11:53 - 00000000 ____D () C:\ProgramData\McAfee
2014-03-27 11:53 - 2014-03-27 11:53 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-03-26 22:50 - 2014-03-25 12:42 - 00025576 _____ () C:\Users\Tom\Documents\Film.veg.bak
2014-03-26 14:29 - 2014-03-26 14:28 - 00261792 _____ () C:\Users\Tom\Downloads\TV & Movie Themes - Star Wars - Imperial March.mp3.sfk
2014-03-26 14:09 - 2014-03-26 14:09 - 00116063 _____ () C:\Users\Tom\Downloads\[kickass.to]pinnacle.studio.14.ultimate.collection.incl.crack.torrent
2014-03-24 09:27 - 2014-03-19 13:46 - 00000000 ____D () C:\Users\Tom\Desktop\povedené
2014-03-23 17:27 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-03-23 16:35 - 2014-03-23 16:35 - 01060858 _____ () C:\Users\Tom\Downloads\20081013145812(1).zip
2014-03-23 16:17 - 2014-03-23 16:17 - 08126464 _____ () C:\Users\Tom\Desktop\openwrt-ar71xx-tl-wr1043nd-v1-squashfs-factory.bin
2014-03-23 16:15 - 2014-03-23 16:15 - 00000600 _____ () C:\Users\Tom\AppData\Local\PUTTY.RND
2014-03-23 16:14 - 2014-03-23 16:14 - 00495616 _____ (Simon Tatham) C:\Users\Tom\Downloads\putty.exe
2014-03-23 16:00 - 2014-03-23 16:00 - 01060858 _____ () C:\Users\Tom\Downloads\20081013145812.zip
2014-03-21 00:33 - 2014-03-21 00:31 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-20 22:14 - 2014-03-20 22:14 - 00064174 _____ () C:\Users\Tom\Downloads\Lock-Stock-Two-Smoking-Barrels(0000016374).sub
2014-03-20 15:56 - 2014-02-12 15:57 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Atheros
2014-03-19 23:54 - 2014-03-16 11:26 - 00000000 ____D () C:\Program Files (x86)\LiveSupport
2014-03-19 22:22 - 2014-02-12 15:57 - 00000000 ____D () C:\Users\Tom\Documents\Bluetooth Folder
2014-03-19 14:20 - 2014-03-18 17:02 - 00000000 ____D () C:\Users\Tom\Desktop\sada
2014-03-19 13:50 - 2010-11-21 05:24 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-03-19 13:50 - 2010-11-21 05:24 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2014-03-19 13:50 - 2010-11-21 05:24 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2014-03-19 13:50 - 2010-11-21 05:24 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2014-03-19 13:50 - 2010-11-21 05:23 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slwga.dll
2014-03-18 21:48 - 2014-03-18 21:48 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Publish Providers
2014-03-18 21:46 - 2014-03-18 21:46 - 00000000 ____D () C:\ProgramData\Sony
2014-03-18 21:46 - 2014-03-18 21:46 - 00000000 ____D () C:\Program Files\Sony
2014-03-18 21:46 - 2014-03-18 21:46 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-03-18 21:46 - 2014-03-18 21:35 - 00000000 ____D () C:\Users\Tom\AppData\Local\Sony
2014-03-18 21:45 - 2014-03-18 21:45 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-03-18 21:41 - 2014-03-18 21:41 - 00002552 _____ () C:\Users\Tom\Documents\Register Vegas Pro.htm
2014-03-18 17:00 - 2014-03-18 17:00 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-03-17 20:19 - 2014-03-17 20:19 - 00000000 ____D () C:\Users\Tom\Documents\My Games
2014-03-16 11:41 - 2014-03-16 11:41 - 00000000 ____D () C:\Users\Tom\Documents\Optimizer Pro
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Tom\AppData\Local\Torch
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Tom\AppData\Local\Packages
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Tom\AppData\Local\Google
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Tom\AppData\Local\Comodo
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Guest\AppData\Local\Torch
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Guest
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\Users\Administrator
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\ProgramData\SnowApp
2014-03-16 11:25 - 2014-03-16 11:25 - 00000000 ____D () C:\ProgramData\dd790214cda43974
2014-03-16 11:24 - 2014-03-16 11:24 - 00000000 ____D () C:\ProgramData\InstallMate
2014-03-15 09:53 - 2014-03-15 09:52 - 06060477 _____ () C:\Users\Tom\Documents\pptC7A3.pptm [Autosaved].pptm
2014-03-11 11:59 - 2014-03-11 11:59 - 00000000 ____D () C:\Users\Tom\Documents\Paradox Interactive
2014-03-11 11:53 - 2014-03-11 11:53 - 00000697 _____ () C:\Users\Public\Desktop\Europa Universalis IV.lnk
2014-03-10 18:25 - 2014-03-10 18:25 - 00000000 ____D () C:\ProgramData\Origin
2014-03-10 18:25 - 2014-02-12 17:19 - 00000000 ____D () C:\Users\Tom\AppData\Local\Battle.net
2014-03-10 09:44 - 2014-03-04 11:42 - 00000000 ____D () C:\Program Files\BatteryBar
2014-03-09 17:59 - 2014-03-09 17:59 - 00024064 _____ () C:\Users\Tom\Downloads\sablona_technicky_scenar.xls
2014-03-09 15:48 - 2014-03-09 15:48 - 00064053 _____ () C:\Users\Tom\Downloads\Escape-plan(0000230693).srt
2014-03-09 15:46 - 2014-03-09 15:46 - 00064106 _____ () C:\Users\Tom\Downloads\Escape-plan(0000230750).srt
2014-03-09 15:43 - 2014-03-09 15:43 - 00063450 _____ () C:\Users\Tom\Downloads\Escape-Plan(0000229937).srt
2014-03-09 15:40 - 2014-03-09 15:40 - 00068363 _____ () C:\Users\Tom\Downloads\Escape-Plan(0000232131).srt
2014-03-08 00:03 - 2014-02-12 17:20 - 00000000 ____D () C:\Program Files (x86)\World of Warcraft
2014-03-07 22:38 - 2014-03-07 22:38 - 00246174 _____ () C:\Users\Tom\Downloads\Auctionator_v0315.zip
Some content of TEMP:
====================
C:\Users\Tom\AppData\Local\Temp\6_Offer_3.exe
C:\Users\Tom\AppData\Local\Temp\instructions.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-03-31 12:37
==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Tom at 2014-04-06 14:56:35
Running from C:\Users\Tom\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Kaspersky Anti-Virus (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
µTorrent (HKCU\...\uTorrent) (Version: 3.4.1.30740 - BitTorrent Inc.)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Premiere Pro CC (HKLM-x32\...\{505FF1AC-E7F5-4462-BBA7-08900E7E9EEF}) (Version: 7.0.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Adobe Update Management Tool (HKLM-x32\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 6.2 - PainteR)
Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.135 - Atheros)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.14.15 - Atheros Communications Inc.)
Atheros WLAN Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros)
BatteryBar (remove only) (HKLM\...\BatteryBar) (Version: - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 4.11 - Piriform)
Colasoft MAC Scanner 1.1 (HKLM-x32\...\Colasoft MAC Scanner 1.1_is1) (Version: 1.1 - Colasoft Co., Ltd.)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.32.50 - Conexant)
Creative Audio Control Panel (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited)
Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.7000.11 - Dolby Laboratories Inc)
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.01 - Creative Technology Limited)
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 7.0.3.3 - Lenovo)
Energy Management (x32 Version: 7.0.3.3 - Lenovo) Hidden
Europa Universalis IV (HKLM-x32\...\Europa Universalis IV_is1) (Version: - Paradox Interactive)
Evernote v. 5.1.2 (HKLM-x32\...\{12FB6296-8840-11E3-86D7-00163E98E7D0}) (Version: 5.1.2.2387 - Evernote Corp.)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.3.1427 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2656 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
Kaspersky Anti-Virus (HKLM-x32\...\InstallWIX_{6F6873E3-5C92-4049-B511-231A138DD090}) (Version: 14.0.0.4651 - Kaspersky Lab)
Kaspersky Anti-Virus (x32 Version: 14.0.0.4651 - Kaspersky Lab) Hidden
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 13.11.1206.1 - Vimicro)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.0.3712 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 7.0.0.3712 - CyberLink Corp.) Hidden
Lenovo pointing device (HKLM\...\Elantech) (Version: 10.4.2.8 - ELAN Microelectronic Corp.)
LockKey (HKLM-x32\...\InstallShield_{AF192694-4B15-4AC1-92F3-1B02E98C08BD}) (Version: 1.38.1.2 - Lenovo)
LockKey (x32 Version: 1.38.1.2 - Lenovo) Hidden
Malwarebytes Anti-Malware version 2.00.0.1000 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.00.0.1000 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (Czech) (HKLM-x32\...\{95120000-00AF-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mobogenie (HKLM-x32\...\Mobogenie) (Version: - Mobogenie.com) <==== ATTENTION
Mozilla Firefox 28.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 cs)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
NVIDIA Control Panel 332.21 (Version: 332.21 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 1.8.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 332.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 332.21 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.142.992 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.19 - NVIDIA Corporation)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7601.39016 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
SopCast 3.8.3 (HKLM-x32\...\SopCast) (Version: 3.8.3 - www.sopcast.com)
Sound Blaster X-Fi Surround 5.1 Pro (HKLM-x32\...\{0A9DA353-D0CD-4922-A54B-2F5F4EC90986}) (Version: 1.0 - Creative Technology Limited)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.13 - TeamSpeak Systems GmbH)
Vegas Pro 12.0 (64-bit) (HKLM\...\{A7500970-FE98-11E1-B560-F04DA23A5C58}) (Version: 12.0.367 - Sony)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WiFi Channel Scanner (HKLM-x32\...\{276ABF19-EB0A-49DA-9C17-72A99384596C}_is1) (Version: - wifichannelscanner.com)
Windows Driver Package - Lenovo (ACPIVPC) System (12/15/2011 7.1.0.1) (HKLM\...\99841829BE839365AA67B2AD0E50D371F59F8A1E) (Version: 12/15/2011 7.1.0.1 - Lenovo)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Restore Points =========================
01-04-2014 07:28:55 Windows Update
==================== Hosts content: ==========================
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {7F35FFBE-05B9-4D80-B39E-38677BA04E7C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-02-20] (Piriform Ltd)
Task: {9857E4CB-BC93-4796-9A91-2D744FC9CC7D} - System32\Tasks\{9172DBA5-4235-4EED-940A-CB477E373015} => Firefox.exe http://www.skype.com/go/downloading?sou ... rror=12002
Task: {E8203A12-E05C-413F-AD0E-617CCE64F7AD} - System32\Tasks\{73605481-1D03-4192-9719-20DBC151F99A} => Firefox.exe http://www.skype.com/go/downloading?sou ... rror=12007
==================== Loaded Modules (whitelisted) =============
2014-02-12 15:41 - 2013-12-19 20:53 - 00117536 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-04-04 22:03 - 2014-04-02 09:17 - 00070848 _____ () C:\Program Files (x86)\Mobogenie\MgAssist.exe
2014-02-14 23:23 - 2014-02-14 23:24 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2010-01-09 21:17 - 2010-01-09 21:17 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-01-21 02:40 - 2010-01-21 02:40 - 08794464 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2014-04-04 22:03 - 2014-04-02 09:17 - 00748736 _____ () C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
2014-02-12 15:38 - 2012-02-17 18:21 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2008-12-20 04:20 - 2014-02-12 16:01 - 00054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\HookLib.dll
2012-02-21 14:06 - 2014-02-12 16:01 - 01490944 _____ () C:\Program Files (x86)\Lenovo\Energy Management\EMWpfUI.dll
2008-12-20 04:20 - 2014-02-12 16:01 - 00054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\kbdhook.dll
2014-02-12 16:20 - 2009-12-29 17:52 - 00089088 _____ () C:\Windows\SYSTEM32\CmdRtr64.DLL
2014-02-12 16:20 - 2010-07-22 17:46 - 00237056 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL
2013-06-17 12:35 - 2013-06-17 12:35 - 00478400 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\dblite.dll
2013-05-08 14:52 - 2013-05-08 14:52 - 01270464 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\kpcengine.2.3.dll
2014-04-04 22:03 - 2014-04-02 09:17 - 00065728 _____ () C:\Program Files (x86)\Mobogenie\Device.dll
2014-04-04 22:03 - 2014-04-02 09:17 - 00474816 _____ () C:\Program Files (x86)\Mobogenie\DCR.dll
2014-01-22 14:29 - 2014-01-22 14:29 - 00433664 _____ () C:\Program Files (x86)\Evernote\Evernote\libxml2.dll
2014-01-22 14:29 - 2014-01-22 14:29 - 00315392 _____ () C:\Program Files (x86)\Evernote\Evernote\libtidy.dll
2014-02-12 16:20 - 2009-12-29 17:50 - 00073728 _____ () C:\Windows\SysWOW64\CmdRtr.DLL
2014-02-12 16:20 - 2010-07-22 17:45 - 00181760 _____ () C:\Windows\SysWOW64\APOMngr.DLL
2014-02-15 00:48 - 2014-03-29 19:53 - 03642480 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2010-01-09 21:18 - 2010-01-09 21:18 - 04254560 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-01-21 02:34 - 2010-01-21 02:34 - 08793952 _____ () D:\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2014-02-21 04:24 - 2014-02-21 04:24 - 00172032 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\b162055347700182d96325676dd591c4\IsdiInterop.ni.dll
2014-02-12 15:36 - 2011-11-29 21:00 - 00059392 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2014-02-12 15:37 - 2012-02-21 22:09 - 01198872 ____R () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-02-12 16:23 - 2014-02-12 16:23 - 16287624 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: BCSSync => "D:\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: UpdatePRCShortCut => "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (04/06/2014 02:35:34 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (04/06/2014 01:21:50 PM) (Source: Winlogon) (User: )
Description: Windows license activation failed. Error 0x80070005.
Error: (04/06/2014 01:21:37 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (04/06/2014 00:32:47 PM) (Source: Application Hang) (User: )
Description: The program fifa14-SKIDROW.exe version 1.2.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 9f0
Start Time: 01cf51836e15f601
Termination Time: 10
Application Path: D:\FIFA 14\FIFA 14\Game\fifa14-SKIDROW.exe
Report Id: c83200cb-bd76-11e3-b2cd-74e543616351
Error: (04/05/2014 11:26:40 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (04/05/2014 11:25:27 PM) (Source: Winlogon) (User: )
Description: Windows license activation failed. Error 0x80070005.
Error: (04/05/2014 11:18:00 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005
Error: (04/05/2014 07:52:14 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (04/05/2014 07:50:53 PM) (Source: Winlogon) (User: )
Description: Windows license activation failed. Error 0x80070005.
Error: (04/05/2014 00:29:04 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (04/05/2014 10:24:21 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5
Error: (04/04/2014 10:03:19 PM) (Source: Service Control Manager) (User: )
Description: The MgAssist Service service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
Error: (04/04/2014 08:07:27 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
Error: (04/04/2014 08:07:27 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated with service-specific error %%-1073473535.
Error: (04/04/2014 00:34:00 PM) (Source: DCOM) (User: Alienlizard)
Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}AlienlizardTomS-1-5-21-3023474365-939871986-2922477184-1000LocalHost (Using LRPC)
Error: (04/04/2014 00:33:49 PM) (Source: DCOM) (User: Alienlizard)
Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}AlienlizardTomS-1-5-21-3023474365-939871986-2922477184-1000LocalHost (Using LRPC)
Error: (04/04/2014 00:33:45 PM) (Source: DCOM) (User: Alienlizard)
Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}AlienlizardTomS-1-5-21-3023474365-939871986-2922477184-1000LocalHost (Using LRPC)
Error: (04/03/2014 00:50:19 PM) (Source: Schannel) (User: Alienlizard)
Description: The certificate received from the remote server was issued by an untrusted certificate authority. Because of this, none of the data contained in the certificate can be validated. The SSL connection request has failed. The attached data contains the server certificate.
Error: (04/03/2014 00:50:19 PM) (Source: Schannel) (User: Alienlizard)
Description: The following fatal alert was generated: 48. The internal error state is 552.
Error: (04/03/2014 00:49:32 PM) (Source: Schannel) (User: Alienlizard)
Description: The certificate received from the remote server was issued by an untrusted certificate authority. Because of this, none of the data contained in the certificate can be validated. The SSL connection request has failed. The attached data contains the server certificate.
Microsoft Office Sessions:
=========================
Error: (04/06/2014 02:35:34 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (04/06/2014 01:21:50 PM) (Source: Winlogon)(User: )
Description: 0x800700050x00000000
Error: (04/06/2014 01:21:37 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (04/06/2014 00:32:47 PM) (Source: Application Hang)(User: )
Description: fifa14-SKIDROW.exe1.2.0.09f001cf51836e15f60110D:\FIFA 14\FIFA 14\Game\fifa14-SKIDROW.exec83200cb-bd76-11e3-b2cd-74e543616351
Error: (04/05/2014 11:26:40 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (04/05/2014 11:25:27 PM) (Source: Winlogon)(User: )
Description: 0x800700050x00000000
Error: (04/05/2014 11:18:00 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005
Error: (04/05/2014 07:52:14 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (04/05/2014 07:50:53 PM) (Source: Winlogon)(User: )
Description: 0x800700050x00000000
Error: (04/05/2014 00:29:04 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
==================== Memory info ===========================
Percentage of memory in use: 30%
Total physical RAM: 8094.36 MB
Available physical RAM: 5641.02 MB
Total Pagefile: 16186.89 MB
Available Pagefile: 13384.22 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:100.51 GB) (Free:27.94 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Hry a programy) (Fixed) (Total:225.61 GB) (Free:110.91 GB) NTFS
Drive e: (Filmy) (Fixed) (Total:169.96 GB) (Free:114.1 GB) NTFS
Drive f: () (Fixed) (Total:100.09 GB) (Free:20.59 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596 GB) (Disk ID: 9315B1BF)
Partition 1: (Active) - (Size=101 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=226 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=170 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=100 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Divite se, ze tam mate spoustu bordelu, kdyz si to krmite cracky a keygeny 
Přispějete na provoz fóra?