Prosím o preventivku

[peachcz]

Zdravím, mohl bych poprosit o kontrolu ?

Logfile of random's system information tool 1.10 (written by random/random)
Run by Tomáš at 2014-11-04 12:31:50
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 98 GB (15%) free of 669 GB
Total RAM: 4077 MB (37% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:31:58, on 4.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16575)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
C:\Windows\SysWOW64\WinFLTray.exe
C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe
C:\Program Files (x86)\USB Camera2\VM332_STI.EXE
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNavigator.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Tomáš.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [332BigDog] C:\Program Files (x86)\USB Camera2\VM332_STI.EXE
O4 - HKLM\..\Run: [MuteSync] C:\PROGRA~2\Lenovo\LENOVO~1\MuteSync.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "c:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Lenovo SplitScreen] "C:\Program Files\Lenovo\Lenovo SplitScreen\SplitScreen\AutoRunSpS.exe"
O4 - HKLM\..\Run: [UCam_Menu] "c:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\Lenovo\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\3.0"
O4 - HKLM\..\Run: [YouCam Mirror Tray icon] "c:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
O4 - HKLM\..\Run: [Lenovo SlideNav2] "C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlideNavVDM.exe"
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Bonus.SSR.FR11] "C:\Program Files (x86)\ABBYY FineReader 11\Bonus.ScreenshotReader.exe" /autorun
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Zoner Photo Studio Service 16] "C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe"
O4 - HKCU\..\Run: [EPSON SX420W Series] C:\windows\system32\spool\DRIVERS\x64\3\E_IATIGCE.EXE /FU "C:\windows\TEMP\E_S5A6.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [WinFLTray] C:\windows\SysWow64\WinFLTray.exe
O4 - HKCU\..\Run: [FLBackup] C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: ABBYY FineReader 11 CE Licensing Service (ABBYY.Licensing.FineReader.Corporate.11.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLService - New Softwares.net - C:\windows\SysWow64\WinFLService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IGRS - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo ReadyComm AppSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
O23 - Service: Lenovo ReadyComm ConnSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Slidebar Notifier Service - Lenovo - C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14789 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx
taskeng.exe {BCE9BEBD-B2D2-4D22-98B7-D25B04884215}
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe" -service
"taskhost.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\windows\system32\Dwm.exe"
"C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe"
C:\windows\Explorer.EXE
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe"
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE"
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE"
C:\windows\SysWow64\WinFLService.exe
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
"C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 528
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Synaptics\SynTP\SynBtnAsst.exe" Utility_Window
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe"
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Windows\SysWOW64\WinFLTray.exe"
"C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe"
"C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\USB Camera2\VM332_STI.EXE"
"C:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe"
"C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
"C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe"
"C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlideNavVDM.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNavigator.exe" Default
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\System32\svchost.exe -k secsvcs
"C:\windows\system32\wuauclt.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3896.0.1224357814\1149212503" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,16 --gpu-vendor-id=0x1002 --gpu-device-id=0x68c0 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=14.301.1001.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/disable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/None/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/QueryBoundaryControl_Stable_R6_Postperiod/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-1-Percent/group_34/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="3896.2.379718464\1452113228" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/disable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/None/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/QueryBoundaryControl_Stable_R6_Postperiod/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-1-Percent/group_34/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="3896.3.2030599245\1400095577" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/disable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/None/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/QueryBoundaryControl_Stable_R6_Postperiod/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-1-Percent/group_34/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="3896.4.757913932\1209886246" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/disable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/None/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/QueryBoundaryControl_Stable_R6_Postperiod/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-1-Percent/group_34/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="3896.5.151490375\310427446" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/disable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/None/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/QueryBoundaryControl_Stable_R6_Postperiod/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-1-Percent/group_34/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="3896.10.1554071747\1266454805" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll" --lang=cs --channel="3896.12.2032151365\170188856" /prefetch:-390060480
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/disable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/None/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/QueryBoundaryControl_Stable_R6_Postperiod/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-1-Percent/group_34/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="3896.21.1259789112\536864302" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/disable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/None/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/QueryBoundaryControl_Stable_R6_Postperiod/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-1-Percent/group_34/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="3896.41.1689807722\1389543777" /prefetch:673131151
"C:\windows\system32\taskmgr.exe" /4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/disable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/None/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/QueryBoundaryControl_Stable_R6_Postperiod/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-1-Percent/group_34/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="3896.47.98568310\695606985" /prefetch:673131151

"C:\Users\Tomáš\Downloads\RSITx64.exe"

[peachcz]

======Scheduled tasks folder======

C:\windows\tasks\AutoKMS.job - C:\windows\AutoKMS.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\ptqer6w6.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz"
prefs.js - "keyword.URL" - "http://www.bing.com/search?FORM=UP97DF&PC=UP97&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.189 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\3.0.40624.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3508.0205]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.189 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL


C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\ptqer6w6.default\searchplugins\
bingp.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 6722448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-07-24 612248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-07-24 457712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-07-15 2247976]
"SynBtnAsst"=C:\Program Files\Synaptics\SynTP\SynBtnAsst.exe [2010-07-15 54568]
"OnekeyStudio"=C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe [2010-12-17 789920]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [2010-04-23 4462496]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2010-09-15 7069088]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-02-18 11779176]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-01-18 2188904]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]
"mylbx"=C:\Program Files\My Lockbox\mylbx.exe [2013-10-28 2289952]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Zoner Photo Studio Service 16"=C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [2013-12-13 831488]
"EPSON SX420W Series"=C:\windows\system32\spool\DRIVERS\x64\3\E_IATIGCE.EXE [2009-09-14 224768]
"WinFLTray"=C:\windows\SysWow64\WinFLTray.exe [2014-04-14 321736]
"FLBackup"=C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe [2014-04-14 275656]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [2013-12-13 831488]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"332BigDog"=C:\Program Files (x86)\USB Camera2\VM332_STI.EXE [2010-01-19 536576]
"MuteSync"=C:\PROGRA~2\Lenovo\LENOVO~1\MuteSync.exe [2009-12-28 336384]
"Adobe Reader Speed Launcher"=c:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-12-03 35184]
"Lenovo SplitScreen"=C:\Program Files\Lenovo\Lenovo SplitScreen\SplitScreen\AutoRunSpS.exe [2010-06-23 778592]
"UCam_Menu"=c:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe [2009-05-19 222504]
"YouCam Mirror Tray icon"=c:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2010-02-03 167008]
"VeriFaceManager"=C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [2010-12-17 3122528]
"Lenovo SlideNav2"=C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlideNavVDM.exe [2009-12-30 318400]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2010-07-26 222504]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-07-31 4085896]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"Bonus.SSR.FR11"=C:\Program Files (x86)\ABBYY FineReader 11\Bonus.ScreenshotReader.exe [2012-01-19 933640]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-09-15 767200]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2014-06-24 4101576]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 6722448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinFLAdrv.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-11-04 12:15:11 ----D---- C:\Program Files\trend micro
2014-11-04 12:15:10 ----D---- C:\rsit
2014-11-04 12:01:56 ----D---- C:\Program Files (x86)\Lavalys
2014-11-04 08:14:56 ----N---- C:\windows\KMSEmulator.exe
2014-11-03 12:10:40 ----A---- C:\windows\system32\sdnclean64.exe
2014-11-03 12:10:39 ----D---- C:\ProgramData\Spybot - Search & Destroy
2014-11-03 12:10:34 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-10-22 11:02:55 ----HD---- C:\windows\PIF
2014-10-22 10:54:31 ----D---- C:\Program Files (x86)\Ubisoft
2014-10-15 15:45:28 ----D---- C:\Program Files (x86)\MSXML 4.0
2014-10-15 15:22:07 ----A---- C:\windows\SYSWOW64\schannel.dll
2014-10-15 15:22:07 ----A---- C:\windows\SYSWOW64\kerberos.dll
2014-10-15 15:22:07 ----A---- C:\windows\system32\schannel.dll
2014-10-15 15:22:07 ----A---- C:\windows\system32\kerberos.dll
2014-10-15 15:22:06 ----A---- C:\windows\SYSWOW64\wdigest.dll
2014-10-15 15:22:06 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2014-10-15 15:22:06 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2014-10-15 15:22:06 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2014-10-15 15:22:06 ----A---- C:\windows\system32\wdigest.dll
2014-10-15 15:22:06 ----A---- C:\windows\system32\TSpkg.dll
2014-10-15 15:22:06 ----A---- C:\windows\system32\ncrypt.dll
2014-10-15 15:22:06 ----A---- C:\windows\system32\msv1_0.dll
2014-10-15 15:22:05 ----A---- C:\windows\SYSWOW64\credssp.dll
2014-10-15 15:22:05 ----A---- C:\windows\system32\credssp.dll
2014-10-15 15:20:53 ----A---- C:\windows\SYSWOW64\osk.exe
2014-10-15 15:20:53 ----A---- C:\windows\system32\osk.exe
2014-10-15 15:20:51 ----A---- C:\windows\system32\win32k.sys
2014-10-15 15:20:48 ----A---- C:\windows\system32\drivers\tcpip.sys
2014-10-15 15:20:45 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2014-10-15 15:20:42 ----A---- C:\windows\system32\drivers\netio.sys
2014-10-15 15:20:38 ----A---- C:\windows\SYSWOW64\msxml6r.dll
2014-10-15 15:20:38 ----A---- C:\windows\SYSWOW64\msxml6.dll
2014-10-15 15:20:38 ----A---- C:\windows\SYSWOW64\msxml3.dll
2014-10-15 15:20:38 ----A---- C:\windows\system32\msxml6r.dll
2014-10-15 15:20:38 ----A---- C:\windows\system32\msxml6.dll
2014-10-15 15:20:38 ----A---- C:\windows\system32\msxml3.dll
2014-10-15 15:20:37 ----A---- C:\windows\SYSWOW64\msxml3r.dll
2014-10-15 15:20:37 ----A---- C:\windows\system32\msxml3r.dll
2014-10-15 15:20:36 ----A---- C:\windows\SYSWOW64\explorer.exe
2014-10-15 15:20:36 ----A---- C:\windows\explorer.exe
2014-10-15 15:20:34 ----A---- C:\windows\SYSWOW64\mscorier.dll
2014-10-15 15:20:34 ----A---- C:\windows\SYSWOW64\dfshim.dll
2014-10-15 15:20:34 ----A---- C:\windows\system32\mscorier.dll
2014-10-15 15:20:33 ----A---- C:\windows\SYSWOW64\mscories.dll
2014-10-15 15:20:33 ----A---- C:\windows\system32\mscories.dll
2014-10-15 15:20:33 ----A---- C:\windows\system32\dfshim.dll
2014-10-15 15:20:22 ----A---- C:\windows\system32\lsasrv.dll
2014-10-15 15:20:21 ----A---- C:\windows\system32\drivers\cng.sys
2014-10-15 15:20:20 ----A---- C:\windows\system32\sspicli.dll
2014-10-15 15:20:20 ----A---- C:\windows\system32\lsass.exe
2014-10-15 15:20:20 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2014-10-15 15:20:20 ----A---- C:\windows\system32\drivers\ksecdd.sys
2014-10-15 15:20:19 ----A---- C:\windows\SYSWOW64\sspicli.dll
2014-10-15 15:20:19 ----A---- C:\windows\SYSWOW64\secur32.dll
2014-10-15 15:20:19 ----A---- C:\windows\system32\sspisrv.dll
2014-10-15 15:20:19 ----A---- C:\windows\system32\secur32.dll
2014-10-15 15:19:59 ----A---- C:\windows\system32\shell32.dll
2014-10-15 15:19:58 ----A---- C:\windows\SYSWOW64\shell32.dll
2014-10-15 15:19:58 ----A---- C:\windows\SYSWOW64\shdocvw.dll
2014-10-15 15:19:58 ----A---- C:\windows\system32\shdocvw.dll
2014-10-15 15:19:48 ----A---- C:\windows\system32\gdi32.dll
2014-10-15 15:19:44 ----A---- C:\windows\SYSWOW64\gdi32.dll
2014-10-15 15:15:14 ----A---- C:\windows\system32\msi.dll
2014-10-15 15:15:13 ----A---- C:\windows\SYSWOW64\msi.dll
2014-10-15 15:15:12 ----A---- C:\windows\SYSWOW64\msihnd.dll
2014-10-15 15:15:12 ----A---- C:\windows\SYSWOW64\authui.dll
2014-10-15 15:15:12 ----A---- C:\windows\system32\msihnd.dll
2014-10-15 15:15:12 ----A---- C:\windows\system32\consent.exe
2014-10-15 15:15:12 ----A---- C:\windows\system32\authui.dll
2014-10-15 15:15:12 ----A---- C:\windows\system32\appinfo.dll
2014-10-15 15:10:12 ----A---- C:\windows\system32\kernel32.dll
2014-10-15 15:10:11 ----A---- C:\windows\system32\KernelBase.dll
2014-10-15 15:10:10 ----A---- C:\windows\system32\wow64win.dll
2014-10-15 15:10:10 ----A---- C:\windows\system32\wow64.dll
2014-10-15 15:10:09 ----A---- C:\windows\SYSWOW64\setup16.exe
2014-10-15 15:10:09 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2014-10-15 15:10:09 ----A---- C:\windows\SYSWOW64\kernel32.dll
2014-10-15 15:10:09 ----A---- C:\windows\system32\winsrv.dll
2014-10-15 15:10:09 ----A---- C:\windows\system32\conhost.exe
2014-10-15 15:10:08 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-10-15 15:10:08 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-10-15 15:10:08 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2014-10-15 15:10:08 ----A---- C:\windows\SYSWOW64\instnm.exe
2014-10-15 15:10:08 ----A---- C:\windows\system32\wow64cpu.dll
2014-10-15 15:10:08 ----A---- C:\windows\system32\ntvdm64.dll
2014-10-15 15:10:07 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-10-15 15:10:07 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-10-15 15:10:07 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-10-15 15:10:07 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-10-15 15:10:07 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-10-15 15:10:07 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2014-10-15 15:10:07 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-10-15 15:10:07 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-10-15 15:10:07 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-10-15 15:10:07 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-10-15 15:10:07 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-10-15 15:10:07 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-10-15 15:10:07 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-10-15 15:10:07 ----A---- C:\windows\SYSWOW64\wow32.dll
2014-10-15 15:10:06 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2014-10-15 15:10:06 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-10-15 15:10:06 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-10-15 15:10:06 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-10-15 15:10:06 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-10-15 15:10:06 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-10-15 15:10:06 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-10-15 15:10:06 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-10-15 15:10:06 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-10-15 15:10:06 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-10-15 15:10:05 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-10-15 15:10:05 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-10-15 15:10:05 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-10-15 15:10:05 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-10-15 15:10:04 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2014-10-15 15:10:04 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-10-15 15:10:04 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-10-15 15:10:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-10-15 15:10:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-10-15 15:10:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-10-15 15:10:03 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-10-15 15:10:03 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-10-15 15:10:03 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-10-15 15:10:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-10-15 15:10:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-10-15 15:10:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-10-15 15:10:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-10-15 15:10:02 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-10-15 15:10:02 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-10-15 15:10:02 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-10-15 15:10:02 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-10-15 15:10:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2014-10-15 15:10:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-10-15 15:10:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2014-10-15 15:10:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-10-15 15:10:01 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-10-15 15:10:01 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-10-15 15:10:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-10-15 15:10:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2014-10-15 15:10:00 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-10-15 15:10:00 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-10-15 15:10:00 ----A---- C:\windows\SYSWOW64\user.exe
2014-10-15 15:09:55 ----A---- C:\windows\system32\spoolsv.exe
2014-10-15 15:09:55 ----A---- C:\windows\splwow64.exe
2014-10-15 15:09:48 ----A---- C:\windows\system32\rpcrt4.dll
2014-10-15 15:09:47 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2014-10-15 15:08:23 ----A---- C:\windows\system32\rastls.dll
2014-10-15 15:08:22 ----A---- C:\windows\SYSWOW64\rastls.dll
2014-10-15 15:07:46 ----A---- C:\windows\system32\packager.dll
2014-10-15 15:07:45 ----A---- C:\windows\SYSWOW64\packager.dll
2014-10-14 15:43:47 ----D---- C:\ProgramData\ATI
2014-10-14 15:23:58 ----D---- C:\windows\Migration
2014-10-14 15:12:32 ----A---- C:\windows\SYSWOW64\vbscript.dll
2014-10-14 15:12:32 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2014-10-14 15:12:32 ----A---- C:\windows\system32\mshtmled.dll
2014-10-14 15:12:31 ----A---- C:\windows\SYSWOW64\msfeedsbs.dll
2014-10-14 15:12:31 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2014-10-14 15:12:31 ----A---- C:\windows\system32\msfeedsbs.dll
2014-10-14 15:12:31 ----A---- C:\windows\system32\msfeeds.dll
2014-10-14 15:12:30 ----A---- C:\windows\SYSWOW64\iertutil.dll
2014-10-14 15:12:30 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2014-10-14 15:12:30 ----A---- C:\windows\system32\msfeedssync.exe
2014-10-14 15:12:30 ----A---- C:\windows\system32\iertutil.dll
2014-10-14 15:12:30 ----A---- C:\windows\system32\dxtmsft.dll
2014-10-14 15:12:29 ----A---- C:\windows\SYSWOW64\wininet.dll
2014-10-14 15:12:29 ----A---- C:\windows\system32\wininet.dll
2014-10-14 15:12:28 ----A---- C:\windows\SYSWOW64\url.dll
2014-10-14 15:12:28 ----A---- C:\windows\SYSWOW64\msfeedssync.exe
2014-10-14 15:12:28 ----A---- C:\windows\SYSWOW64\ieui.dll
2014-10-14 15:12:28 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2014-10-14 15:12:28 ----A---- C:\windows\system32\url.dll
2014-10-14 15:12:28 ----A---- C:\windows\system32\ieui.dll
2014-10-14 15:12:28 ----A---- C:\windows\system32\dxtrans.dll
2014-10-14 15:12:27 ----A---- C:\windows\SYSWOW64\urlmon.dll
2014-10-14 15:12:27 ----A---- C:\windows\system32\urlmon.dll
2014-10-14 15:12:27 ----A---- C:\windows\system32\jsproxy.dll
2014-10-14 15:12:26 ----A---- C:\windows\SYSWOW64\mshta.exe
2014-10-14 15:12:26 ----A---- C:\windows\system32\mshta.exe
2014-10-14 15:12:25 ----A---- C:\windows\SYSWOW64\jscript9.dll
2014-10-14 15:12:25 ----A---- C:\windows\SYSWOW64\jscript.dll
2014-10-14 15:12:25 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2014-10-14 15:12:25 ----A---- C:\windows\system32\vbscript.dll
2014-10-14 15:12:25 ----A---- C:\windows\system32\jscript9.dll
2014-10-14 15:12:25 ----A---- C:\windows\system32\ieUnatt.exe
2014-10-14 15:12:24 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2014-10-14 15:12:24 ----A---- C:\windows\system32\jscript.dll
2014-10-14 15:12:22 ----A---- C:\windows\SYSWOW64\mshtml.dll
2014-10-14 15:12:21 ----A---- C:\windows\system32\mshtml.dll
2014-10-14 15:12:20 ----A---- C:\windows\SYSWOW64\ieframe.dll
2014-10-14 15:12:20 ----A---- C:\windows\system32\ieframe.dll
2014-10-14 14:50:25 ----A---- C:\windows\system32\RMActivate_isv.exe
2014-10-14 14:50:25 ----A---- C:\windows\system32\RMActivate.exe
2014-10-14 14:50:24 ----A---- C:\windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-10-14 14:50:24 ----A---- C:\windows\SYSWOW64\RMActivate_ssp.exe
2014-10-14 14:50:24 ----A---- C:\windows\SYSWOW64\RMActivate_isv.exe
2014-10-14 14:50:24 ----A---- C:\windows\SYSWOW64\RMActivate.exe
2014-10-14 14:50:24 ----A---- C:\windows\system32\secproc_isv.dll
2014-10-14 14:50:24 ----A---- C:\windows\system32\RMActivate_ssp_isv.exe
2014-10-14 14:50:24 ----A---- C:\windows\system32\RMActivate_ssp.exe
2014-10-14 14:50:23 ----A---- C:\windows\SYSWOW64\secproc_isv.dll
2014-10-14 14:50:23 ----A---- C:\windows\SYSWOW64\secproc.dll
2014-10-14 14:50:23 ----A---- C:\windows\SYSWOW64\msdrm.dll
2014-10-14 14:50:23 ----A---- C:\windows\system32\secproc.dll
2014-10-14 14:50:23 ----A---- C:\windows\system32\msdrm.dll
2014-10-14 14:50:22 ----A---- C:\windows\SYSWOW64\secproc_ssp_isv.dll
2014-10-14 14:50:22 ----A---- C:\windows\SYSWOW64\secproc_ssp.dll
2014-10-14 14:50:22 ----A---- C:\windows\system32\secproc_ssp_isv.dll
2014-10-14 14:50:22 ----A---- C:\windows\system32\secproc_ssp.dll
2014-10-14 14:50:13 ----A---- C:\windows\SYSWOW64\tzres.dll
2014-10-14 14:50:13 ----A---- C:\windows\system32\tzres.dll
2014-10-14 14:49:39 ----A---- C:\windows\SYSWOW64\netcorehc.dll
2014-10-14 14:49:39 ----A---- C:\windows\SYSWOW64\ncsi.dll
2014-10-14 14:49:39 ----A---- C:\windows\system32\nlasvc.dll
2014-10-14 14:49:39 ----A---- C:\windows\system32\netcorehc.dll
2014-10-14 14:49:39 ----A---- C:\windows\system32\ncsi.dll
2014-10-14 14:49:39 ----A---- C:\windows\system32\iphlpsvc.dll
2014-10-14 14:49:38 ----A---- C:\windows\SYSWOW64\nlaapi.dll
2014-10-14 14:49:38 ----A---- C:\windows\SYSWOW64\netevent.dll
2014-10-14 14:49:38 ----A---- C:\windows\system32\nlaapi.dll
2014-10-14 14:49:38 ----A---- C:\windows\system32\netevent.dll
2014-10-14 14:49:38 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2014-10-14 14:49:26 ----A---- C:\windows\SYSWOW64\mswsock.dll
2014-10-14 14:49:26 ----A---- C:\windows\system32\mswsock.dll
2014-10-14 14:49:24 ----A---- C:\windows\SYSWOW64\TSWorkspace.dll
2014-10-14 14:49:24 ----A---- C:\windows\system32\TSWorkspace.dll
2014-10-14 14:49:21 ----A---- C:\windows\system32\WMVDECOD.DLL
2014-10-14 14:49:20 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2014-10-14 14:49:20 ----A---- C:\windows\system32\drivers\Wdf01000.sys
2014-10-14 14:49:18 ----A---- C:\windows\SYSWOW64\wintrust.dll
2014-10-14 14:49:18 ----A---- C:\windows\system32\wintrust.dll
2014-10-14 14:49:07 ----A---- C:\windows\system32\OxpsConverter.exe
2014-10-14 14:49:03 ----A---- C:\windows\SYSWOW64\dhcpcsvc6.dll
2014-10-14 14:49:03 ----A---- C:\windows\SYSWOW64\dhcpcore6.dll
2014-10-14 14:49:03 ----A---- C:\windows\system32\dhcpcsvc6.dll
2014-10-14 14:49:03 ----A---- C:\windows\system32\dhcpcore6.dll
2014-10-14 14:48:54 ----A---- C:\windows\SYSWOW64\cryptsvc.dll
2014-10-14 14:48:54 ----A---- C:\windows\SYSWOW64\cryptnet.dll
2014-10-14 14:48:54 ----A---- C:\windows\SYSWOW64\crypt32.dll
2014-10-14 14:48:54 ----A---- C:\windows\system32\cryptsvc.dll
2014-10-14 14:48:54 ----A---- C:\windows\system32\cryptnet.dll
2014-10-14 14:48:54 ----A---- C:\windows\system32\crypt32.dll
2014-10-14 14:48:38 ----A---- C:\windows\system32\drivers\dxgmms1.sys
2014-10-14 14:48:38 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2014-10-14 14:48:38 ----A---- C:\windows\system32\cdd.dll
2014-10-14 14:48:37 ----A---- C:\windows\SYSWOW64\iologmsg.dll
2014-10-14 14:48:37 ----A---- C:\windows\system32\iologmsg.dll
2014-10-14 14:48:37 ----A---- C:\windows\system32\drivers\storport.sys
2014-10-14 14:48:37 ----A---- C:\windows\system32\drivers\msiscsi.sys
2014-10-14 14:48:37 ----A---- C:\windows\system32\drivers\Diskdump.sys
2014-10-14 14:48:26 ----A---- C:\windows\SYSWOW64\qedit.dll
2014-10-14 14:48:26 ----A---- C:\windows\system32\qedit.dll
2014-10-14 14:48:26 ----A---- C:\windows\system32\drivers\RNDISMP.sys
2014-10-14 14:48:26 ----A---- C:\windows\system32\drivers\ndis.sys
2014-10-14 14:48:25 ----A---- C:\windows\system32\drivers\usbuhci.sys
2014-10-14 14:48:25 ----A---- C:\windows\system32\drivers\usbport.sys
2014-10-14 14:48:25 ----A---- C:\windows\system32\drivers\usbohci.sys
2014-10-14 14:48:25 ----A---- C:\windows\system32\drivers\usbhub.sys
2014-10-14 14:48:25 ----A---- C:\windows\system32\drivers\usbehci.sys
2014-10-14 14:48:25 ----A---- C:\windows\system32\drivers\usbd.sys
2014-10-14 14:48:25 ----A---- C:\windows\system32\drivers\usbccgp.sys
2014-10-14 14:48:23 ----A---- C:\windows\SYSWOW64\SmartcardCredentialProvider.dll
2014-10-14 14:48:23 ----A---- C:\windows\SYSWOW64\credui.dll
2014-10-14 14:48:23 ----A---- C:\windows\system32\SmartcardCredentialProvider.dll
2014-10-14 14:48:23 ----A---- C:\windows\system32\credui.dll
2014-10-14 14:48:12 ----A---- C:\windows\SYSWOW64\WebClnt.dll
2014-10-14 14:48:12 ----A---- C:\windows\SYSWOW64\davclnt.dll
2014-10-14 14:48:12 ----A---- C:\windows\system32\WebClnt.dll
2014-10-14 14:48:12 ----A---- C:\windows\system32\davclnt.dll
2014-10-14 14:48:11 ----A---- C:\windows\system32\drivers\mrxdav.sys
2014-10-14 14:47:59 ----A---- C:\windows\SYSWOW64\usp10.dll
2014-10-14 14:47:59 ----A---- C:\windows\system32\usp10.dll
2014-10-14 14:47:57 ----A---- C:\windows\SYSWOW64\qdvd.dll
2014-10-14 14:47:57 ----A---- C:\windows\system32\qdvd.dll
2014-10-14 14:47:56 ----A---- C:\windows\SYSWOW64\atmfd.dll
2014-10-14 14:47:56 ----A---- C:\windows\system32\atmfd.dll
2014-10-14 14:47:55 ----A---- C:\windows\SYSWOW64\lpk.dll
2014-10-14 14:47:55 ----A---- C:\windows\SYSWOW64\fontsub.dll
2014-10-14 14:47:55 ----A---- C:\windows\SYSWOW64\dciman32.dll
2014-10-14 14:47:55 ----A---- C:\windows\SYSWOW64\atmlib.dll
2014-10-14 14:47:55 ----A---- C:\windows\system32\lpk.dll
2014-10-14 14:47:55 ----A---- C:\windows\system32\fontsub.dll
2014-10-14 14:47:55 ----A---- C:\windows\system32\dciman32.dll
2014-10-14 14:47:55 ----A---- C:\windows\system32\atmlib.dll
2014-10-14 14:47:54 ----A---- C:\windows\SYSWOW64\wer.dll
2014-10-14 14:47:54 ----A---- C:\windows\system32\wer.dll
2014-10-14 14:47:51 ----A---- C:\windows\system32\wwansvc.dll
2014-10-14 14:47:51 ----A---- C:\windows\system32\wwanprotdim.dll
2014-10-14 14:47:49 ----A---- C:\windows\SYSWOW64\comctl32.dll
2014-10-14 14:47:49 ----A---- C:\windows\system32\comctl32.dll
2014-10-14 14:47:48 ----A---- C:\windows\system32\drivers\portcls.sys
2014-10-14 14:47:48 ----A---- C:\windows\system32\drivers\drmk.sys
2014-10-14 14:47:48 ----A---- C:\windows\system32\drivers\ataport.sys
2014-10-14 14:47:46 ----A---- C:\windows\system32\drivers\usbvideo.sys
2014-10-14 14:47:46 ----A---- C:\windows\system32\drivers\usbcir.sys
2014-10-14 14:47:45 ----A---- C:\windows\system32\drivers\afd.sys
2014-10-14 14:47:44 ----A---- C:\windows\system32\imagehlp.dll
2014-10-14 14:47:43 ----A---- C:\windows\SYSWOW64\imagehlp.dll
2014-10-14 14:47:43 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2014-10-14 14:47:42 ----A---- C:\windows\SYSWOW64\msieftp.dll
2014-10-14 14:47:42 ----A---- C:\windows\system32\msieftp.dll
2014-10-14 14:47:41 ----A---- C:\windows\system32\drivers\usbscan.sys
2014-10-14 14:47:41 ----A---- C:\windows\system32\drivers\hidparse.sys
2014-10-14 14:47:41 ----A---- C:\windows\system32\drivers\hidclass.sys
2014-10-14 14:47:35 ----A---- C:\windows\SYSWOW64\wscript.exe
2014-10-14 14:47:35 ----A---- C:\windows\SYSWOW64\scrrun.dll
2014-10-14 14:47:35 ----A---- C:\windows\SYSWOW64\cscript.exe
2014-10-14 14:47:35 ----A---- C:\windows\system32\wscript.exe
2014-10-14 14:47:35 ----A---- C:\windows\system32\scrrun.dll
2014-10-14 14:47:35 ----A---- C:\windows\system32\cscript.exe
2014-10-14 14:47:34 ----A---- C:\windows\SYSWOW64\win32spl.dll
2014-10-14 14:47:34 ----A---- C:\windows\system32\win32spl.dll
2014-10-14 14:47:32 ----A---- C:\windows\SYSWOW64\certutil.exe
2014-10-14 14:47:32 ----A---- C:\windows\system32\certutil.exe
2014-10-14 14:47:31 ----A---- C:\windows\SYSWOW64\certenc.dll
2014-10-14 14:47:31 ----A---- C:\windows\system32\certenc.dll
2014-10-14 14:47:11 ----A---- C:\windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-10-14 14:47:11 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-10-14 14:47:08 ----A---- C:\windows\system32\taskhost.exe
2014-10-14 14:47:05 ----A---- C:\windows\SYSWOW64\cryptdlg.dll
2014-10-14 14:47:05 ----A---- C:\windows\system32\cryptdlg.dll
2014-10-14 14:07:22 ----A---- C:\windows\system32\IKEEXT.DLL
2014-10-14 14:07:21 ----A---- C:\windows\SYSWOW64\nshwfp.dll
2014-10-14 14:07:21 ----A---- C:\windows\SYSWOW64\FWPUCLNT.DLL
2014-10-14 14:07:21 ----A---- C:\windows\system32\nshwfp.dll
2014-10-14 14:07:21 ----A---- C:\windows\system32\FWPUCLNT.DLL
2014-10-14 14:07:19 ----A---- C:\windows\system32\scavengeui.dll
2014-10-14 14:07:17 ----A---- C:\windows\system32\drivers\ntfs.sys
2014-10-14 14:07:15 ----A---- C:\windows\SYSWOW64\DWrite.dll
2014-10-14 14:07:15 ----A---- C:\windows\system32\FntCache.dll
2014-10-14 14:07:15 ----A---- C:\windows\system32\DWrite.dll
2014-10-14 13:49:18 ----D---- C:\Program Files (x86)\AMD AVT
2014-10-14 13:45:47 ----D---- C:\Program Files\AMD
2014-10-14 13:07:32 ----D---- C:\Program Files (x86)\salusafe
2014-10-12 15:04:53 ----D---- C:\Users\Tomáš\AppData\Roaming\Steam
2014-10-07 23:28:01 ----D---- C:\Users\Tomáš\AppData\Roaming\XRay Engine
2014-10-07 17:35:12 ----D---- C:\Program Files (x86)\Deep Silver

======List of files/folders modified in the last 1 month======

2014-11-04 12:30:17 ----D---- C:\windows\Temp
2014-11-04 12:15:11 ----D---- C:\Program Files
2014-11-04 12:01:56 ----RD---- C:\Program Files (x86)
2014-11-04 08:30:06 ----D---- C:\windows\system32\config
2014-11-04 08:14:56 ----D---- C:\Windows
2014-11-04 08:13:09 ----D---- C:\ProgramData\VeriFace
2014-11-03 12:57:00 ----D---- C:\windows\system32\drivers\etc
2014-11-03 12:11:08 ----D---- C:\windows\system32\Tasks
2014-11-03 12:10:44 ----SD---- C:\ProgramData\Microsoft
2014-11-03 12:10:40 ----D---- C:\windows\System32
2014-11-03 12:10:39 ----AHD---- C:\ProgramData
2014-11-03 11:27:31 ----SHD---- C:\System Volume Information
2014-11-02 00:03:54 ----D---- C:\Users\Tomáš\AppData\Roaming\uTorrent
2014-11-01 16:36:10 ----D---- C:\windows\Prefetch
2014-10-30 13:34:21 ----D---- C:\windows\inf
2014-10-30 13:34:21 ----A---- C:\windows\system32\PerfStringBackup.INI
2014-10-28 06:34:58 ----N---- C:\windows\system32\MpSigStub.exe
2014-10-27 22:00:30 ----D---- C:\Program Files (x86)\Steam
2014-10-27 20:39:52 ----D---- C:\ProgramData\boost_interprocess
2014-10-26 14:09:26 ----D---- C:\Program Files (x86)\WOW
2014-10-25 12:25:39 ----D---- C:\windows\system32\catroot2
2014-10-24 16:31:50 ----D---- C:\Program Files (x86)\StarCraft II
2014-10-24 16:30:51 ----D---- C:\Program Files (x86)\Battle.net
2014-10-22 11:03:20 ----SHD---- C:\windows\Installer
2014-10-22 11:02:58 ----D---- C:\windows\SYSWOW64\directx
2014-10-21 17:44:14 ----D---- C:\Program Files (x86)\WarThunder
2014-10-21 14:16:16 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-10-21 10:25:19 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2014-10-18 17:35:49 ----D---- C:\windows\Tasks
2014-10-17 16:07:22 ----D---- C:\windows\rescache
2014-10-16 10:48:02 ----D---- C:\windows\Microsoft.NET
2014-10-16 10:45:19 ----RSD---- C:\windows\assembly
2014-10-15 16:44:32 ----D---- C:\windows\winsxs
2014-10-15 16:40:58 ----D---- C:\windows\SysWOW64
2014-10-15 16:40:58 ----D---- C:\windows\system32\drivers
2014-10-15 16:40:58 ----D---- C:\Program Files\Windows Journal
2014-10-15 16:40:57 ----D---- C:\windows\ehome
2014-10-15 16:40:56 ----D---- C:\windows\system32\cs-CZ
2014-10-15 16:40:55 ----D---- C:\windows\SYSWOW64\cs-CZ
2014-10-15 16:40:55 ----D---- C:\windows\AppPatch
2014-10-15 15:45:03 ----A---- C:\windows\SYSWOW64\PerfStringBackup.INI
2014-10-15 15:37:58 ----D---- C:\windows\system32\MRT
2014-10-15 15:24:29 ----A---- C:\windows\system32\MRT.exe
2014-10-15 15:19:11 ----D---- C:\windows\system32\catroot
2014-10-14 15:34:49 ----D---- C:\windows\SYSWOW64\Dism
2014-10-14 15:34:48 ----D---- C:\windows\SYSWOW64\migration
2014-10-14 15:34:48 ----D---- C:\windows\system32\Dism
2014-10-14 15:34:48 ----D---- C:\Program Files\Windows Defender
2014-10-14 15:34:48 ----D---- C:\Program Files (x86)\Windows Defender
2014-10-14 15:34:48 ----D---- C:\Program Files (x86)\Internet Explorer
2014-10-14 15:34:47 ----D---- C:\windows\system32\migration
2014-10-14 15:34:47 ----D---- C:\Program Files\Internet Explorer
2014-10-14 15:34:39 ----D---- C:\windows\system32\DriverStore
2014-10-14 15:00:16 ----D---- C:\windows\debug
2014-10-14 13:49:20 ----D---- C:\ProgramData\AMD
2014-10-14 13:48:01 ----D---- C:\Program Files\ATI Technologies
2014-10-14 13:41:42 ----D---- C:\ProgramData\Package Cache
2014-10-14 13:36:54 ----D---- C:\AMD
2014-10-12 15:00:44 ----HD---- C:\windows\msdownld.tmp
2014-10-12 15:00:33 ----D---- C:\Temp
2014-10-10 22:33:00 ----D---- C:\Users\Tomáš\AppData\Roaming\Skype
2014-10-07 17:42:19 ----D---- C:\windows\Logs
2014-10-07 17:34:24 ----D---- C:\Users\Tomáš\AppData\Roaming\DAEMON Tools Lite
2014-10-06 11:22:04 ----D---- C:\ProgramData\374311380

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2014-07-24 65776]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2014-07-24 224896]
R0 FSProFilter2;FSPro File Filter 2; C:\windows\System32\Drivers\FSPFltd2.sys [2011-06-03 57648]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-09-13 437272]
R0 LHDmgr;LHDmgr; C:\windows\System32\DRIVERS\LhdX64.sys [2010-01-15 39008]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2014-07-24 93568]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2014-07-24 1041168]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2014-07-24 427360]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2014-09-15 283064]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R1 WinFLAdrv;WinFLAdrv; C:\windows\SysWOW64\WinFLAdrv.sys [2014-04-14 34816]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2014-07-24 29208]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2014-07-24 79184]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2014-07-24 92008]
R2 NEWDRIVER;NEWDRIVER; \??\C:\windows\SysWow64\WinVDEdrv6.sys [2014-04-14 197648]
R2 WinVDEDrv;WinVDEDrv; \??\C:\windows\SysWow64\WinVDEdrv.sys [2014-04-14 225680]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\windows\system32\DRIVERS\AcpiVpc.sys [2009-10-19 28176]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2014-09-15 16750080]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2014-09-15 576000]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW76.sys [2014-06-21 94720]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2011-02-18 2748520]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\k57nd60a.sys [2010-06-08 406056]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\windows\system32\DRIVERS\NETwNs64.sys [2010-07-13 7821312]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-07-15 1381936]
R3 vm332avs;Lenovo Camera2; C:\windows\System32\Drivers\vm332avs.sys [2010-06-02 229456]
R3 wdmirror;wdmirror; C:\windows\system32\DRIVERS\WDMirror.sys [2009-07-16 11280]
S3 Bridge0;Bridge0; C:\windows\system32\drivers\WDBridge.sys [2009-07-16 79376]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btusbflt;Bluetooth USB Filter; C:\windows\system32\drivers\btusbflt.sys [2010-04-09 54824]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2010-01-15 98344]
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys [2010-01-15 132648]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2010-01-15 21288]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2010-03-26 160880]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RTHDMIAzAudService;Service for HDMI; C:\windows\system32\drivers\RtHDMIVX.sys [2010-05-24 253728]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 WimFltr;WimFltr; C:\windows\system32\DRIVERS\wimfltr.sys [2008-08-06 151656]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S3 wsvd;wsvd; C:\windows\system32\DRIVERS\wsvd.sys [2009-07-21 121840]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.Corporate.11.0;ABBYY FineReader 11 CE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe [2011-12-22 818952]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2014-09-15 239616]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-07-24 50344]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2010-06-13 915232]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
R2 FLService;FLService; C:\windows\SysWow64\WinFLService.exe [2014-04-14 92360]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2014-06-24 1738168]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2014-06-27 2088408]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2014-04-25 171928]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 Slidebar Notifier Service;Slidebar Notifier Service; C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe [2009-12-30 69568]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-08 116648]
S2 ReadyComm.DirectRouter;ReadyComm.DirectRouter; C:\windows\System32\IgrsSvcs.exe -k IgrsSvcs []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-12-08 1044816]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-08 116648]
S3 IGRS;IGRS; C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe [2009-07-15 38152]
S3 Lenovo ReadyComm AppSvc;Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [2009-08-14 509192]
S3 Lenovo ReadyComm ConnSvc;Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [2009-11-17 575304]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 51456888]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-01 119408]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 PS_MDP;ReadyComm Presentation Space Helper Service; C:\windows\System32\IgrsSvcs.exe -k IgrsSvcs []
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-09-23 833728]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2013-12-08 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

[altrok]

Zdravim

odinstalujte

• Skype Click to Call - neznam nikoho, kdo by si to do PC vedome nainstaloval a pouzival
• Spybot - Search & Destroy 2 - http://en.wikipedia.org/wiki/Spybot_%E2 ... _conflicts

aktualizujte Adobe Reader 9 na aktualni verzi IX (11.0.09)

jsou s PC nejake konkretni problemy?

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/

• ukoncete vsechny programy
• kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
• kliknete na Scan, pote na Clean
• po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

[peachcz]

Odinstalováno, aktualizováno Kromě pomalejšího vypínání snad žádný konkrétní problém není Měl jsem problém se zamrzáním prohlížečů a flash playerem ale to vyřešil ten spybot


# AdwCleaner v3.311 - Report created 04/11/2014 at 14:44:54
# Updated 30/09/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Tomáš - TOM-NTB
# Running from : C:\Users\Tomáš\Desktop\adwcleaner_3.311.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\374311380
Folder Deleted : C:\ProgramData\Conduit
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Users\Tomáš\AppData\LocalLow\Conduit
File Deleted : C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\ptqer6w6.default\searchplugins\bingp.xml

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasmancs
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Tbccint_HKLM
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKCU\Software\AppDataLow\Software\BackgroundContainer
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\SOFTWARE\Conduit

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16575


-\\ Mozilla Firefox v31.0 (x86 cs)

[ File : C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\ptqer6w6.default\prefs.js ]


-\\ Google Chrome v38.0.2125.111

[ File : C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2443 octets] - [04/11/2014 14:42:34]
AdwCleaner[S0].txt - [2319 octets] - [04/11/2014 14:44:54]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2379 octets] ##########

[altrok]

Doinstalujte IE 11 a vsechny dalsi MS Windows aktualizace

Dejte pak novy FRST log, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

[peachcz]

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-11-2014
Ran by Tomáš (administrator) on TOM-NTB on 04-11-2014 18:15:30
Running from C:\Users\Tomáš\Desktop
Loaded Profile: Tomáš (Available profiles: Tomáš)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe
() C:\Windows\AutoKMS.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
(New Softwares.net) C:\Windows\SysWOW64\WinFLService.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynBtnAsst.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(FSPro Labs) C:\Program Files\My Lockbox\mylbx.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
( New Softwares.net) C:\Windows\SysWOW64\WinFLTray.exe
(New Softwares.net) C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe
( New Softwares.net) C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServ.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(Vimicro) C:\Program Files (x86)\USB Camera2\VM332_STI.EXE
(Lenovo) C:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
(Lenovo) C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlideNavVDM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNavigator.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2247976 2010-07-15] (Synaptics Incorporated)
HKLM\...\Run: [SynBtnAsst] => C:\Program Files\Synaptics\SynTP\SynBtnAsst.exe [54568 2010-07-15] (Synaptics Incorporated)
HKLM\...\Run: [OnekeyStudio] => C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe [789920 2010-12-17] (Lenovo)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [4462496 2010-04-23] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [7069088 2010-09-15] (Lenovo (Beijing) Limited)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11779176 2011-02-18] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2188904 2011-01-18] (Realtek Semiconductor)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [mylbx] => C:\Program Files\My Lockbox\mylbx.exe [2289952 2013-10-28] (FSPro Labs)
HKLM-x32\...\Run: [332BigDog] => C:\Program Files (x86)\USB Camera2\VM332_STI.EXE [536576 2010-01-19] (Vimicro)
HKLM-x32\...\Run: [MuteSync] => C:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe [336384 2009-12-28] (Lenovo)
HKLM-x32\...\Run: [Lenovo SplitScreen] => C:\Program Files\Lenovo\Lenovo SplitScreen\SplitScreen\AutoRunSpS.exe [778592 2010-06-23] (Lenovo)
HKLM-x32\...\Run: [UCam_Menu] => c:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [YouCam Mirror Tray icon] => c:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167008 2010-02-03] (CyberLink Corp.)
HKLM-x32\...\Run: [VeriFaceManager] => C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [3122528 2010-12-17] (Lenovo)
HKLM-x32\...\Run: [Lenovo SlideNav2] => C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlideNavVDM.exe [318400 2009-12-30] (Lenovo)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2010-07-26] (CyberLink Corp.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5223016 2014-11-04] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [Bonus.SSR.FR11] => C:\Program Files (x86)\ABBYY FineReader 11\Bonus.ScreenshotReader.exe [933640 2012-01-19] (ABBYY.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-09-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKU\S-1-5-21-594128869-2609986908-3295353243-1001\...\Run: [Zoner Photo Studio Service 16] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe [27648 2013-12-13] ()
HKU\S-1-5-21-594128869-2609986908-3295353243-1001\...\Run: [EPSON SX420W Series] => C:\windows\system32\spool\DRIVERS\x64\3\E_IATIGCE.EXE [224768 2009-09-14] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-594128869-2609986908-3295353243-1001\...\Run: [WinFLTray] => C:\windows\SysWow64\WinFLTray.exe [321736 2014-04-14] ( New Softwares.net)
HKU\S-1-5-21-594128869-2609986908-3295353243-1001\...\Run: [FLBackup] => C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe [275656 2014-04-14] (New Softwares.net)
HKU\S-1-5-21-594128869-2609986908-3295353243-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-594128869-2609986908-3295353243-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [831488 2013-12-13] (ZONER software)
HKU\S-1-5-21-594128869-2609986908-3295353243-1001\...\MountPoints2: {031cd74d-994d-11e3-ba91-18f46aff8750} - G:\setup.exe
HKU\S-1-5-21-594128869-2609986908-3295353243-1001\...\MountPoints2: {3cc280d0-5fa1-11e3-83c3-18f46aff8750} - E:\setup_the_witcher_2_ee_3.0.1.17.exe
HKU\S-1-5-21-594128869-2609986908-3295353243-1001\...\MountPoints2: {e2e6b8f3-3cc6-11e4-9bf4-60eb69a30a93} - E:\autorun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\windows\System32\SPReview\SPReview.exe [301568 2014-05-17] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: [VeriFace Enc] -> {771C7324-DA80-49D3-8017-753B0AF60951} => C:\windows\system32\IcnOvrly.dll ()
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: localhost:8080
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
SearchScopes: HKCU - {51EECE06-4D4B-474B-A689-05B75BE9B432} URL = http://search.conduit.com/ResultsExt.as ... 33319&UM=1
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\ptqer6w6.default
FF SearchEngineOrder.3: Bing
FF Homepage: hxxp://www.seznam.cz
FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Tom Clancys HAWX 2\orbitlauncher\npuplaypc.dll No File
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: YouTube Enhancer Plus - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\ptqer6w6.default\Extensions\firefoxaddon@youtubeenhancer.com.xpi [2014-10-21]
FF Extension: Youtube MP3 Downloader using youtube-mp3.org - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\ptqer6w6.default\Extensions\jid1-xKH0EoS44u1a2w@jetpack.xpi [2014-10-21]
FF Extension: Best Video Downloader 2 - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\ptqer6w6.default\Extensions\{170503FA-3349-4F17-BC86-001888A5C8E2}.xpi [2014-09-10]
FF Extension: SoundCloud Downloader - Technowise - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\ptqer6w6.default\Extensions\{c8d3bc80-0810-4d21-a2c2-be5f2b2832ac}.xpi [2013-12-19]
FF Extension: Adblock Plus - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\ptqer6w6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-09-10]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-10-21]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-12-08]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/", "hxxp://www.msn.com/?pc=UP97&ocid=UP97DHP"
CHR Profile: C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-08]
CHR Extension: (Disk Google) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-08]
CHR Extension: (Easy SoundCloud Download) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\baccjnddbmbhkkckiahhbmcboaelkeci [2013-12-08]
CHR Extension: (YouTube) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-08]
CHR Extension: (Adblock na Youtube™) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2013-12-08]
CHR Extension: (Vyhledávání Google) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-08]
CHR Extension: (Easy Video Downloader Express) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbcpmdpjjlhppmhfkcgbeanaanipdjbk [2013-12-08]
CHR Extension: (AdBlock) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-04-03]
CHR Extension: (Avast Online Security) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-12-08]
CHR Extension: (Midnight Aurora) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkofbkfkfkfhhnhdalphbomodghgafdf [2013-12-08]
CHR Extension: (FVD Downloader) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp [2014-09-10]
CHR Extension: (Peněženka Google) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-08]
CHR Extension: (Gmail) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-08]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-04]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.Corporate.11.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe [818952 2011-12-22] (ABBYY)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-04] (AVAST Software)
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [915232 2010-06-13] (Broadcom Corporation.)
R2 FLService; C:\windows\SysWow64\WinFLService.exe [92360 2014-04-14] (New Softwares.net)
S3 IGRS; C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-15] (Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [509192 2009-08-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [575304 2009-11-17] (Lenovo Group Limited)
S3 PS_MDP; C:\Program Files (x86)\Lenovo\ReadyComm\PS_MDP.dll [276296 2009-07-16] (Lenovo Group Limited)
S2 ReadyComm.DirectRouter; C:\Program Files (x86)\Lenovo\ReadyComm\common\router.dll [103688 2009-07-15] (Lenovo Group Limited)
R2 Slidebar Notifier Service; C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe [69568 2009-12-30] (Lenovo)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-11-04] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-11-04] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-11-04] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-11-04] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-11-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-11-04] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-11-04] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-11-04] ()
S3 Bridge0; C:\Windows\System32\drivers\WDBridge.sys [79376 2009-07-16] (Lenovo)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-09-15] (Disc Soft Ltd)
R0 FSProFilter2; C:\Windows\System32\Drivers\FSPFltd2.sys [57648 2011-06-03] (FSPro Labs)
R2 NEWDRIVER; C:\windows\SysWow64\WinVDEdrv6.sys [197648 2014-04-14] ()
R3 wdmirror; C:\Windows\System32\DRIVERS\WDMirror.sys [11280 2009-07-16] (Lenovo)
R1 WinFLAdrv; C:\Windows\SysWow64\WinFLAdrv.sys [34816 2014-04-14] ()
R2 WinVDEDrv; C:\windows\SysWow64\WinVDEdrv.sys [225680 2014-04-14] (NewSoftwares.net, Inc.)
U3 BcmSqlStartupSvc; No ImagePath
U2 IAStorDataMgrSvc; No ImagePath
U2 IviRegMgr; No ImagePath
U2 RichVideo; No ImagePath
U3 SQLWriter; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-04 18:15 - 2014-11-04 18:16 - 00022071 _____ () C:\Users\Tomáš\Desktop\FRST.txt
2014-11-04 17:31 - 2014-11-04 18:15 - 00000000 ____D () C:\FRST
2014-11-04 17:06 - 2014-11-04 17:06 - 00001138 _____ () C:\Users\Tomáš\Desktop\FRSTLauncher.exe
2014-11-04 17:04 - 2014-11-04 17:05 - 02114560 _____ (Farbar) C:\Users\Tomáš\Desktop\FRST64.exe
2014-11-04 16:54 - 2014-11-04 16:54 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-11-04 16:54 - 2014-11-04 16:54 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-11-04 16:47 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2014-11-04 16:47 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2014-11-04 16:47 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2014-11-04 16:47 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2014-11-04 16:46 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\windows\system32\IEUDINIT.EXE
2014-11-04 16:39 - 2014-11-04 16:39 - 23631360 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 17484800 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 13619200 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 11807232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 05829632 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 04201472 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 02796032 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-11-04 16:39 - 2014-11-04 16:39 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-11-04 16:39 - 2014-11-04 16:39 - 02309632 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 02187264 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 02108416 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-11-04 16:39 - 2014-11-04 16:39 - 02017280 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-11-04 16:39 - 2014-11-04 16:39 - 01810944 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 01447936 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 01249280 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 01190400 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 01068032 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00942592 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-11-04 16:39 - 2014-11-04 16:39 - 00775168 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00758272 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00731136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00710656 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-11-04 16:39 - 2014-11-04 16:39 - 00678400 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00645120 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsIntl.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00616104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dat
2014-11-04 16:39 - 2014-11-04 16:39 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2014-11-04 16:39 - 2014-11-04 16:39 - 00610304 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00607744 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00597504 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00595968 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00547328 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00446464 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00440320 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00413696 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-11-04 16:39 - 2014-11-04 16:39 - 00378552 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00365056 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2014-11-04 16:39 - 2014-11-04 16:39 - 00331448 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00289280 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00243200 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00233472 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00208384 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00194048 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00182272 _____ (Microsoft Corporation) C:\windows\SysWOW64\msls31.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00167424 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2014-11-04 16:39 - 2014-11-04 16:39 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00151552 _____ (Microsoft Corporation) C:\windows\SysWOW64\iexpress.exe
2014-11-04 16:39 - 2014-11-04 16:39 - 00147968 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2014-11-04 16:39 - 2014-11-04 16:39 - 00139264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wextract.exe
2014-11-04 16:39 - 2014-11-04 16:39 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-11-04 16:39 - 2014-11-04 16:39 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00116736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2014-11-04 16:39 - 2014-11-04 16:39 - 00111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IEAdvpack.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-11-04 16:39 - 2014-11-04 16:39 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2014-11-04 16:39 - 2014-11-04 16:39 - 00086016 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2014-11-04 16:39 - 2014-11-04 16:39 - 00085504 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2014-11-04 16:39 - 2014-11-04 16:39 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\SetIEInstalledDate.exe
2014-11-04 16:39 - 2014-11-04 16:39 - 00072704 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2014-11-04 16:39 - 2014-11-04 16:39 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardie.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2014-11-04 16:39 - 2014-11-04 16:39 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00056832 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmler.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2014-11-04 16:39 - 2014-11-04 16:39 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2014-11-04 16:39 - 2014-11-04 16:39 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2014-11-04 16:39 - 2014-11-04 16:39 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-11-04 16:39 - 2014-11-04 16:39 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2014-11-04 16:39 - 2014-11-04 16:39 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-11-04 16:33 - 2014-11-04 16:46 - 00011491 _____ () C:\windows\IE11_main.log
2014-11-04 16:32 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\Drivers\TsUsbFlt.sys
2014-11-04 16:32 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-11-04 16:32 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-11-04 16:32 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\windows\system32\TsUsbGDCoInstaller.dll
2014-11-04 16:31 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\MsRdpWebAccess.dll
2014-11-04 16:31 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\windows\system32\wksprtPS.dll
2014-11-04 16:31 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2014-11-04 16:31 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\windows\system32\rdvidcrl.dll
2014-11-04 16:31 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\MsRdpWebAccess.dll
2014-11-04 16:31 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\windows\SysWOW64\wksprtPS.dll
2014-11-04 16:31 - 2013-10-02 01:08 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\TSWbPrxy.exe
2014-11-04 16:31 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\windows\system32\wksprt.exe
2014-11-04 16:31 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2014-11-04 16:31 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\windows\system32\mstsc.exe
2014-11-04 16:31 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdvidcrl.dll
2014-11-04 16:31 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstsc.exe
2014-11-04 16:31 - 2013-10-01 21:57 - 06578176 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2014-11-04 16:31 - 2013-10-01 21:55 - 05698048 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2014-11-04 16:16 - 2012-08-23 15:13 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2014-11-04 16:16 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpvideominiport.sys
2014-11-04 16:16 - 2012-08-23 14:24 - 00015360 _____ (Microsoft Corporation) C:\windows\system32\RdpGroupPolicyExtension.dll
2014-11-04 16:16 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdpendp_winip.dll
2014-11-04 16:16 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\windows\system32\rdpendp_winip.dll
2014-11-04 16:16 - 2012-08-23 10:51 - 03174912 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2014-11-04 16:10 - 2014-11-04 16:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-11-04 16:09 - 2014-11-04 16:09 - 00000000 __SHD () C:\windows\SysWOW64\%APPDATA%
2014-11-04 16:09 - 2014-11-04 16:09 - 00000000 __SHD () C:\windows\system32\%APPDATA%
2014-11-04 16:09 - 2014-11-04 16:09 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-11-04 16:09 - 2014-11-04 16:09 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-11-04 16:06 - 2013-01-13 20:53 - 00187392 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIAnimation.dll
2014-11-04 16:06 - 2013-01-13 20:24 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\UIAnimation.dll
2014-11-04 16:06 - 2013-01-13 20:02 - 00417792 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2014-11-04 16:06 - 2013-01-13 19:32 - 00465920 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2014-11-04 16:06 - 2013-01-04 07:11 - 02776576 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2014-11-04 16:06 - 2013-01-04 07:11 - 02284544 _____ (Microsoft Corporation) C:\windows\SysWOW64\msmpeg2vdec.dll
2014-11-04 16:05 - 2013-01-13 22:17 - 00009728 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-11-04 16:05 - 2013-01-13 22:17 - 00002560 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-11-04 16:05 - 2013-01-13 22:16 - 00010752 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-11-04 16:05 - 2013-01-13 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-11-04 16:05 - 2013-01-13 22:11 - 00005632 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-11-04 16:05 - 2013-01-13 22:11 - 00005632 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-11-04 16:05 - 2013-01-13 22:11 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-11-04 16:05 - 2013-01-13 22:11 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-11-04 16:05 - 2013-01-13 22:11 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-11-04 16:05 - 2013-01-13 21:35 - 00010752 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-11-04 16:05 - 2013-01-13 21:35 - 00009728 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-11-04 16:05 - 2013-01-13 21:35 - 00002560 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-11-04 16:05 - 2013-01-13 21:32 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-11-04 16:05 - 2013-01-13 21:31 - 01247744 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2014-11-04 16:05 - 2013-01-13 21:31 - 00005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-11-04 16:05 - 2013-01-13 21:31 - 00005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-11-04 16:05 - 2013-01-13 21:31 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-11-04 16:05 - 2013-01-13 21:31 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-11-04 16:05 - 2013-01-13 21:31 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-11-04 16:05 - 2013-01-13 21:22 - 01988096 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10warp.dll
2014-11-04 16:05 - 2013-01-13 21:20 - 00293376 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxgi.dll
2014-11-04 16:05 - 2013-01-13 21:09 - 00249856 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10_1core.dll
2014-11-04 16:05 - 2013-01-13 21:08 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10core.dll
2014-11-04 16:05 - 2013-01-13 20:59 - 01643520 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2014-11-04 16:05 - 2013-01-13 20:58 - 01175552 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2014-11-04 16:05 - 2013-01-13 20:54 - 00604160 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10level9.dll
2014-11-04 16:05 - 2013-01-13 20:53 - 00207872 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecsExt.dll
2014-11-04 16:05 - 2013-01-13 20:51 - 02565120 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2014-11-04 16:05 - 2013-01-13 20:49 - 00363008 _____ (Microsoft Corporation) C:\windows\system32\dxgi.dll
2014-11-04 16:05 - 2013-01-13 20:48 - 00161792 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10_1.dll
2014-11-04 16:05 - 2013-01-13 20:46 - 01080832 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10.dll
2014-11-04 16:05 - 2013-01-13 20:43 - 01230336 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2014-11-04 16:05 - 2013-01-13 20:38 - 00333312 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1core.dll
2014-11-04 16:05 - 2013-01-13 20:38 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\d3d10core.dll
2014-11-04 16:05 - 2013-01-13 20:37 - 03419136 _____ (Microsoft Corporation) C:\windows\SysWOW64\d2d1.dll
2014-11-04 16:05 - 2013-01-13 20:25 - 00245248 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecsExt.dll
2014-11-04 16:05 - 2013-01-13 20:24 - 00648192 _____ (Microsoft Corporation) C:\windows\system32\d3d10level9.dll
2014-11-04 16:05 - 2013-01-13 20:20 - 01238528 _____ (Microsoft Corporation) C:\windows\system32\d3d10.dll
2014-11-04 16:05 - 2013-01-13 20:20 - 00194560 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1.dll
2014-11-04 16:05 - 2013-01-13 20:15 - 01424384 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2014-11-04 16:05 - 2013-01-13 20:10 - 03928064 _____ (Microsoft Corporation) C:\windows\system32\d2d1.dll
2014-11-04 16:05 - 2013-01-13 19:34 - 00364544 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsGdiConverter.dll
2014-11-04 16:05 - 2013-01-13 19:09 - 00522752 _____ (Microsoft Corporation) C:\windows\system32\XpsGdiConverter.dll
2014-11-04 16:05 - 2013-01-13 18:26 - 01158144 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsPrint.dll
2014-11-04 16:05 - 2013-01-13 18:05 - 01682432 _____ (Microsoft Corporation) C:\windows\system32\XpsPrint.dll
2014-11-04 16:02 - 2014-06-30 23:24 - 00008856 _____ (Microsoft Corporation) C:\windows\system32\icardres.dll
2014-11-04 16:02 - 2014-06-30 23:14 - 00008856 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardres.dll
2014-11-04 16:02 - 2014-03-09 22:48 - 01389208 _____ (Microsoft Corporation) C:\windows\system32\icardagt.exe
2014-11-04 16:02 - 2014-03-09 22:48 - 00171160 _____ (Microsoft Corporation) C:\windows\system32\infocardapi.dll
2014-11-04 16:02 - 2014-03-09 22:47 - 00619672 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardagt.exe
2014-11-04 16:02 - 2014-03-09 22:47 - 00099480 _____ (Microsoft Corporation) C:\windows\SysWOW64\infocardapi.dll
2014-11-04 16:01 - 2014-06-06 07:16 - 00035480 _____ (Microsoft Corporation) C:\windows\SysWOW64\TsWpfWrp.exe
2014-11-04 16:01 - 2014-06-06 07:12 - 00035480 _____ (Microsoft Corporation) C:\windows\system32\TsWpfWrp.exe
2014-11-04 15:51 - 2014-03-04 10:47 - 05550016 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-11-04 15:51 - 2014-03-04 10:44 - 00722944 _____ (Microsoft Corporation) C:\windows\system32\objsel.dll
2014-11-04 15:51 - 2014-03-04 10:44 - 00424960 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2014-11-04 15:51 - 2014-03-04 10:44 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\wincredprovider.dll
2014-11-04 15:51 - 2014-03-04 10:43 - 00057344 _____ (Microsoft Corporation) C:\windows\system32\cngprovider.dll
2014-11-04 15:51 - 2014-03-04 10:43 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\adprovider.dll
2014-11-04 15:51 - 2014-03-04 10:43 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\capiprovider.dll
2014-11-04 15:51 - 2014-03-04 10:43 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\dpapiprovider.dll
2014-11-04 15:51 - 2014-03-04 10:43 - 00044544 _____ (Microsoft Corporation) C:\windows\system32\dimsroam.dll
2014-11-04 15:51 - 2014-03-04 10:20 - 03969984 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2014-11-04 15:51 - 2014-03-04 10:20 - 03914176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2014-11-04 15:51 - 2014-03-04 10:17 - 00538112 _____ (Microsoft Corporation) C:\windows\SysWOW64\objsel.dll
2014-11-04 15:51 - 2014-03-04 10:17 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\cngprovider.dll
2014-11-04 15:51 - 2014-03-04 10:17 - 00049664 _____ (Microsoft Corporation) C:\windows\SysWOW64\adprovider.dll
2014-11-04 15:51 - 2014-03-04 10:17 - 00048128 _____ (Microsoft Corporation) C:\windows\SysWOW64\capiprovider.dll
2014-11-04 15:51 - 2014-03-04 10:17 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpapiprovider.dll
2014-11-04 15:51 - 2014-03-04 10:17 - 00036864 _____ (Microsoft Corporation) C:\windows\SysWOW64\dimsroam.dll
2014-11-04 15:51 - 2014-03-04 10:17 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wincredprovider.dll
2014-11-04 15:51 - 2014-03-04 10:16 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2014-11-04 15:51 - 2013-08-29 03:16 - 01732032 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2014-11-04 15:51 - 2013-08-29 03:16 - 00859648 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2014-11-04 15:51 - 2013-08-29 03:13 - 00878080 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2014-11-04 15:51 - 2013-08-29 02:50 - 01292192 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2014-11-04 15:51 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdh.dll
2014-11-04 15:51 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2014-11-04 15:51 - 2013-08-02 03:12 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2014-11-04 15:51 - 2013-08-02 03:12 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2014-11-04 15:51 - 2013-08-02 02:48 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2014-11-04 15:51 - 2013-08-02 01:59 - 00112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2014-11-04 15:50 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDYAK.DLL
2014-11-04 15:50 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDTAT.DLL
2014-11-04 15:50 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDRU1.DLL
2014-11-04 15:50 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDBASH.DLL
2014-11-04 15:50 - 2014-07-09 03:03 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\KBDRU.DLL
2014-11-04 15:50 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDYAK.DLL
2014-11-04 15:50 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDTAT.DLL
2014-11-04 15:50 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDRU1.DLL
2014-11-04 15:50 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDRU.DLL
2014-11-04 15:50 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDBASH.DLL
2014-11-04 15:50 - 2014-07-08 23:38 - 00419992 _____ () C:\windows\system32\locale.nls
2014-11-04 15:50 - 2014-07-08 23:30 - 00419992 _____ () C:\windows\SysWOW64\locale.nls
2014-11-04 15:41 - 2014-07-17 03:07 - 00681984 _____ (Microsoft Corporation) C:\windows\system32\termsrv.dll
2014-11-04 15:41 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2014-11-04 15:41 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\winsta.dll
2014-11-04 15:41 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\windows\system32\rdpcorekmts.dll
2014-11-04 15:41 - 2014-07-17 03:07 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-11-04 15:41 - 2014-07-17 03:07 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-11-04 15:41 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\windows\SysWOW64\winsta.dll
2014-11-04 15:41 - 2014-07-17 02:39 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2014-11-04 15:41 - 2014-07-17 02:39 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2014-11-04 15:41 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpwd.sys
2014-11-04 15:41 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tssecsrv.sys
2014-11-04 15:41 - 2014-07-07 03:06 - 01460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-11-04 15:41 - 2014-07-07 03:06 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-11-04 15:41 - 2014-07-07 02:40 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2014-11-04 15:41 - 2014-07-07 02:40 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2014-11-04 15:41 - 2014-07-07 02:39 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2014-11-04 15:39 - 2014-06-25 03:05 - 14175744 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2014-11-04 15:39 - 2014-06-25 02:41 - 12874240 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2014-11-04 14:57 - 2014-11-04 14:57 - 00244272 _____ () C:\Users\Tomáš\Downloads\Firefox Setup Stub 33.0.2.exe
2014-11-04 14:44 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\windows\SysWOW64\sqlite3.dll
2014-11-04 14:42 - 2014-11-04 14:45 - 00000000 ____D () C:\AdwCleaner
2014-11-04 14:38 - 2014-11-04 15:05 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-11-04 14:38 - 2014-11-04 14:38 - 00002019 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-11-04 14:28 - 2014-11-04 14:28 - 01375089 _____ () C:\Users\Tomáš\Desktop\adwcleaner_3.311.exe
2014-11-04 14:06 - 2014-11-04 14:06 - 00001924 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2014-11-04 14:05 - 2014-11-04 14:05 - 00364512 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-11-04 14:05 - 2014-11-04 14:05 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-11-04 14:04 - 2014-11-04 14:04 - 00000085 _____ () C:\windows\wininit.ini
2014-11-04 13:32 - 2014-11-04 14:05 - 00000000 ____D () C:\Users\Tomáš\Downloads\The.Originals.S02E05.720p.HDTV.X264-DIMENSION[rarbg]
2014-11-04 12:15 - 2014-11-04 12:31 - 00000000 ____D () C:\Program Files\trend micro
2014-11-04 12:15 - 2014-11-04 12:15 - 00000000 ____D () C:\rsit
2014-11-04 12:11 - 2014-11-04 12:11 - 01222144 _____ () C:\Users\Tomáš\Downloads\RSITx64.exe
2014-11-04 11:57 - 2014-11-04 11:58 - 10255080 _____ (Lavalys, Inc. ) C:\Users\Tomáš\Downloads\everestultimate550.exe
2014-11-04 11:31 - 2014-11-04 11:31 - 00046256 _____ () C:\Users\Tomáš\Documents\cc_20141104_113106.reg
2014-11-04 11:26 - 2014-11-04 11:26 - 04362512 _____ (Piriform Ltd) C:\Users\Tomáš\Downloads\dfsetup218.exe
2014-11-04 11:09 - 2014-11-04 11:09 - 00388608 _____ (Trend Micro Inc.) C:\Users\Tomáš\Downloads\hijackthis.exe
2014-11-03 23:23 - 2014-11-03 23:23 - 00007605 _____ () C:\Users\Tomáš\AppData\Local\Resmon.ResmonCfg
2014-11-03 22:17 - 2014-11-03 22:17 - 00000000 ____D () C:\Users\Tomáš\Documents\ProcAlyzer Dumps
2014-11-03 12:57 - 2014-04-14 22:43 - 00001128 _____ () C:\windows\system32\Drivers\etc\hosts.20141103-125700.backup
2014-11-03 12:11 - 2014-11-03 12:11 - 00000000 ____D () C:\windows\System32\Tasks\Safer-Networking
2014-11-03 12:10 - 2014-11-04 14:14 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-11-03 12:10 - 2014-11-04 14:04 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-11-03 12:02 - 2014-11-03 12:03 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Tomáš\Downloads\spybot-2.4.exe
2014-11-01 23:36 - 2014-11-02 00:03 - 1566281196 _____ () C:\Users\Tomáš\Downloads\The.100.S02E02.720p.HDTV.X264-DIMENSION.mkv
2014-10-30 14:47 - 2014-10-30 19:19 - 00000000 ____D () C:\Users\Tomáš\Downloads\South.Park.S18E05.720p.HDTV.x264-KILLERS[rarbg]
2014-10-30 14:47 - 2014-10-30 14:58 - 00000000 ____D () C:\Users\Tomáš\Downloads\The.Originals.S02E04.720p.HDTV.X264-DIMENSION[rarbg]
2014-10-26 20:42 - 2014-10-26 20:42 - 01463328 _____ () C:\Users\Tomáš\Desktop\SystemCheck_enGB.exe
2014-10-26 19:56 - 2014-10-28 17:25 - 00000000 ____D () C:\Users\Tomáš\Downloads\[ www.Torrenting.com ] - Rat.Race.2001.720p.WEB-DL.x264-mSD
2014-10-26 14:37 - 2014-10-26 15:08 - 2014304081 _____ () C:\Users\Tomáš\Downloads\The.100.S02E01.720p.HDTV.x264-KILLERS.mkv
2014-10-25 16:17 - 2014-10-25 16:31 - 00000000 ____D () C:\Users\Tomáš\Downloads\The.Vampire.Diaries.S06E04.720p.HDTV.X264-DIMENSION[rarbg]
2014-10-23 22:38 - 2014-10-23 22:59 - 00000000 ____D () C:\Users\Tomáš\Downloads\Star Wars Episode IV A New Hope (1977) [1080p]
2014-10-23 17:35 - 2014-10-23 17:35 - 00000110 ____H () C:\Users\Tomáš\Desktop\Ginger-Twins.jpg.uid-zps
2014-10-23 17:34 - 2014-10-23 17:34 - 00000110 ____H () C:\Users\Tomáš\Desktop\images 2(2).jpg.uid-zps
2014-10-23 17:19 - 2014-10-23 18:01 - 00000000 ____D () C:\Users\Tomáš\Downloads\Star Wars Episode III Revenge of the Sith (2005) [1080p]
2014-10-23 17:14 - 2014-10-23 17:14 - 00000110 ____H () C:\Users\Tomáš\Desktop\1611.jpg.uid-zps
2014-10-23 17:07 - 2014-10-23 17:07 - 00000110 ____H () C:\Users\Tomáš\Desktop\3b3819db3fc8c283435183dcb15f693e8481cdbc.jpg.uid-zps
2014-10-23 11:41 - 2014-10-23 12:16 - 00000000 ____D () C:\Users\Tomáš\Downloads\Star.Wars.Episode.II.Attack.Of.The.Clones.2002.1080p.Bluray.x264.anoXmous
2014-10-22 11:02 - 2014-10-22 11:02 - 00000000 ___HD () C:\windows\PIF
2014-10-22 10:54 - 2014-11-04 17:56 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2014-10-22 10:07 - 2014-10-22 10:29 - 00000000 ____D () C:\Users\Tomáš\Downloads\Tom.Clancys.HAWX.2-SCRiN
2014-10-21 22:13 - 2014-10-21 22:40 - 00000000 ____D () C:\Users\Tomáš\Downloads\Star Wars Episode I The Phantom Menace (1999) [1080p]
2014-10-21 17:23 - 2014-10-21 18:58 - 00000000 ____D () C:\Users\Tomáš\Downloads\The.Originals.S02E03.720p.HDTV.X264-DIMENSION[rarbg]
2014-10-21 14:16 - 2014-11-04 15:05 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-21 13:16 - 2014-10-21 13:17 - 00000000 ____D () C:\Users\Tomáš\trasy
2014-10-21 13:16 - 2014-10-21 13:16 - 00005677 _____ () C:\Users\Tomáš\hard.gpx
2014-10-21 11:21 - 2014-10-21 11:24 - 356274510 _____ () C:\Users\Tomáš\Downloads\South.Park.S18E04.720p.HDTV.x264-KILLERS.mkv
2014-10-20 13:23 - 2014-10-20 13:23 - 00000000 ____D () C:\Users\Tomáš\Downloads\The.Walking.Dead.S05E02.720p.HDTV.x264-KILLERS[rarbg]
2014-10-17 11:22 - 2014-10-17 13:03 - 00000000 ____D () C:\Users\Tomáš\Downloads\The.Vampire.Diaries.S06E03.720p.HDTV.X264-DIMENSION[rarbg]
2014-10-15 15:45 - 2014-10-15 15:45 - 00294294 _____ () C:\windows\msxml4-KB954430-enu.LOG
2014-10-15 15:45 - 2014-10-15 15:45 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-10-15 15:27 - 2014-10-15 15:44 - 00000000 ____D () C:\Users\Tomáš\Downloads\The.Originals.S02E02.720p.HDTV.X264-DIMENSION[rarbg]
2014-10-15 15:22 - 2014-05-30 09:08 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-10-15 15:22 - 2014-05-30 09:08 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2014-10-15 15:22 - 2014-05-30 09:08 - 00307200 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2014-10-15 15:22 - 2014-05-30 09:08 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2014-10-15 15:22 - 2014-05-30 08:52 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2014-10-15 15:22 - 2014-05-30 08:52 - 00247808 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2014-10-15 15:22 - 2014-05-30 08:52 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2014-10-15 15:22 - 2014-05-30 08:52 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2014-10-15 15:20 - 2014-09-29 01:58 - 03198976 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-10-15 15:20 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\windows\system32\dfshim.dll
2014-10-15 15:20 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\windows\SysWOW64\dfshim.dll
2014-10-15 15:20 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\windows\SysWOW64\mscorier.dll
2014-10-15 15:20 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\windows\system32\mscorier.dll
2014-10-15 15:20 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\windows\SysWOW64\mscories.dll
2014-10-15 15:20 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\windows\system32\mscories.dll
2014-10-15 15:20 - 2014-06-18 03:18 - 00692736 _____ (Microsoft Corporation) C:\windows\system32\osk.exe
2014-10-15 15:20 - 2014-06-18 02:51 - 00646144 _____ (Microsoft Corporation) C:\windows\SysWOW64\osk.exe
2014-10-15 15:20 - 2014-04-12 03:22 - 00155072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-10-15 15:20 - 2014-04-12 03:22 - 00095680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2014-10-15 15:20 - 2014-04-12 03:19 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2014-10-15 15:20 - 2014-04-12 03:19 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2014-10-15 15:20 - 2014-04-12 03:19 - 00029184 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2014-10-15 15:20 - 2014-04-12 03:19 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2014-10-15 15:20 - 2014-04-05 03:47 - 01903552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2014-10-15 15:20 - 2014-04-05 03:47 - 00288192 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2014-10-15 15:20 - 2014-03-26 15:44 - 02002432 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2014-10-15 15:20 - 2014-03-26 15:44 - 01882112 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2014-10-15 15:20 - 2014-03-26 15:41 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2014-10-15 15:20 - 2014-03-26 15:41 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll
2014-10-15 15:20 - 2014-03-26 15:27 - 01389056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2014-10-15 15:20 - 2014-03-26 15:27 - 01237504 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3.dll
2014-10-15 15:20 - 2014-03-26 15:25 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6r.dll
2014-10-15 15:20 - 2014-03-26 15:25 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3r.dll
2014-10-15 15:20 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2014-10-15 15:20 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2014-10-15 15:20 - 2011-02-25 07:19 - 02871808 _____ (Microsoft Corporation) C:\windows\explorer.exe
2014-10-15 15:20 - 2011-02-25 06:30 - 02616320 _____ (Microsoft Corporation) C:\windows\SysWOW64\explorer.exe
2014-10-15 15:19 - 2014-08-23 03:07 - 00404480 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2014-10-15 15:19 - 2014-08-23 02:45 - 00311808 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2014-10-15 15:19 - 2013-07-26 03:24 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\shdocvw.dll
2014-10-15 15:19 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\windows\SysWOW64\shdocvw.dll
2014-10-15 15:15 - 2014-09-18 03:00 - 03241472 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2014-10-15 15:15 - 2014-09-18 02:32 - 02363904 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2014-10-15 15:15 - 2014-06-03 11:02 - 01941504 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2014-10-15 15:15 - 2014-06-03 11:02 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2014-10-15 15:15 - 2014-06-03 11:02 - 00112064 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2014-10-15 15:15 - 2014-06-03 10:29 - 01805824 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2014-10-15 15:15 - 2014-06-03 10:29 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\msihnd.dll
2014-10-15 15:15 - 2013-02-27 06:47 - 00070144 _____ (Microsoft Corporation) C:\windows\system32\appinfo.dll
2014-10-15 15:10 - 2014-03-04 10:44 - 01163264 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2014-10-15 15:10 - 2014-03-04 10:44 - 00362496 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2014-10-15 15:10 - 2014-03-04 10:44 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2014-10-15 15:10 - 2014-03-04 10:44 - 00016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2014-10-15 15:10 - 2014-03-04 10:44 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2014-10-15 15:10 - 2014-03-04 10:17 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2014-10-15 15:10 - 2014-03-04 10:16 - 01114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2014-10-15 15:10 - 2014-03-04 10:16 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2014-10-15 15:10 - 2014-03-04 10:16 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2014-10-15 15:10 - 2014-03-04 09:09 - 00007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2014-10-15 15:10 - 2014-03-04 09:09 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2014-10-15 15:10 - 2013-08-02 03:14 - 00215040 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 02:09 - 00338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2014-10-15 15:10 - 2013-08-02 01:43 - 00006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 01:43 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 01:43 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-10-15 15:10 - 2013-08-02 01:43 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-10-15 15:09 - 2014-07-14 03:02 - 01216000 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2014-10-15 15:09 - 2014-07-14 02:40 - 00664064 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2014-10-15 15:09 - 2012-02-11 07:36 - 00559104 _____ (Microsoft Corporation) C:\windows\system32\spoolsv.exe
2014-10-15 15:09 - 2012-02-11 07:36 - 00067072 _____ (Microsoft Corporation) C:\windows\splwow64.exe
2014-10-15 15:08 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\rastls.dll
2014-10-15 15:08 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\windows\SysWOW64\rastls.dll
2014-10-15 15:07 - 2014-09-13 02:58 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\packager.dll
2014-10-15 15:07 - 2014-09-13 02:40 - 00067072 _____ (Microsoft Corporation) C:\windows\SysWOW64\packager.dll
2014-10-14 16:32 - 2014-10-14 16:32 - 00000974 _____ () C:\Users\Tomáš\Desktop\Black ICE by Panzeroo – zástupce.lnk
2014-10-14 15:43 - 2014-10-14 15:43 - 00000000 ____D () C:\ProgramData\ATI
2014-10-14 15:16 - 2014-10-15 15:46 - 00296450 _____ () C:\windows\msxml4-KB973688-enu.LOG
2014-10-14 14:50 - 2014-09-09 23:11 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2014-10-14 14:50 - 2014-09-09 22:47 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2014-10-14 14:50 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\windows\system32\secproc.dll
2014-10-14 14:50 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\windows\system32\secproc_isv.dll
2014-10-14 14:50 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp_isv.dll
2014-10-14 14:50 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp.dll
2014-10-14 14:50 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\windows\system32\msdrm.dll
2014-10-14 14:50 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_isv.exe
2014-10-14 14:50 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\windows\system32\RMActivate.exe
2014-10-14 14:50 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp.exe
2014-10-14 14:50 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp_isv.exe
2014-10-14 14:50 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc.dll
2014-10-14 14:50 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_isv.dll
2014-10-14 14:50 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_ssp_isv.dll
2014-10-14 14:50 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_ssp.dll
2014-10-14 14:50 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdrm.dll
2014-10-14 14:50 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_isv.exe
2014-10-14 14:50 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate.exe
2014-10-14 14:50 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_ssp.exe
2014-10-14 14:50 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_ssp_isv.exe
2014-10-14 14:49 - 2014-08-01 12:53 - 01031168 _____ (Microsoft Corporation) C:\windows\system32\TSWorkspace.dll
2014-10-14 14:49 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSWorkspace.dll
2014-10-14 14:49 - 2013-09-08 03:27 - 00327168 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2014-10-14 14:49 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mswsock.dll
2014-10-14 14:49 - 2013-07-25 10:25 - 01888768 _____ (Microsoft Corporation) C:\windows\system32\WMVDECOD.DLL
2014-10-14 14:49 - 2013-07-25 09:57 - 01620992 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVDECOD.DLL
2014-10-14 14:49 - 2013-07-09 06:52 - 00224256 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2014-10-14 14:49 - 2013-07-09 05:52 - 00175104 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2014-10-14 14:49 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Wdf01000.sys
2014-10-14 14:49 - 2013-04-26 00:30 - 01505280 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d11.dll
2014-10-14 14:49 - 2013-03-31 23:52 - 01887232 _____ (Microsoft Corporation) C:\windows\system32\d3d11.dll
2014-10-14 14:49 - 2012-10-09 19:17 - 00226816 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore6.dll
2014-10-14 14:49 - 2012-10-09 19:17 - 00055296 _____ (Microsoft Corporation) C:\windows\system32\dhcpcsvc6.dll
2014-10-14 14:49 - 2012-10-09 18:40 - 00193536 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore6.dll
2014-10-14 14:49 - 2012-10-09 18:40 - 00044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcsvc6.dll
2014-10-14 14:49 - 2012-10-03 18:44 - 00303104 _____ (Microsoft Corporation) C:\windows\system32\nlasvc.dll
2014-10-14 14:49 - 2012-10-03 18:44 - 00246272 _____ (Microsoft Corporation) C:\windows\system32\netcorehc.dll
2014-10-14 14:49 - 2012-10-03 18:44 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\ncsi.dll
2014-10-14 14:49 - 2012-10-03 18:44 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\nlaapi.dll
2014-10-14 14:49 - 2012-10-03 18:44 - 00018944 _____ (Microsoft Corporation) C:\windows\system32\netevent.dll
2014-10-14 14:49 - 2012-10-03 18:42 - 00569344 _____ (Microsoft Corporation) C:\windows\system32\iphlpsvc.dll
2014-10-14 14:49 - 2012-10-03 17:42 - 00175104 _____ (Microsoft Corporation) C:\windows\SysWOW64\netcorehc.dll
2014-10-14 14:49 - 2012-10-03 17:42 - 00156672 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncsi.dll
2014-10-14 14:49 - 2012-10-03 17:42 - 00018944 _____ (Microsoft Corporation) C:\windows\SysWOW64\netevent.dll
2014-10-14 14:49 - 2012-10-03 17:07 - 00045568 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpipreg.sys
2014-10-14 14:49 - 2012-08-21 22:01 - 00245760 _____ (Microsoft Corporation) C:\windows\system32\OxpsConverter.exe
2014-10-14 14:49 - 2012-01-13 08:12 - 00052224 _____ (Microsoft Corporation) C:\windows\SysWOW64\nlaapi.dll
2014-10-14 14:48 - 2014-06-16 03:10 - 00985536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2014-10-14 14:48 - 2014-06-06 11:10 - 00624128 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2014-10-14 14:48 - 2014-06-06 10:44 - 00509440 _____ (Microsoft Corporation) C:\windows\SysWOW64\qedit.dll
2014-10-14 14:48 - 2014-02-04 03:35 - 00274880 _____ (Microsoft Corporation) C:\windows\system32\Drivers\msiscsi.sys
2014-10-14 14:48 - 2014-02-04 03:35 - 00190912 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2014-10-14 14:48 - 2014-02-04 03:35 - 00027584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Diskdump.sys
2014-10-14 14:48 - 2014-02-04 03:28 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\iologmsg.dll
2014-10-14 14:48 - 2014-02-04 03:00 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\iologmsg.dll
2014-10-14 14:48 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2014-10-14 14:48 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2014-10-14 14:48 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2014-10-14 14:48 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2014-10-14 14:48 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2014-10-14 14:48 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2014-10-14 14:48 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2014-10-14 14:48 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2014-10-14 14:48 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2014-10-14 14:48 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll
2014-10-14 14:48 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\credui.dll
2014-10-14 14:48 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\windows\SysWOW64\SmartcardCredentialProvider.dll
2014-10-14 14:48 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\credui.dll
2014-10-14 14:48 - 2013-07-09 06:46 - 00184320 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2014-10-14 14:48 - 2013-07-09 06:46 - 00139776 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2014-10-14 14:48 - 2013-07-09 05:46 - 00140288 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsvc.dll
2014-10-14 14:48 - 2013-07-09 05:46 - 00103936 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptnet.dll
2014-10-14 14:48 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2014-10-14 14:48 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2014-10-14 14:48 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\windows\SysWOW64\WebClnt.dll
2014-10-14 14:48 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\windows\SysWOW64\davclnt.dll
2014-10-14 14:48 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2014-10-14 14:48 - 2013-04-10 07:01 - 00265064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2014-10-14 14:48 - 2012-08-22 19:12 - 00950128 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2014-10-14 14:48 - 2012-07-04 21:26 - 00041472 _____ (Microsoft Corporation) C:\windows\system32\Drivers\RNDISMP.sys
2014-10-14 14:48 - 2011-02-03 12:25 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2014-10-14 14:47 - 2014-09-25 03:08 - 00371712 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2014-10-14 14:47 - 2014-09-25 02:40 - 00519680 _____ (Microsoft Corporation) C:\windows\SysWOW64\qdvd.dll
2014-10-14 14:47 - 2014-05-30 07:45 - 00497152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-10-14 14:47 - 2014-04-25 03:34 - 00801280 _____ (Microsoft Corporation) C:\windows\system32\usp10.dll
2014-10-14 14:47 - 2014-04-25 03:06 - 00626688 _____ (Microsoft Corporation) C:\windows\SysWOW64\usp10.dll
2014-10-14 14:47 - 2014-01-29 03:32 - 00484864 _____ (Microsoft Corporation) C:\windows\system32\wer.dll
2014-10-14 14:47 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\windows\SysWOW64\wer.dll
2014-10-14 14:47 - 2014-01-28 03:32 - 00228864 _____ (Microsoft Corporation) C:\windows\system32\wwansvc.dll
2014-10-14 14:47 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2014-10-14 14:47 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\windows\SysWOW64\msieftp.dll
2014-10-14 14:47 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2014-10-14 14:47 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\windows\SysWOW64\imagehlp.dll
2014-10-14 14:47 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2014-10-14 14:47 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2014-10-14 14:47 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\windows\SysWOW64\wshom.ocx
2014-10-14 14:47 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrrun.dll
2014-10-14 14:47 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2014-10-14 14:47 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2014-10-14 14:47 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\windows\SysWOW64\wscript.exe
2014-10-14 14:47 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\windows\SysWOW64\cscript.exe
2014-10-14 14:47 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2014-10-14 14:47 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2014-10-14 14:47 - 2013-08-05 03:25 - 00155584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ataport.sys
2014-10-14 14:47 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-10-14 14:47 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-10-14 14:47 - 2013-07-12 11:41 - 00185344 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbvideo.sys
2014-10-14 14:47 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbcir.sys
2014-10-14 14:47 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2014-10-14 14:47 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\windows\SysWOW64\comctl32.dll
2014-10-14 14:47 - 2013-07-03 05:40 - 00042496 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbscan.sys
2014-10-14 14:47 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2014-10-14 14:47 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys
2014-10-14 14:47 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2014-10-14 14:47 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2014-10-14 14:47 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2014-10-14 14:47 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2014-10-14 14:47 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2014-10-14 14:47 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2014-10-14 14:47 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2014-10-14 14:47 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2014-10-14 14:47 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2014-10-14 14:47 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2014-10-14 14:47 - 2013-05-13 06:50 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\certenc.dll
2014-10-14 14:47 - 2013-05-13 04:43 - 01192448 _____ (Microsoft Corporation) C:\windows\system32\certutil.exe
2014-10-14 14:47 - 2013-05-13 04:08 - 00903168 _____ (Microsoft Corporation) C:\windows\SysWOW64\certutil.exe
2014-10-14 14:47 - 2013-05-13 04:08 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\certenc.dll
2014-10-14 14:47 - 2013-05-10 06:49 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\cryptdlg.dll
2014-10-14 14:47 - 2013-05-10 04:20 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptdlg.dll
2014-10-14 14:47 - 2013-04-26 06:51 - 00751104 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2014-10-14 14:47 - 2013-04-26 05:55 - 00492544 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32spl.dll
2014-10-14 14:47 - 2013-03-19 06:53 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\wwanprotdim.dll
2014-10-14 14:47 - 2012-11-23 04:13 - 00068608 _____ (Microsoft Corporation) C:\windows\system32\taskhost.exe
2014-10-14 14:07 - 2014-01-24 03:37 - 01684928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2014-10-14 14:07 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2014-10-14 14:07 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2014-10-14 14:07 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2014-10-14 14:07 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\windows\SysWOW64\nshwfp.dll
2014-10-14 14:07 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\windows\SysWOW64\FWPUCLNT.DLL
2014-10-14 14:07 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2014-10-14 13:49 - 2014-10-14 13:49 - 00056376 _____ () C:\windows\SysWOW64\CCCInstall_201410141449056902.log
2014-10-14 13:49 - 2014-10-14 13:49 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-10-14 13:48 - 2014-10-14 13:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-10-14 13:45 - 2014-10-14 13:45 - 00000000 ____D () C:\Program Files\AMD
2014-10-14 13:28 - 2014-10-14 13:31 - 286582040 _____ (AMD Inc.) C:\Users\Tomáš\Downloads\amd-catalyst-14-9-win7-win8.1-64bit-dd-ccc-whql.exe
2014-10-14 13:21 - 2014-10-14 13:21 - 00036809 _____ () C:\Users\Tomáš\CryptoHeavenClient.properties
2014-10-14 13:07 - 2014-10-14 13:07 - 00001953 _____ () C:\Users\Tomáš\Desktop\SaluSafe.lnk
2014-10-14 13:07 - 2014-10-14 13:07 - 00000000 ____D () C:\Users\Tomáš\dictionaries
2014-10-14 13:07 - 2014-10-14 13:07 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaluSafe
2014-10-14 13:07 - 2014-10-14 13:07 - 00000000 ____D () C:\Program Files (x86)\salusafe
2014-10-14 12:54 - 2014-10-14 12:55 - 12621952 _____ (CryptoHeaven Corp.) C:\Users\Tomáš\Downloads\salusafe-windows.exe
2014-10-13 13:06 - 2014-10-13 13:10 - 00000000 ____D () C:\Users\Tomáš\Downloads\South.Park.S18E03.720p.HDTV.x264-KILLERS[rarbg]
2014-10-12 15:04 - 2014-10-12 15:13 - 00000000 ____D () C:\Users\Tomáš\Documents\Stronghold Crusader 2
2014-10-12 15:04 - 2014-10-12 15:04 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Steam
2014-10-12 14:58 - 2014-10-12 14:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GMT-MAX.ORG
2014-10-12 13:34 - 2014-10-12 13:44 - 00000000 ____D () C:\Users\Tomáš\Downloads\GMT.KZ_Stronghold_Crusader_2_Special_Edition_RePack_MAXAGENT
2014-10-08 16:43 - 2014-10-08 16:57 - 00000000 ____D () C:\Users\Tomáš\Downloads\The.Originals.S02E01.720p.HDTV.X264-DIMENSION[rarbg]
2014-10-07 23:28 - 2014-10-07 23:28 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\XRay Engine
2014-10-07 19:44 - 2014-10-07 20:12 - 259812812 _____ () C:\Users\Tomáš\Downloads\Stalker-clear-sky---Cestina.zip
2014-10-07 19:01 - 2014-10-07 19:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deep Silver
2014-10-07 19:00 - 2014-10-07 21:29 - 00000000 ____D () C:\Users\Public\Documents\STALKER-STCS
2014-10-07 18:52 - 2014-10-07 18:52 - 00250632 _____ (IntelleSoft) C:\Users\Tomáš\Downloads\BugTrap.dll
2014-10-07 18:51 - 2014-10-07 18:51 - 00851968 _____ () C:\Users\Tomáš\Downloads\xrCore.dll
2014-10-07 18:05 - 2014-10-07 18:05 - 00390144 _____ () C:\Users\Tomáš\Downloads\OpenAL32.dll
2014-10-07 18:03 - 2014-10-07 18:03 - 00212992 _____ () C:\Users\Tomáš\Downloads\xrSound.dll
2014-10-07 18:01 - 2014-10-07 18:01 - 00007168 _____ () C:\Users\Tomáš\Downloads\xrAPI.dll
2014-10-07 17:44 - 2014-10-07 19:03 - 00036946 _____ () C:\windows\DirectX.log
2014-10-07 17:35 - 2014-10-07 20:46 - 00000000 ____D () C:\Program Files (x86)\Deep Silver
2014-10-06 15:24 - 2014-10-07 17:24 - 00000000 ____D () C:\Users\Tomáš\Downloads\S.T.A.L.K.E.R.Clear.Sky-RELOADED

[peachcz]

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-04 18:13 - 2013-12-23 16:01 - 00000000 ____D () C:\Program Files (x86)\Paradox Interactive
2014-11-04 18:13 - 2010-12-17 20:34 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-11-04 18:02 - 2010-12-17 20:25 - 01502973 _____ () C:\windows\WindowsUpdate.log
2014-11-04 17:55 - 2009-07-14 05:45 - 00013632 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-04 17:55 - 2009-07-14 05:45 - 00013632 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-04 17:48 - 2010-12-17 20:53 - 00000000 ____D () C:\ProgramData\VeriFace
2014-11-04 17:47 - 2013-12-08 00:58 - 00000948 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-04 17:47 - 2010-12-17 20:53 - 02969573 _____ () C:\FaceProv.log
2014-11-04 17:44 - 2014-09-30 10:00 - 00006159 _____ () C:\windows\setupact.log
2014-11-04 17:44 - 2013-12-08 18:17 - 00000200 _____ () C:\windows\Tasks\AutoKMS.job
2014-11-04 17:44 - 2009-07-14 06:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-11-04 17:44 - 2009-07-14 05:45 - 00412600 _____ () C:\windows\system32\FNTCACHE.DAT
2014-11-04 17:40 - 2013-12-08 00:58 - 00000952 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-04 17:28 - 2010-12-18 04:01 - 00668792 _____ () C:\windows\system32\perfh005.dat
2014-11-04 17:28 - 2010-12-18 04:01 - 00141420 _____ () C:\windows\system32\perfc005.dat
2014-11-04 17:28 - 2009-07-14 06:13 - 01583226 _____ () C:\windows\system32\PerfStringBackup.INI
2014-11-04 17:24 - 2013-12-08 00:38 - 00001353 _____ () C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-11-04 17:23 - 2009-07-14 04:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-11-04 17:22 - 2009-07-29 08:00 - 00000000 ____D () C:\windows\Panther
2014-11-04 17:19 - 2014-09-30 09:59 - 00017272 _____ () C:\windows\PFRO.log
2014-11-04 17:19 - 2013-12-19 22:54 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-04 17:15 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\SysWOW64\zh-HK
2014-11-04 17:15 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\SysWOW64\tr-TR
2014-11-04 17:15 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\SysWOW64\sk-SK
2014-11-04 17:15 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\system32\zh-HK
2014-11-04 17:15 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\system32\tr-TR
2014-11-04 17:15 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\system32\sk-SK
2014-11-04 17:15 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\PolicyDefinitions
2014-11-04 17:03 - 2013-12-08 18:01 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-04 17:03 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-11-04 17:03 - 2009-07-14 03:34 - 00000478 _____ () C:\windows\win.ini
2014-11-04 16:14 - 2013-12-08 01:50 - 01558148 _____ () C:\windows\SysWOW64\PerfStringBackup.INI
2014-11-04 15:05 - 2014-06-13 13:32 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-11-04 15:05 - 2013-12-19 22:54 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-11-04 14:51 - 2014-09-30 10:00 - 00017766 _____ () C:\windows\AutoKMS.log
2014-11-04 14:51 - 2010-12-17 20:43 - 00000000 ____D () C:\ProgramData\Adobe
2014-11-04 14:41 - 2014-07-15 18:38 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Adobe
2014-11-04 14:41 - 2013-12-08 00:41 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Adobe
2014-11-04 14:38 - 2010-12-17 20:43 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-11-04 14:33 - 2014-09-29 22:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HEIDENHAIN
2014-11-04 14:06 - 2013-12-08 18:11 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\uTorrent
2014-11-04 14:06 - 2013-12-08 00:58 - 01050432 _____ (AVAST Software) C:\windows\system32\Drivers\aswsnx.sys
2014-11-04 14:06 - 2013-12-08 00:58 - 00083280 _____ (AVAST Software) C:\windows\system32\Drivers\aswmonflt.sys
2014-11-04 14:05 - 2014-05-12 21:40 - 00029208 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-11-04 14:05 - 2014-01-19 00:37 - 00116728 _____ (AVAST Software) C:\windows\system32\Drivers\aswstm.sys
2014-11-04 14:05 - 2013-12-08 00:58 - 00436624 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2014-11-04 14:05 - 2013-12-08 00:58 - 00267632 _____ () C:\windows\system32\Drivers\aswVmm.sys
2014-11-04 14:05 - 2013-12-08 00:58 - 00093568 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2014-11-04 14:05 - 2013-12-08 00:58 - 00065776 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2014-11-04 14:05 - 2013-12-08 00:58 - 00003924 _____ () C:\windows\System32\Tasks\avast! Emergency Update
2014-11-04 14:03 - 2014-03-14 12:46 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-11-03 11:48 - 2013-12-23 16:54 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\CrashDumps
2014-11-02 21:16 - 2014-08-15 20:42 - 00000000 ____D () C:\Users\Tomáš\AppData\Local\Battle.net
2014-11-02 19:44 - 2013-12-08 19:20 - 00000000 ____D () C:\Users\Tomáš\Downloads\Subs
2014-10-30 18:58 - 2014-09-29 22:07 - 00000000 ____D () C:\Users\Tomáš\cnc
2014-10-28 06:34 - 2013-12-08 01:19 - 00275080 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2014-10-27 22:00 - 2013-12-24 11:15 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-10-27 20:39 - 2014-07-28 17:49 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-10-26 14:09 - 2014-08-10 11:45 - 00000000 ____D () C:\Program Files (x86)\WOW
2014-10-24 16:31 - 2014-05-24 20:14 - 00000000 ____D () C:\Program Files (x86)\StarCraft II
2014-10-24 16:30 - 2014-08-15 20:41 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-10-22 11:02 - 2013-12-08 23:00 - 00000000 ____D () C:\windows\SysWOW64\directx
2014-10-22 11:02 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-10-21 17:44 - 2013-12-10 01:33 - 00000000 ____D () C:\Program Files (x86)\WarThunder
2014-10-21 13:59 - 2014-09-10 11:35 - 00000000 ____D () C:\Users\Tomáš\MH
2014-10-21 13:16 - 2013-12-08 00:37 - 00000000 ____D () C:\Users\Tomáš
2014-10-21 10:25 - 2013-12-19 22:58 - 00701104 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2014-10-21 10:25 - 2013-12-19 22:58 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-20 17:28 - 2013-12-08 01:03 - 00000000 ____D () C:\Users\Tomáš\Documents\Youcam
2014-10-18 17:35 - 2013-12-08 00:58 - 00003948 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-10-18 17:35 - 2013-12-08 00:58 - 00003696 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-10-17 16:07 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\rescache
2014-10-15 16:40 - 2009-07-29 08:23 - 00000000 ____D () C:\Program Files\Windows Journal
2014-10-15 15:37 - 2013-12-08 00:53 - 00000000 ____D () C:\windows\system32\MRT
2014-10-15 15:24 - 2013-12-08 00:52 - 103265616 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-10-14 15:34 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-10-14 15:34 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-10-14 15:34 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\SysWOW64\Dism
2014-10-14 15:34 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\system32\Dism
2014-10-14 13:49 - 2013-12-08 01:56 - 00000000 ____D () C:\ProgramData\AMD
2014-10-14 13:48 - 2013-12-08 01:47 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-10-14 13:41 - 2013-12-08 01:48 - 00000000 ____D () C:\ProgramData\Package Cache
2014-10-14 13:36 - 2013-12-08 01:46 - 00000000 ____D () C:\AMD
2014-10-12 15:00 - 2013-12-08 23:00 - 00000000 ___HD () C:\windows\msdownld.tmp
2014-10-12 15:00 - 2010-12-17 20:55 - 00000000 ____D () C:\Temp
2014-10-10 22:33 - 2014-03-14 12:46 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\Skype
2014-10-07 17:34 - 2013-12-08 01:56 - 00000000 ____D () C:\Users\Tomáš\AppData\Roaming\DAEMON Tools Lite

Files to move or delete:
====================
C:\ProgramData\win_mpwd_sys.dat


Some content of TEMP:
====================
C:\Users\Tomáš\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-10-27 12:45

==================== End Of Log ============================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-11-2014
Ran by Tomáš at 2014-11-04 18:19:57
Running from C:\Users\Tomáš\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

0 A.D. (HKCU\...\0 A.D.) (Version: r14386-alpha - Wildfire Games)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
ABBYY FineReader 11 Corporate Edition (HKLM-x32\...\{F1100000-0010-0000-0000-074957833700}) (Version: 11.0.460 - ABBYY)
Acrobat.com (HKLM-x32\...\{77DCDCE3-2DED-62F3-8154-05E745472D07}) (Version: 1.1.377 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.189 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{C2956908-53A3-88FC-B795-B16508296FC4}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2206 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom Gigabit NetLink Controller (HKLM\...\{A84DB02B-9C2B-4272-9D2D-A80E00A56513}) (Version: 14.2.4.2 - Broadcom Corporation)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.66.1075 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
CNCSimulator Pro (HKLM-x32\...\{6C13DC9D-9BE1-4A8B-AE03-99708587EAFD}) (Version: 1.2.1.6 - CNCSimulator.com)
Crusader Kings II version 1.111 (HKLM-x32\...\{31415207-B98D-4048-BAED-5CA6C1815C64}_is1) (Version: 1.111 - )
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.0.2603 - CyberLink Corp.)
Czech Soccer Manager (HKLM-x32\...\Czech Soccer Manager) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Energy Management (HKLM-x32\...\{0CE226F3-EB27-4ECD-BBF5-F088716779FD}) (Version: 5.4.2.2 - Lenovo)
EpsonNet Setup 3.3 (HKLM-x32\...\{C9D8A041-2963-4B31-8FFC-1500F3DB9293}) (Version: 3.3a - SEIKO EPSON CORPORATION)
FBReader for Windows (HKLM-x32\...\FBReader for Windows) (Version: - )
Folder Lock (HKLM-x32\...\Folder Lock) (Version: - New Softwares.net)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free Pascal 2.6.2 (HKLM-x32\...\FreePascal_is1) (Version: - Free Pascal Team)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.0.0.1046 - Intel Corporation)
iTNC530 (606424) (HKLM-x32\...\{EC28CE20-D196-4604-9145-11CD48F10E11}) (Version: - )
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.510 - Oracle)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.41.2 - JMicron Technology Corp.)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.2400 - Broadcom Corporation)
Lenovo DirectShare (HKLM-x32\...\InstallShield_{B2164CCB-C002-4B80-8550-7535D80DF237}) (Version: 1.0.1.38 - ArcSoft)
Lenovo DirectShare (x32 Version: 1.0.1.38 - ArcSoft) Hidden
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0333}) (Version: 1.10.0510.01 - Lenovo EasyCamera)
Lenovo MuteSync (HKLM-x32\...\InstallShield_{2955FADE-ADED-44AD-A853-D1EAEA7ACAD5}) (Version: 1.0.0.2 - Lenovo)
Lenovo MuteSync (x32 Version: 1.0.0.2 - Lenovo) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.1230 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 7.0.1230 - CyberLink Corp.) Hidden
Lenovo ReadyComm 5 (HKLM-x32\...\{17542DBF-E17C-4562-BC4D-FA3EF3076C45}) (Version: 5.1.1.22 - Lenovo)
Lenovo ReadyComm 5.0 Service (HKLM-x32\...\{76C66170-C538-4E77-B54D-48E136B5B533}) (Version: 5.0.0.1 - Lenovo Group Limited)
Lenovo SlideNav (HKLM-x32\...\Lenovo SlideNav2) (Version: 2.0.1230.0003 - Lenovo)
Lenovo SplitScreen (HKLM-x32\...\Lenovo SplitScreen) (Version: 1.00.1823.0001 - Lenovo)
LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.8 - Thibaut Lauziere)
Merc Elite (HKLM-x32\...\1d128bf6-25c8-4b8a-bfa2-12b013ab230d_is1) (Version: 49159 - Bigpoint GmbH)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Applications - ENU (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Applications - ENU) (Version: - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 33.0.2 (x86 cs) (HKLM-x32\...\Mozilla Firefox 33.0.2 (x86 cs)) (Version: 33.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
MPC-HC 1.7.6 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.6 - MPC-HC Team)
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
My Lockbox 3.0.5 (HKLM\...\My Lockbox_is1) (Version: 3.0.5 - )
Odinstalace tiskárny EPSON SX420W Series (HKLM\...\EPSON SX420W Series) (Version: - SEIKO EPSON Corporation)
Onekey Theater (HKLM-x32\...\InstallShield_{D4B060B9-AD4A-4152-9D99-28B93C615AFE}) (Version: 2.0.2.6 - Lenovo)
Onekey Theater (x32 Version: 2.0.2.6 - Lenovo) Hidden
Operation Flashpoint ®: Red River (HKLM-x32\...\GFWL_{434D083E-7E9A-4D3A-914B-121000008100}) (Version: 1.0.0000.129 - Codemasters)
Operation Flashpoint ®: Red River (x32 Version: 1.0.0000.129 - Codemasters) Hidden
Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.6903 - CyberLink Corp.)
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.5.7.2450 - Jan Fiala)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Quake Live (HKLM-x32\...\Quake Live) (Version: - id Software)
Raptr (HKLM-x32\...\Raptr) (Version: - )
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6121 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6312 - Realtek Semiconductor Corp.)
Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam)
S.T.A.L.K.E.R. - Clear Sky [v1.0003] (HKLM-x32\...\S.T.A.L.K.E.R. - Clear Sky_is1) (Version: 1.0003 - Deep Silver)
SaluSafe 3.8.8 (HKLM-x32\...\6011-3497-1060-2778) (Version: 3.8.8 - CryptoHeaven Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Swansoft CNC Simulator 6.60 (HKLM-x32\...\Swansoft CNC Simulator) (Version: 6.60 - Nanjing Swansoft)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.1.4.0 - Synaptics Incorporated)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
Total War: ROME II (HKLM-x32\...\Steam App 214950) (Version: - Creative Assembly)
VeriFace (HKLM-x32\...\VeriFace) (Version: 3.6.0.1211 - Lenovo)
War Thunder Launcher 1.0.1.278 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - 2013 Gaijin Entertainment Corporation)
Windows Driver Package - Broadcom (BTHUSB) Bluetooth (04/08/2010 6.3.5.430) (HKLM\...\DE7217D2A8B057F15EC6E52329FDAB84231521E8) (Version: 04/08/2010 6.3.5.430 - Broadcom)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
Windows Driver Package - Lenovo (ACPIVPC) System (10/19/2009 5.4.0.1) (HKLM\...\0A4175B489A1B4A6E07E11B063A6263480C51D71) (Version: 10/19/2009 5.4.0.1 - Lenovo)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
World of Tanks - Common Test (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812CT}_is1) (Version: - Wargaming.net)
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)
yBook (HKLM-x32\...\yBook_is1) (Version: - Spacejock Software)
Zoner Callisto 5 FREE (HKLM-x32\...\ZonerCallisto5_CZ_is1) (Version: 5.0.5000.16 - ZONER software)
Zoner Photo Studio 16 (HKLM\...\ZonerPhotoStudio16_CZ_is1) (Version: 16.0.1.5 - ZONER software)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-594128869-2609986908-3295353243-1001_Classes\CLSID\{EDE7E298-9918-02EA-49BD-1C3438A3DD71}\InprocServer32 -> C:\windows\system32\ole32.dll (Microsoft Corporation)

==================== Restore Points =========================


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2014-11-03 12:57 - 00451017 ____R C:\windows\system32\Drivers\etc\hosts
127.0.0.1 www.password-protect-folders.net
127.0.0.1 www.newsoftwares.net
127.0.0.1 www.password-protect-folders.net
127.0.0.1 www.newsoftwares.net
127.0.0.1 www.password-protect-folders.net
127.0.0.1 www.newsoftwares.net
127.0.0.1 www.password-protect-folders.net
127.0.0.1 www.newsoftwares.net
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com

There are 1000 more lines.


==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {36B812C7-6B05-445F-8418-A6C7F28D25B5} - System32\Tasks\{7E459A8D-DF11-44D0-8C42-589BA01B4FB8} => C:\Windows\twain_32\escndv\escndv.exe [2009-01-10] (SEIKO EPSON CORP.)
Task: {48652C15-5885-4F47-AFCC-AB9E52400ADC} - System32\Tasks\AutoKMS => C:\windows\AutoKMS.exe [2013-12-08] ()
Task: {5ACF60E4-D7A0-4F7F-B78E-B8E879827B86} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-08] (Google Inc.)
Task: {65218BC2-1B5D-4252-AD4F-CAC9F5ADE0FF} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-11-04] (AVAST Software)
Task: {9DEF29DA-FA4D-4A59-A818-25707F73EAC5} - System32\Tasks\{70DE0653-470A-4813-AADA-BD0B63474315} => C:\Windows\twain_32\escndv\escndv.exe [2009-01-10] (SEIKO EPSON CORP.)
Task: {DCAC55F1-CB4D-4B51-99E1-F2A093979D8A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-08] (Google Inc.)
Task: {F11DB0A1-003B-4D1B-BE24-6C33DE834968} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-09-26] (Piriform Ltd)
Task: C:\windows\Tasks\AutoKMS.job => C:\windows\AutoKMS.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-12-08 18:17 - 2013-12-08 18:17 - 00614400 _____ () C:\windows\AutoKMS.exe
2013-04-04 01:09 - 2013-04-04 01:09 - 04300432 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-12-17 20:53 - 2010-12-17 20:53 - 01502720 _____ () C:\windows\system32\IcnOvrly.dll
2010-10-18 15:50 - 2010-10-18 15:50 - 00202144 _____ () C:\Program Files (x86)\Lenovo\Onekey Theater\ActiveDetect64.dll
2010-10-18 15:52 - 2010-10-18 15:52 - 00156576 _____ () C:\Program Files (x86)\Lenovo\Onekey Theater\WindowsApiHookDll64.dll
2010-06-13 22:49 - 2010-06-13 22:49 - 00173344 _____ () C:\Program Files\Lenovo\Bluetooth Software\btkeyind.dll
2010-12-17 20:53 - 2010-12-17 20:53 - 00622592 _____ () C:\windows\system32\SimpleExt.dll
2010-12-17 20:53 - 2010-12-17 20:53 - 00100256 _____ () C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
2010-12-17 21:02 - 2009-07-15 16:55 - 00054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\kbdhook.dll
2010-12-17 21:02 - 2009-07-15 16:55 - 00054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\HookLib.dll
2014-11-04 14:00 - 2014-11-04 14:00 - 02899456 _____ () C:\Program Files\AVAST Software\Avast\defs\14110400\algo.dll
2010-10-18 15:46 - 2010-10-18 15:46 - 00161696 _____ () C:\Program Files (x86)\Lenovo\Onekey Theater\ActiveDetect32.dll
2010-10-18 15:49 - 2010-10-18 15:49 - 00133024 _____ () C:\Program Files (x86)\Lenovo\Onekey Theater\WindowsApiHookDll32.dll
2013-04-04 01:09 - 2013-04-04 01:09 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-12-17 20:53 - 2010-12-17 20:53 - 00492896 _____ () C:\Program Files (x86)\Lenovo\VeriFace\ChooseLang.dll
2014-11-04 14:05 - 2014-11-04 14:05 - 38561576 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-10-29 14:43 - 2014-10-22 05:04 - 01042760 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libglesv2.dll
2014-10-29 14:43 - 2014-10-22 05:04 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libegl.dll
2014-10-29 14:43 - 2014-10-22 05:04 - 08910664 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\pdf.dll
2014-10-29 14:43 - 2014-10-22 05:04 - 01681224 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\ffmpegsumo.dll
2014-10-21 10:25 - 2014-10-21 10:25 - 16832176 _____ () C:\windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData:$SS_DESCRIPTOR_SBXNV9VVGV1BFXT9KXN0BXTYKJNW06JNHJDVJWXFSVF7VBCVP4GF
AlternateDataStreams: C:\Users\All Users:$SS_DESCRIPTOR_SBXNV9VVGV1BFXT9KXN0BXTYKJNW06JNHJDVJWXFSVF7VBCVP4GF
AlternateDataStreams: C:\ProgramData\Application Data:$SS_DESCRIPTOR_SBXNV9VVGV1BFXT9KXN0BXTYKJNW06JNHJDVJWXFSVF7VBCVP4GF

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinFLAdrv.sys => ""="Driver"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

Administrator (S-1-5-21-594128869-2609986908-3295353243-500 - Administrator - Disabled)
Guest (S-1-5-21-594128869-2609986908-3295353243-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-594128869-2609986908-3295353243-1002 - Limited - Enabled)
Tomáš (S-1-5-21-594128869-2609986908-3295353243-1001 - Administrator - Enabled) => C:\Users\Tomáš

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/04/2014 06:11:37 PM) (Source: VSS) (EventID: 12305) (User: )
Description: Chyba služby Stínová kopie svazků: Svazek nebo disk není připojen nebo nebyl nalezen.
Kontext chyby: CreateFileW(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1,0xc0000000,0x00000003,...).


Operace:
Probíhá zpracování události PostFinalCommitSnapshots

Kontext:
Kontext spuštění: System Provider

Error: (11/04/2014 05:39:53 PM) (Source: VSS) (EventID: 12305) (User: )
Description: Chyba služby Stínová kopie svazků: Svazek nebo disk není připojen nebo nebyl nalezen.
Kontext chyby: CreateFileW(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1,0xc0000000,0x00000003,...).


Operace:
Probíhá zpracování události PostFinalCommitSnapshots

Kontext:
Kontext spuštění: System Provider

Error: (11/04/2014 04:01:23 PM) (Source: VSS) (EventID: 12305) (User: )
Description: Chyba služby Stínová kopie svazků: Svazek nebo disk není připojen nebo nebyl nalezen.
Kontext chyby: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1 - 0000000000000194,0x00560038,00000000003AAFE0,0,00000000003A9FD0,4096,[0]).


Operace:
Probíhá zpracování události PostFinalCommitSnapshots

Kontext:
Kontext spuštění: System Provider

Error: (11/04/2014 02:33:40 PM) (Source: VSS) (EventID: 12305) (User: )
Description: Chyba služby Stínová kopie svazků: Svazek nebo disk není připojen nebo nebyl nalezen.
Kontext chyby: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy2 - 000000000000018C,0x00560038,000000000030D000,0,000000000030BFF0,4096,[0]).


Operace:
Probíhá zpracování události PostFinalCommitSnapshots

Kontext:
Kontext spuštění: System Provider

Error: (11/04/2014 02:28:10 PM) (Source: VSS) (EventID: 12289) (User: )
Description: Chyba služby Stínová kopie svazků: Neočekávaná chyba CreateFileW(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1,0xc0000000,0x00000003,...). hr = 0x80070037, Zvolený síťový prostředek nebo zařízení nejsou nadále k dispozici.
.


Operace:
Probíhá zpracování události PostFinalCommitSnapshots

Kontext:
Kontext spuštění: System Provider

Error: (11/04/2014 02:03:25 PM) (Source: VSS) (EventID: 12305) (User: )
Description: Chyba služby Stínová kopie svazků: Svazek nebo disk není připojen nebo nebyl nalezen.
Kontext chyby: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy2 - 0000000000000190,0x0053c198,000000000002CC20,0,00000000001BC5B0,4096,[0]).


Operace:
Probíhá zpracování události PostFinalCommitSnapshots

Kontext:
Kontext spuštění: System Provider

Error: (11/03/2014 11:04:37 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SDFiles.exe verze 2.4.40.135 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: d64

Čas spuštění: 01cff7af9c2766af

Čas ukončení: 0

Cesta k aplikaci: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFiles.exe

ID hlášení: 64941c13-63a5-11e4-9567-60eb69a30a93

Error: (11/03/2014 11:47:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: perfmon.exe, verze: 6.1.7601.17514, časové razítko: 0x4ce7972c
Název chybujícího modulu: wdc.dll, verze: 6.1.7601.17514, časové razítko: 0x4ce7c9f4
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000004bc07
ID chybujícího procesu: 0x16c4
Čas spuštění chybující aplikace: 0xperfmon.exe0
Cesta k chybující aplikaci: perfmon.exe1
Cesta k chybujícímu modulu: perfmon.exe2
ID zprávy: perfmon.exe3

Error: (11/02/2014 02:07:52 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program UPlayBrowser.exe verze 1.0.1.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1070

Čas spuštění: 01cff636a9e3487b

Čas ukončení: 6

Cesta k aplikaci: C:\Program Files (x86)\Ubisoft\Tom Clancys HAWX 2\Data\Browser\UPlayBrowser.exe

ID hlášení: a85c9663-622c-11e4-b132-60eb69a30a93

Error: (11/02/2014 02:04:24 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Uplay.exe, verze: 0.0.0.0, časové razítko: 0x50c1f446
Název chybujícího modulu: Uplay.exe, verze: 0.0.0.0, časové razítko: 0x50c1f446
Kód výjimky: 0xc0000417
Posun chyby: 0x006d382e
ID chybujícího procesu: 0x9bc
Čas spuštění chybující aplikace: 0xUplay.exe0
Cesta k chybující aplikaci: Uplay.exe1
Cesta k chybujícímu modulu: Uplay.exe2
ID zprávy: Uplay.exe3


System errors:
=============
Error: (11/04/2014 06:11:36 PM) (Source: volsnap) (EventID: 14) (User: )
Description: Stínové kopie svazku C: byly přerušeny kvůli selhání V/V operace. ve svazku C:.

Error: (11/04/2014 05:49:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba ReadyComm.DirectRouter neuspěla při spuštění v důsledku následující chyby:
%%2

Error: (11/04/2014 05:47:02 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby AudioEndpointBuilder bylo dosaženo časového limitu (30000 ms).

Error: (11/04/2014 05:44:52 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Zařízení \Device\Ide\iaStor0 neodpovídá v periodě časového limitu.

Error: (11/04/2014 05:44:51 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Zařízení \Device\Ide\iaStor0 neodpovídá v periodě časového limitu.

Error: (11/04/2014 05:44:50 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Zařízení \Device\Ide\iaStor0 neodpovídá v periodě časového limitu.

Error: (11/04/2014 05:44:49 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Zařízení \Device\Ide\iaStor0 neodpovídá v periodě časového limitu.

Error: (11/04/2014 05:44:47 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Zařízení \Device\Ide\iaStor0 neodpovídá v periodě časového limitu.

Error: (11/04/2014 05:44:46 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Zařízení \Device\Ide\iaStor0 neodpovídá v periodě časového limitu.

Error: (11/04/2014 05:44:45 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Zařízení \Device\Ide\iaStor0 neodpovídá v periodě časového limitu.


Microsoft Office Sessions:
=========================
Error: (11/04/2014 06:11:37 PM) (Source: VSS) (EventID: 12305) (User: )
Description: CreateFileW(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1,0xc0000000,0x00000003,...)

Operace:
Probíhá zpracování události PostFinalCommitSnapshots

Kontext:
Kontext spuštění: System Provider

Error: (11/04/2014 05:39:53 PM) (Source: VSS) (EventID: 12305) (User: )
Description: CreateFileW(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1,0xc0000000,0x00000003,...)

Operace:
Probíhá zpracování události PostFinalCommitSnapshots

Kontext:
Kontext spuštění: System Provider

Error: (11/04/2014 04:01:23 PM) (Source: VSS) (EventID: 12305) (User: )
Description: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1 - 0000000000000194,0x00560038,00000000003AAFE0,0,00000000003A9FD0,4096,[0])

Operace:
Probíhá zpracování události PostFinalCommitSnapshots

Kontext:
Kontext spuštění: System Provider

Error: (11/04/2014 02:33:40 PM) (Source: VSS) (EventID: 12305) (User: )
Description: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy2 - 000000000000018C,0x00560038,000000000030D000,0,000000000030BFF0,4096,[0])

Operace:
Probíhá zpracování události PostFinalCommitSnapshots

Kontext:
Kontext spuštění: System Provider

Error: (11/04/2014 02:28:10 PM) (Source: VSS) (EventID: 12289) (User: )
Description: CreateFileW(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1,0xc0000000,0x00000003,...)0x80070037, Zvolený síťový prostředek nebo zařízení nejsou nadále k dispozici.


Operace:
Probíhá zpracování události PostFinalCommitSnapshots

Kontext:
Kontext spuštění: System Provider

Error: (11/04/2014 02:03:25 PM) (Source: VSS) (EventID: 12305) (User: )
Description: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy2 - 0000000000000190,0x0053c198,000000000002CC20,0,00000000001BC5B0,4096,[0])

Operace:
Probíhá zpracování události PostFinalCommitSnapshots

Kontext:
Kontext spuštění: System Provider

Error: (11/03/2014 11:04:37 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: SDFiles.exe2.4.40.135d6401cff7af9c2766af0C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFiles.exe64941c13-63a5-11e4-9567-60eb69a30a93

Error: (11/03/2014 11:47:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: perfmon.exe6.1.7601.175144ce7972cwdc.dll6.1.7601.175144ce7c9f4c0000005000000000004bc0716c401cff75355c87671C:\windows\System32\perfmon.exeC:\windows\System32\wdc.dllc70b53c1-6346-11e4-8d1b-60eb69a30a93

Error: (11/02/2014 02:07:52 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: UPlayBrowser.exe1.0.1.0107001cff636a9e3487b6C:\Program Files (x86)\Ubisoft\Tom Clancys HAWX 2\Data\Browser\UPlayBrowser.exea85c9663-622c-11e4-b132-60eb69a30a93

Error: (11/02/2014 02:04:24 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Uplay.exe0.0.0.050c1f446Uplay.exe0.0.0.050c1f446c0000417006d382e9bc01cff636b4be5b83C:\Program Files (x86)\Ubisoft\Tom Clancys HAWX 2\orbitlauncher\Uplay.exeC:\Program Files (x86)\Ubisoft\Tom Clancys HAWX 2\orbitlauncher\Uplay.exe2ec2e092-622c-11e4-b132-60eb69a30a93


CodeIntegrity Errors:
===================================
Date: 2014-11-04 17:49:58.338
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-04 17:49:57.964
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-04 17:24:56.152
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-04 17:24:55.826
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-04 14:18:13.752
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-04 14:18:13.237
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-02 20:55:32.818
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-02 20:55:32.544
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-02 20:53:36.759
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-02 20:53:36.255
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-2630QM CPU @ 2.00GHz
Percentage of memory in use: 61%
Total physical RAM: 4076.58 MB
Available physical RAM: 1580.81 MB
Total Pagefile: 8151.34 MB
Available Pagefile: 5181.82 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:653 GB) (Free:100.7 GB) NTFS
Drive d: (LENOVO) (Fixed) (Total:30.69 GB) (Free:3.38 GB) NTFS
Drive e: (HAWX2) (CDROM) (Total:3.99 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: C3FFC3FF)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=653 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=30.7 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=14.8 GB) - (Type=12)

==================== End Of Log ============================

[altrok]

Doporucena velikost Plochy be nemela presahovat 200 MB, protoze se pak znacne prodluzuje start PC.

• Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
• ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
• znovu spustte FRST a kliknete na Fix
• po restartu na Vas vyskoci fixlog, jehoz obsah mi vlozte do pristi odpovedi

  Kód: Vybrat vše

  Start
  CloseProcesses:
  HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2010-07-26] (CyberLink Corp.)
  HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
  HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
  HKU\S-1-5-21-594128869-2609986908-3295353243-1001\...\Run: [Zoner Photo Studio Service 16] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe [27648 2013-12-13] ()
  HKU\S-1-5-21-594128869-2609986908-3295353243-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
  HKU\S-1-5-21-594128869-2609986908-3295353243-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [831488 2013-12-13] (ZONER software)
  HKU\S-1-5-21-594128869-2609986908-3295353243-1001\...\MountPoints2: {031cd74d-994d-11e3-ba91-18f46aff8750} - G:\setup.exe
  HKU\S-1-5-21-594128869-2609986908-3295353243-1001\...\MountPoints2: {3cc280d0-5fa1-11e3-83c3-18f46aff8750} - E:\setup_the_witcher_2_ee_3.0.1.17.exe
  HKU\S-1-5-21-594128869-2609986908-3295353243-1001\...\MountPoints2: {e2e6b8f3-3cc6-11e4-9bf4-60eb69a30a93} - E:\autorun.exe
  ProxyServer: localhost:8080
  SearchScopes: HKCU - {51EECE06-4D4B-474B-A689-05B75BE9B432} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1750559&CUI=UN41441395471733319&UM=1
  Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
  Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
  Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
  FF SearchEngineOrder.3: Bing 
  FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q=
  FF Plugin: @microsoft.com/GENUINE -> disabled No File
  FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
  FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
  FF Plugin HKCU: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Tom Clancys HAWX 2\orbitlauncher\npuplaypc.dll No File
  FF Extension: YouTube Enhancer Plus - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\ptqer6w6.default\Extensions\firefoxaddon@youtubeenhancer.com.xpi [2014-10-21]
  FF Extension: Youtube MP3 Downloader using youtube-mp3.org - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\ptqer6w6.default\Extensions\jid1-xKH0EoS44u1a2w@jetpack.xpi [2014-10-21]
  FF Extension: Best Video Downloader 2 - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\ptqer6w6.default\Extensions\{170503FA-3349-4F17-BC86-001888A5C8E2}.xpi [2014-09-10]
  CHR StartupUrls: Default -> "hxxp://www.google.com/", "hxxp://www.msn.com/?pc=UP97&ocid=UP97DHP"
  CHR Extension: (Easy Video Downloader Express) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbcpmdpjjlhppmhfkcgbeanaanipdjbk [2013-12-08]
  CHR Extension: (Midnight Aurora) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkofbkfkfkfhhnhdalphbomodghgafdf [2013-12-08]
  U3 BcmSqlStartupSvc; No ImagePath
  U2 IAStorDataMgrSvc; No ImagePath
  U2 IviRegMgr; No ImagePath
  U2 RichVideo; No ImagePath
  U3 SQLWriter; No ImagePath
  C:\windows\tasks\AutoKMS.job
  C:\windows\AutoKMS.exe
  C:\windows\tasks\GoogleUpdateTaskMachineCore.job
  C:\windows\tasks\GoogleUpdateTaskMachineUA.job
  C:\windows\KMSEmulator.exe
  C:\windows\msdownld.tmp
  2014-11-04 12:15 - 2014-11-04 12:31 - 00000000 ____D () C:\Program Files\trend micro
  2014-11-03 12:10 - 2014-11-04 14:14 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
  2014-11-03 12:10 - 2014-11-04 14:04 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
  2014-11-03 12:02 - 2014-11-03 12:03 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Tomáš\Downloads\spybot-2.4.exe
  C:\ProgramData\win_mpwd_sys.dat
  AlternateDataStreams: C:\ProgramData:$SS_DESCRIPTOR_SBXNV9VVGV1BFXT9KXN0BXTYKJNW06JNHJDVJWXFSVF7VBCVP4GF
  AlternateDataStreams: C:\Users\All Users:$SS_DESCRIPTOR_SBXNV9VVGV1BFXT9KXN0BXTYKJNW06JNHJDVJWXFSVF7VBCVP4GF
  AlternateDataStreams: C:\ProgramData\Application Data:$SS_DESCRIPTOR_SBXNV9VVGV1BFXT9KXN0BXTYKJNW06JNHJDVJWXFSVF7VBCVP4GF
  EmptyTemp:
  End