prosím o kontrolu nie som si isty

Zpráva

nogturn · #1 Příspěvek od **nogturn** » 11 pro 2014 14:54

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-12-2014 01
Ran by rado (administrator) on RADO-PC on 11-12-2014 14:41:39
Running from C:\Users\rado\Desktop
Loaded Profile: rado (Available profiles: rado)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
() C:\Program Files (x86)\Opera\26.0.1656.32\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(forum.viry.cz) C:\Users\rado\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5581888 2014-02-24] (ESET)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2460488 2014-09-17] (NVIDIA Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-05-09] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKU\S-1-5-21-2746386546-279506314-3770893357-1001\...\Run: [BitTorrent] => C:\Users\rado\AppData\Roaming\BitTorrent\BitTorrent.exe [1388888 2014-11-25] (BitTorrent Inc.)
HKU\S-1-5-21-2746386546-279506314-3770893357-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2746386546-279506314-3770893357-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22065760 2014-10-01] (Skype Technologies S.A.)
HKU\S-1-5-21-2746386546-279506314-3770893357-1001\...\RunOnce: [Adobe Speed Launcher] => 1418297117
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-09-10] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2746386546-279506314-3770893357-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\rado\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-08-10]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1343408 2014-02-24] (ESET)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-17] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19439944 2014-09-17] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1900400 2014-12-04] (Electronic Arts)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-09-27] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-09-04] (Duplex Secure Ltd.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-08-11] ()
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Corporation)
U3 anfeekt7; C:\Windows\System32\Drivers\anfeekt7.sys [0 ] (Advanced Micro Devices)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-11 14:41 - 2014-12-11 14:42 - 00010666 _____ () C:\Users\rado\Desktop\FRST.txt
2014-12-11 14:41 - 2014-12-11 14:41 - 00000000 ____D () C:\FRST
2014-12-11 14:40 - 2014-12-11 14:40 - 00112640 _____ (forum.viry.cz) C:\Users\rado\Downloads\FRSTLauncher (1).exe
2014-12-11 14:39 - 2014-12-11 14:39 - 02119680 _____ (Farbar) C:\Users\rado\Desktop\FRST64.exe
2014-12-11 14:38 - 2014-12-11 14:38 - 00112640 _____ (forum.viry.cz) C:\Users\rado\Desktop\FRSTLauncher.exe
2014-12-11 13:14 - 2014-12-11 13:14 - 00015931 _____ () C:\Users\rado\Downloads\[CzT]Mikulasovy_patalie_na_prazdninach_Les_Vacances_du_Petit_Nicolas_2014_CZ_.torrent
2014-12-11 12:41 - 2014-12-11 12:41 - 00001175 _____ () C:\Users\rado\Desktop\AIDA64 Extreme.lnk
2014-12-11 12:41 - 2014-12-11 12:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire
2014-12-11 12:41 - 2014-12-11 12:41 - 00000000 ____D () C:\Program Files (x86)\FinalWire
2014-12-11 12:39 - 2014-12-11 12:40 - 15569192 _____ (FinalWire Ltd. ) C:\Users\rado\Downloads\aida64extreme500.exe
2014-12-11 12:24 - 2014-12-11 12:25 - 00000168 _____ () C:\Windows\setupact.log
2014-12-11 12:24 - 2014-12-11 12:24 - 00000000 _____ () C:\Windows\setuperr.log
2014-12-11 09:53 - 2014-12-11 12:30 - 00000000 ____D () C:\Program Files (x86)\SpeedFan
2014-12-11 09:53 - 2014-12-11 09:53 - 02174848 _____ () C:\Users\rado\Downloads\instsf450.exe
2014-12-11 09:53 - 2014-12-11 09:53 - 00001007 _____ () C:\Users\rado\Desktop\SpeedFan.lnk
2014-12-11 09:53 - 2014-12-11 09:53 - 00000045 _____ () C:\Windows\SysWOW64\initdebug.nfo
2014-12-11 09:53 - 2014-12-11 09:53 - 00000000 ____D () C:\Users\rado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2014-12-11 09:53 - 2014-12-11 09:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan
2014-12-11 09:37 - 2014-12-11 09:40 - 00000000 ____D () C:\Program Files (x86)\CPU Thermometer
2014-12-11 09:37 - 2014-12-11 09:37 - 00001086 _____ () C:\Users\Public\Desktop\CPU Thermometer.lnk
2014-12-11 09:37 - 2014-12-11 09:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPU Thermometer
2014-12-11 09:36 - 2014-12-11 09:37 - 00669046 _____ (cputhermometer.com ) C:\Users\rado\Downloads\cputhermometer_setup.exe
2014-12-10 19:10 - 2014-12-10 19:14 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-12-10 19:08 - 2014-12-10 19:13 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-12-10 19:08 - 2014-12-10 19:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-12-10 19:08 - 2014-12-10 19:13 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-12-10 19:08 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-12-10 19:08 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-12-10 19:08 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-12-10 17:29 - 2014-10-18 03:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-12-10 17:29 - 2014-10-18 02:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-12-10 17:26 - 2014-11-27 02:43 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-10 17:26 - 2014-11-27 02:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-10 17:26 - 2014-11-22 04:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-10 17:26 - 2014-11-22 04:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-10 17:26 - 2014-11-22 04:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-12-10 17:26 - 2014-11-22 03:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-10 17:26 - 2014-11-22 03:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-12-10 17:26 - 2014-11-22 03:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-10 17:26 - 2014-11-22 03:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-12-10 17:26 - 2014-11-22 03:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-12-10 17:26 - 2014-11-22 03:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-10 17:26 - 2014-11-22 03:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-12-10 17:26 - 2014-11-22 03:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-12-10 17:26 - 2014-11-22 03:35 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-12-10 17:26 - 2014-11-22 03:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-12-10 17:26 - 2014-11-22 03:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-10 17:26 - 2014-11-22 03:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-12-10 17:26 - 2014-11-22 03:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-10 17:26 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-10 17:26 - 2014-11-22 03:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-10 17:26 - 2014-11-22 03:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-12-10 17:26 - 2014-11-22 03:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-10 17:26 - 2014-11-22 03:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-12-10 17:26 - 2014-11-22 03:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-10 17:26 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-12-10 17:26 - 2014-11-22 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-12-10 17:26 - 2014-11-22 03:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-12-10 17:26 - 2014-11-22 03:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-10 17:26 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-10 17:26 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-10 17:26 - 2014-11-22 02:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-12-10 17:26 - 2014-11-22 02:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-12-10 17:26 - 2014-11-22 02:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-12-10 17:26 - 2014-11-22 02:55 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-12-10 17:26 - 2014-11-22 02:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-12-10 17:26 - 2014-11-22 02:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-10 17:26 - 2014-11-22 02:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-10 17:26 - 2014-11-22 02:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-12-10 17:26 - 2014-11-22 02:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-10 17:26 - 2014-11-22 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-12-10 17:26 - 2014-11-22 02:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-10 17:26 - 2014-11-22 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-10 17:26 - 2014-11-22 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-12-10 17:26 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-10 17:26 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-10 17:26 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-10 17:26 - 2014-11-22 02:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-10 17:26 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-10 17:26 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-10 17:26 - 2014-11-22 02:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-12-10 17:26 - 2014-11-22 02:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-10 17:26 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-10 17:26 - 2014-11-22 02:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-12-10 17:26 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-10 17:26 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-10 17:26 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-12-10 17:20 - 2014-11-11 04:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-10 17:20 - 2014-11-11 03:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-10 17:20 - 2014-11-11 02:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-12-10 17:20 - 2014-10-30 03:04 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-12-10 17:20 - 2014-10-30 03:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2014-12-10 17:20 - 2014-10-30 02:46 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-12-10 17:20 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2014-12-10 17:20 - 2014-10-03 03:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-12-10 17:20 - 2014-10-03 03:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-10 17:20 - 2014-10-03 03:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-12-10 17:20 - 2014-10-03 03:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2014-12-10 17:20 - 2014-10-03 03:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2014-12-10 17:20 - 2014-10-03 02:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-12-10 17:20 - 2014-10-03 02:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2014-12-10 17:20 - 2014-10-03 02:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2014-12-10 17:20 - 2014-10-03 02:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2014-12-10 17:20 - 2014-10-03 02:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2014-12-10 17:18 - 2014-11-08 04:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-12-10 17:18 - 2014-11-08 03:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-12-10 17:17 - 2014-10-14 03:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-12-10 17:17 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-12-10 12:05 - 2014-12-10 12:05 - 00000887 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mass Effect 3.lnk
2014-12-09 15:02 - 2014-12-09 15:02 - 00015940 _____ () C:\Users\rado\Downloads\[CzT]The_Hunters_2013_SK_ (2).torrent
2014-12-09 15:02 - 2014-12-09 15:02 - 00015940 _____ () C:\Users\rado\Downloads\[CzT]The_Hunters_2013_SK_ (1).torrent
2014-12-09 15:02 - 2014-12-09 15:02 - 00015939 _____ () C:\Users\rado\Downloads\[CzT]The_Hunters_2013_SK_.torrent
2014-12-09 14:56 - 2014-12-09 15:02 - 01939048 _____ (emc) C:\Users\rado\Downloads\uTorrent221.exe
2014-12-09 14:52 - 2014-12-09 14:52 - 00013325 _____ () C:\Users\rado\Downloads\[CzT]Utek_z_planety_Zeme_Escape_from_Planet_Earth_2013_CZ_SK_.torrent
2014-12-09 13:39 - 2014-12-09 13:39 - 00013497 _____ () C:\Users\rado\Downloads\[CzT]Mass_Effect_3_Citadel_DLC_2013_.torrent
2014-12-09 10:20 - 2014-12-09 10:21 - 04134452 _____ ( ) C:\Users\rado\Downloads\ME3Cz_78.exe
2014-12-09 08:45 - 2012-12-01 02:24 - 22468608 _____ (BioWare) C:\Users\rado\Downloads\MassEffect3.exe
2014-12-08 17:19 - 2014-12-08 19:28 - 1539609370 _____ () C:\Users\rado\Downloads\Mass-Effect-Patch-1.04.5427.111.rar
2014-12-07 18:33 - 2014-12-07 18:33 - 00064751 _____ () C:\Users\rado\Downloads\[CzT]Mass_Effect_3_Complete_Pack_CZ_ (1).torrent
2014-12-07 16:29 - 2014-12-07 16:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mass.Effect.3.Update.v1.5.5427.124-COGENT
2014-12-06 11:53 - 2010-06-16 18:03 - 00430592 _____ () C:\Users\rado\Desktop\bws-me202.exe
2014-12-04 10:19 - 2014-12-04 10:19 - 00000845 _____ () C:\Users\Public\Desktop\Mass Effect 2.lnk
2014-12-04 09:43 - 2014-12-04 09:43 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-12-04 09:38 - 2014-12-04 18:32 - 00000000 ____D () C:\Users\rado\AppData\Roaming\Origin
2014-12-04 09:37 - 2014-12-04 09:43 - 00000000 ____D () C:\Users\rado\AppData\Local\Origin
2014-12-04 09:34 - 2014-12-10 12:07 - 00000000 ____D () C:\ProgramData\Origin
2014-12-04 09:34 - 2014-12-04 09:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2014-12-04 09:34 - 2014-12-04 09:34 - 00000979 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-12-04 09:34 - 2014-12-04 09:34 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-12-04 09:33 - 2014-12-10 12:06 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-11-30 14:05 - 2014-11-30 14:05 - 00001301 _____ () C:\Users\rado\Desktop\MassEffect – zástupce.lnk
2014-11-30 11:22 - 2014-11-30 11:22 - 00002282 _____ () C:\Users\rado\Desktop\Pepakura Viewer 3.lnk
2014-11-30 11:20 - 2014-11-30 11:22 - 00000000 ____D () C:\Users\rado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pepakura Designer 3
2014-11-30 11:20 - 2014-11-30 11:20 - 00002253 _____ () C:\Users\rado\Desktop\Pepakura Designer 3.lnk
2014-11-30 11:20 - 2014-11-30 11:20 - 00000000 ____D () C:\Program Files (x86)\tamasoftware
2014-11-29 19:56 - 2014-11-29 19:56 - 00000000 ____D () C:\Users\rado\AppData\Roaming\FastStone
2014-11-29 19:55 - 2014-11-29 19:55 - 00001105 _____ () C:\Users\Public\Desktop\FastStone Image Viewer.lnk
2014-11-29 19:55 - 2014-11-29 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer
2014-11-29 19:55 - 2014-11-29 19:55 - 00000000 ____D () C:\Program Files (x86)\FastStone Image Viewer
2014-11-29 19:54 - 2014-11-29 19:54 - 05806407 _____ () C:\Users\rado\Downloads\FSViewerSetup53.exe
2014-11-27 18:30 - 2014-12-08 15:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Repacky od tomi2k9
2014-11-27 09:29 - 2014-11-27 09:29 - 00059287 _____ () C:\Users\rado\Downloads\[CzT]Mass_Effect_2_CZ_Complete_Edition.torrent
2014-11-27 09:07 - 2014-11-27 09:07 - 00124828 _____ () C:\Users\rado\Downloads\[CzT]Mass_Effect_1_2_3_DLC_CZ_.torrent
2014-11-26 22:58 - 2014-11-26 22:58 - 00015960 _____ () C:\Users\rado\Downloads\[CzT]Mass_Effect_2_Full_DLC_Pack_2011_.torrent
2014-11-26 22:02 - 2014-11-26 22:52 - 00005607 _____ () C:\Users\rado\Documents\Mass Effect 2 1.01.log
2014-11-26 22:01 - 2014-11-26 22:01 - 00001214 _____ () C:\Users\rado\Documents\Mass Effect 2 - DLC_CON_Pack02.log
2014-11-26 22:00 - 2014-11-27 16:35 - 00003637 _____ () C:\Users\rado\Documents\Mass Effect 2 - DLC_EXP_Part02.log
2014-11-26 21:58 - 2014-11-27 16:33 - 00006058 _____ () C:\Users\rado\Documents\Mass Effect 2 - DLC_EXP_Part01.log
2014-11-26 18:36 - 2014-11-26 18:36 - 00015260 _____ () C:\Users\rado\Downloads\[CzT]Predestination_2014_CZ_.torrent
2014-11-26 18:33 - 2014-11-26 18:33 - 00016682 _____ () C:\Users\rado\Downloads\[CzT]Hercules_2014_CZ_.torrent
2014-11-26 17:57 - 2014-11-26 17:57 - 00064751 _____ () C:\Users\rado\Downloads\[CzT]Mass_Effect_3_Complete_Pack_CZ_.torrent
2014-11-26 14:43 - 2014-11-26 14:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mass Effect 2
2014-11-26 10:54 - 2014-11-26 10:53 - 00306688 _____ () C:\Windows\SysWOW64\unarc.dll
2014-11-26 10:54 - 2014-11-26 10:53 - 00306688 _____ () C:\Windows\system32\unarc.dll
2014-11-26 09:17 - 2014-11-26 09:13 - 00456704 _____ (FragSoft) C:\Windows\system32\ISDone.dll
2014-11-26 09:16 - 2014-11-26 09:13 - 00456704 _____ (FragSoft) C:\Windows\SysWOW64\ISDone.dll
2014-11-26 08:59 - 2014-11-26 08:59 - 00052813 _____ () C:\Users\rado\Downloads\[CzT]Mass_Effect_2_CZ_3_DVD_vcetne_DLC_.torrent
2014-11-26 08:56 - 2014-11-26 08:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-11-26 08:56 - 2014-11-26 08:56 - 00000000 ____D () C:\Program Files (x86)\7-Zip
2014-11-26 08:54 - 2014-11-26 08:55 - 01110476 _____ () C:\Users\rado\Downloads\7z920.exe
2014-11-25 09:00 - 2014-11-26 13:32 - 00027061 _____ () C:\Users\rado\Downloads\[CzT]Mass_Effect_2_Veskere_DLC.torrent
2014-11-24 15:32 - 2014-12-04 13:28 - 00011022 _____ () C:\Users\rado\Documents\Mass Effect 2 1.02.log
2014-11-20 10:14 - 2014-11-27 17:33 - 00008960 _____ () C:\Users\rado\Documents\Uninstall Mass Effect 2.log
2014-11-19 22:59 - 2014-11-20 09:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mass Effect
2014-11-19 22:03 - 2014-11-11 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-19 22:03 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-19 22:03 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-19 22:03 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-19 19:18 - 2014-11-19 19:41 - 00000048 _____ () C:\RB.rdat
2014-11-19 19:18 - 2014-11-19 19:41 - 00000048 _____ () C:\License_Time.rdat
2014-11-19 19:18 - 2014-11-19 19:18 - 00002714 _____ () C:\Windows\System32\Tasks\ParetoLogic Update Version3 Startup Task
2014-11-19 19:18 - 2014-11-19 19:18 - 00002552 _____ () C:\Windows\System32\Tasks\FileCure Startup
2014-11-19 19:18 - 2014-11-19 19:18 - 00002536 _____ () C:\Windows\System32\Tasks\FileCure Default
2014-11-19 19:18 - 2014-11-19 19:18 - 00000000 ____D () C:\ProgramData\FileCure
2014-11-19 18:48 - 2014-11-19 18:48 - 00000000 ____D () C:\Windows\C5C1C0F0D62F4DBF81D4D7EF397C228B.TMP
2014-11-19 18:24 - 2014-11-27 15:19 - 00057245 _____ () C:\Users\rado\Documents\Install Mass Effect 2.log
2014-11-18 10:38 - 2014-12-07 11:40 - 00000000 ____D () C:\Users\rado\Documents\BioWare
2014-11-18 08:42 - 2014-11-18 08:42 - 00057635 _____ () C:\Users\rado\Downloads\[CzT]StarCraft_II_Heart_of_the_Swarm_Mass_Recall_Mod_2013_.torrent
2014-11-17 20:21 - 2014-11-18 09:34 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2014-11-17 19:19 - 2014-11-17 19:54 - 00000347 _____ () C:\Users\rado\Desktop\pc zostava.txt
2014-11-17 16:47 - 2014-11-17 16:47 - 00020440 _____ () C:\Users\rado\Downloads\[CzT]StarCraft_2_StarCraft_II_Wings_of_Liberty_CZ_v1_3_6_.torrent
2014-11-15 19:41 - 2014-11-15 19:41 - 00014770 _____ () C:\Users\rado\Downloads\[CzT]Zvonilka_a_pirati_The_Pirate_Fairy_2014_CZ_SK_.torrent
2014-11-12 21:35 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-12 21:35 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-12 21:35 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-12 21:35 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-12 21:35 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-12 21:35 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-12 21:35 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-12 21:35 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-12 21:35 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-12 21:35 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-12 21:35 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-12 21:35 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-12 21:35 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-12 21:35 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-12 21:35 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-11-12 21:35 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-12 21:35 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-11-12 21:35 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-11-12 21:35 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-11-12 21:35 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-11-12 21:35 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-12 21:35 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-12 21:35 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-12 21:35 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-12 21:35 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-12 21:35 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-11-12 21:34 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-12 21:34 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-12 21:34 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-12 21:34 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-12 21:34 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-12 21:34 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-12 21:34 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-12 21:34 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-11-12 21:34 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-12 21:34 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-12 21:34 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-12 21:34 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-12 21:17 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-12 21:17 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-11 15:00 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-11-11 15:00 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-11-11 15:00 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-11-11 15:00 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-11-11 15:00 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-11-11 15:00 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-11-11 15:00 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-11-11 15:00 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-11-11 15:00 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-11-11 15:00 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-11-11 15:00 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-11-11 15:00 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-11-11 15:00 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-11-11 15:00 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-11-11 15:00 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-11-11 15:00 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-11-11 15:00 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-11-11 15:00 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-11-11 15:00 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-11-11 15:00 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-11-11 15:00 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-11-11 15:00 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-11-11 15:00 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-11-11 15:00 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-11-11 15:00 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-11-11 15:00 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-11-11 15:00 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-11-11 15:00 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-11-11 15:00 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-11-11 15:00 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-11-11 15:00 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-11-11 15:00 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-11-11 15:00 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-11-11 15:00 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-11-11 15:00 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-11-11 15:00 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-11-11 15:00 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-11-11 15:00 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-11-11 15:00 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-11-11 15:00 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-11-11 15:00 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-11-11 15:00 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-11-11 15:00 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-11-11 15:00 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-11-11 15:00 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-11-11 15:00 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-11-11 15:00 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-11-11 15:00 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-11-11 15:00 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-11-11 15:00 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-11-11 15:00 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-11-11 15:00 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-11-11 15:00 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-11-11 15:00 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-11-11 15:00 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-11-11 15:00 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-11-11 15:00 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-11-11 15:00 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-11-11 15:00 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-11-11 15:00 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-11-11 15:00 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-11-11 15:00 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-11-11 15:00 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-11-11 15:00 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-11-11 15:00 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-11-11 15:00 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-11-11 15:00 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-11-11 14:59 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-11-11 14:59 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-11-11 14:59 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-11-11 14:59 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-11-11 14:59 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-11-11 14:59 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-11-11 14:59 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-11-11 14:59 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-11-11 14:59 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-11-11 14:59 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-11-11 14:59 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-11-11 14:59 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-11-11 14:59 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-11-11 14:59 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-11-11 14:59 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-11-11 14:59 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-11-11 14:59 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-11-11 14:59 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-11-11 14:59 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-11-11 14:59 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-11-11 14:59 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-11-11 14:59 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-11-11 14:59 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-11-11 14:59 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-11-11 14:59 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-11-11 14:59 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-11-11 14:59 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-11-11 14:59 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-11-11 14:59 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-11-11 14:59 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-11-11 14:59 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-11-11 14:59 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-11-11 14:59 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-11-11 14:59 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-11-11 14:59 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-11-11 14:59 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-11-11 14:59 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-11-11 14:59 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-11-11 14:59 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2014-11-11 14:59 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2014-11-11 14:59 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-11-11 14:59 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-11-11 14:59 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-11-11 14:59 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-11-11 14:59 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-11-11 14:59 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-11-11 14:59 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-11-11 14:59 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-11-11 14:59 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2014-11-11 14:59 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2014-11-11 14:59 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-11-11 14:59 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-11-11 14:59 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2014-11-11 14:59 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-11-11 14:59 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-11-11 14:59 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-11-11 14:59 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-11-11 14:59 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-11-11 14:59 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2014-11-11 14:59 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2014-11-11 14:59 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2014-11-11 14:59 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2014-11-11 14:59 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2014-11-11 14:59 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2014-11-11 14:59 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-11-11 14:59 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-11-11 14:59 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2014-11-11 14:59 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2014-11-11 14:59 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2014-11-11 14:59 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2014-11-11 14:59 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2014-11-11 14:59 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2014-11-11 14:59 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2014-11-11 14:59 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2014-11-11 14:59 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-11-11 14:59 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-11-11 14:59 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-11-11 14:59 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2014-11-11 14:59 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-11-11 14:59 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2014-11-11 14:58 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-11-11 14:58 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-11-11 14:58 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-11-11 14:58 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2014-11-11 14:58 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-11-11 14:58 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2014-11-11 14:58 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-11-11 14:58 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2014-11-11 14:58 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-11-11 14:58 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2014-11-11 14:58 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-11-11 14:58 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2014-11-11 14:58 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-11-11 14:58 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2014-11-11 08:59 - 2014-11-17 18:36 - 00000222 _____ () C:\Users\rado\BullseyeCoverageError.txt

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-11 14:33 - 2014-08-11 09:28 - 00000000 ____D () C:\Users\rado\AppData\Roaming\BitTorrent
2014-12-11 14:18 - 2014-09-01 08:10 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-12-11 12:35 - 2014-10-23 07:00 - 00000000 ____D () C:\Users\rado\AppData\Roaming\Skype
2014-12-11 12:32 - 2009-07-14 05:45 - 00014016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-12-11 12:32 - 2009-07-14 05:45 - 00014016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-12-11 12:27 - 2014-08-10 16:27 - 01071381 _____ () C:\Windows\WindowsUpdate.log
2014-12-11 12:24 - 2014-08-10 20:15 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-12-11 12:24 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-11 09:41 - 2014-09-04 07:23 - 00000000 ____D () C:\Users\rado\AppData\Roaming\DAEMON Tools Lite
2014-12-11 09:41 - 2014-08-11 10:13 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-12-11 09:39 - 2014-08-21 19:23 - 00000000 ____D () C:\Windows\Minidump
2014-12-10 19:54 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\Performance
2014-12-10 18:00 - 2014-08-15 12:07 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-12-10 17:41 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-12-10 17:38 - 2014-08-14 11:45 - 00000000 ____D () C:\Windows\system32\MRT
2014-12-10 17:32 - 2014-08-14 11:44 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-12-10 16:22 - 2014-09-01 08:10 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-12-10 16:21 - 2014-09-01 08:10 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-10 16:21 - 2014-09-01 08:10 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-09 21:03 - 2014-08-11 08:44 - 00000000 ____D () C:\Users\rado\AppData\Roaming\vlc
2014-12-08 20:59 - 2014-09-17 16:32 - 00007625 _____ () C:\Users\rado\AppData\Local\Resmon.ResmonCfg
2014-12-04 07:49 - 2014-08-10 19:36 - 00003828 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1407695793
2014-12-04 07:49 - 2014-08-10 19:36 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-11-28 07:32 - 2009-07-14 05:45 - 00367384 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-27 17:00 - 2014-08-10 17:23 - 00104056 _____ () C:\Users\rado\AppData\Local\GDIPFONTCACHEV1.DAT
2014-11-27 15:17 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-11-18 09:43 - 2014-08-11 11:05 - 00000000 ____D () C:\Users\rado\Documents\My Games
2014-11-18 09:34 - 2014-08-11 10:21 - 00000000 ____D () C:\Users\rado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-11-18 09:33 - 2014-11-10 09:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\1C Company
2014-11-18 09:32 - 2014-11-08 20:10 - 00000000 ____D () C:\Users\rado\AppData\Roaming\eMachineShop
2014-11-17 17:15 - 2014-08-10 23:17 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-11-16 12:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-11-14 00:34 - 2014-08-10 17:12 - 00000000 ____D () C:\Users\rado\AppData\Local\VirtualStore
2014-11-11 08:59 - 2014-08-10 17:12 - 00000000 ____D () C:\Users\rado

Some content of TEMP:
====================
C:\Users\rado\AppData\Local\Temp\sfamcc00001.dll
C:\Users\rado\AppData\Local\Temp\sfextra.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\rado\Desktop" je 128 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================
pouzil som malwarebytes anti-malware ten mi nasielnieco ako troyan v dvoch suboroch a ulozil do karanteny ale niesom si isty ci je vsetko ako ma byt pretoze v klude je pc na min. zatazeni ale ak spustim youtube alebo bittorrent tak zatazenie pc ide na 100% a ide to fakt na nervy prosim poradte co dalej dakujem prikladam aj addition subor

#2 Příspěvek od **altrok** » 12 pro 2014 01:40

Zdravim

Aktualizujte Adobe Flash Player.

Odinstalujte Skype Click to Call.

Vlozte prosim log s nalezy MBAMu.

Vypnete trvale Windows Defender - http://windows.microsoft.com/cs-cz/wind ... =windows-7

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/

ukoncete vsechny programy
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Scan, pote na Clean
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

nogturn · #3 Příspěvek od **nogturn** » 12 pro 2014 09:37

zdravim

takže adobe som aktualizoval uz vcera aj ten skype cal som odinstaloval celu noc mi bezalo cistenie volneho miesta cez ccleaner

neviem ci je to presne to co je treba od toho mban:

<?xml version="1.0" encoding="UTF-16" ?>
<mbam-log>
<header>
<date>2014/12/11 17:47:57 +0100</date>
<logfile>mbam-log-2014-12-11 (17-46-58).xml</logfile>
<isadmin>yes</isadmin>
</header>
<engine>
<version>2.00.4.1028</version>
<malware-database>v2014.12.11.03</malware-database>
<rootkit-database>v2014.12.08.03</rootkit-database>
<license>free</license>
<file-protection>disabled</file-protection>
<web-protection>disabled</web-protection>
<self-protection>disabled</self-protection>
</engine>
<system>
<osversion>Windows 7 Service Pack 1</osversion>
<arch>x64</arch>
<username>rado</username>
<filesys>NTFS</filesys>
</system>
<summary>
<type>threat</type>
<result>completed</result>
<objects>313116</objects>
<time>1711</time>
<processes>0</processes>
<modules>0</modules>
<keys>0</keys>
<values>0</values>
<datas>0</datas>
<folders>0</folders>
<files>0</files>
<sectors>0</sectors>
</summary>
<options>
<memory>enabled</memory>
<startup>enabled</startup>
<filesystem>enabled</filesystem>
<archives>enabled</archives>
<rootkits>disabled</rootkits>
<deeprootkit>disabled</deeprootkit>
<heuristics>enabled</heuristics>
<pup>enabled</pup>
<pum>enabled</pum>
</options>
<items>
</items>
</mbam-log>

<?xml version="1.0" encoding="UTF-8" ?>
<logs>
<record severity="debug" LoggingEventType="1" datetime="2014-12-11T17:47:56.182617+01:00" source="Manual" type="Update" username="SYSTEM" systemname="RADO-PC" fromVersion="2014.12.11.2" last_modified_tag="a5804830-a97a-47c5-8c17-f2c04d6481eb" name="Malware Database" toVersion="2014.12.11.3"></record>
<record severity="debug" scantype="threat" LoggingEventType="6" starttime="2014-12-11T17:47:57+01:00" datetime="2014-12-11T18:16:29.146484+01:00" source="Manual" type="Scan" username="SYSTEM" systemname="RADO-PC" last_modified_tag="10f4d583-3a54-4880-beb2-7b8eb51a7431" duration="1711" malwaredetections="0" nonmalwaredetections="0" scanresult="completed"></record>
<record severity="debug" LoggingEventType="1" datetime="2014-12-11T18:23:10.710937+01:00" source="Manual" type="Update" username="SYSTEM" systemname="RADO-PC" fromVersion="2014.12.11.3" last_modified_tag="5982431a-b6b0-447e-abb5-4b097407d2e2" name="Malware Database" toVersion="2014.12.11.4"></record>
</logs>

tu je ten log od adwclean.
# AdwCleaner v4.105 - Report created 12/12/2014 at 09:33:13
# Updated 08/12/2014 by Xplode
# Database : 2014-12-08.2 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : rado - RADO-PC
# Running from : C:\Users\rado\Desktop\adwcleaner_4.105.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\FileCure
Folder Deleted : C:\ProgramData\simplitec
Folder Deleted : C:\Users\rado\AppData\Roaming\simplitec
Folder Deleted : C:\Users\rado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja

***** [ Scheduled Tasks ] *****

Task Deleted : filecure startup

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKLM\SOFTWARE\ParetoLogic

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17496

-\\ Comodo Dragon v

[C:\Users\rado\AppData\Local\Comodo\Dragon\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.ask.com/web?o=APN10257&doi=2014-09-26&apn_dtid=%5ECMD011%5EYY%5EUS&apn_ptnrs=%5EAGO&q={searchTerms}
[C:\Users\rado\AppData\Local\Comodo\Dragon\User Data\Default\preferences] - Deleted [Extension] : cmaiofennmphjldldcpphcechfnnohja
[C:\Users\rado\AppData\Local\Comodo\Dragon\User Data\Default\preferences] - Deleted [Extension] : aaaalipaokhkccgmgkdglfinfnfhflko

-\\ Opera v26.0.1656.32

[C:\Users\rado\AppData\Local\Comodo\Dragon\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.ask.com/web?o=APN10257&doi=2014-09-26&apn_dtid=%5ECMD011%5EYY%5EUS&apn_ptnrs=%5EAGO&q={searchTerms}
[C:\Users\rado\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : aaipilfmheplbcghignccoiiebekkdhe
[C:\Users\rado\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : elchiiiejkobdbblfejjkbphbddgmljf
[C:\Users\rado\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : ffhfoagmjcnkolneahbpagjcjjaeofbg
[C:\Users\rado\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : hjghiofiijcepdnocbgefbdlbckjfheg
[C:\Users\rado\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : iklgpchfbohgmghgfagediakopecfmbm
[C:\Users\rado\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : kfgaibfbmkjgmimhbbaikfnpkkjkpoan
[C:\Users\rado\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : lmnbobhffedhdhfpcjkjphcfpeeiocdn
[C:\Users\rado\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : kjpifmjicccpbkfjdkehimhgklfkbanh
[C:\Users\rado\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : hoidflomjnnnbiemmkjdjkkialmhbago
[C:\Users\rado\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : ekpibplnnkfdcafdpoekhoffegcajene
[C:\Users\rado\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : ipljmghelflfikejmgkmlmpjmehfjodc
[C:\Users\rado\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : ejddjnilmdncjilbfjgameihlklfpohp
[C:\Users\rado\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : eagomcfjiefffhpaejnlpjccikpipdoe

*************************

AdwCleaner[R0].txt - [3315 octets] - [12/12/2014 09:27:39]
AdwCleaner[S0].txt - [3453 octets] - [12/12/2014 09:33:13]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3513 octets] ##########

#4 Příspěvek od **altrok** » 12 pro 2014 14:21

nogturn píše:pouzil som malwarebytes anti-malware ten mi nasielnieco ako troyan v dvoch suboroch a ulozil do karanteny

pisete o nalezech, ale tento log (z 11.12.2014) nic nenasel... zajima me spis log s nalezy - klidne starsi

Ulozte na plochu zoek.exe http://hijackthis.nl/smeenk/zoek.htm

spustte jako spravce
do velkeho okna zkopirujte script uvedeny nize
kliknete na Run script
po restartu na Vas vyskoci log (pripadne jej najdete v C:\zoek-results.log) - vlozte mi jej do pristi odpovedi
Kód: Vybrat vše
```
autoclean;
emptyclsid;
emptyalltemp;
```

nogturn · #5 Příspěvek od **nogturn** » 12 pro 2014 15:48

starsi log od mlwer nemam ten som pravdepodobne zmazal ked ssom mazal dake subory

Zoek.exe v5.0.0.0 Updated 12-December-2014
Tool run by rado on p 12.12.2014 at 15:28:11,13.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\rado\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

12.12.2014 15:29:56 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\AGEIA Technologies deleted successfully
C:\PROGRA~2\Origin Games deleted successfully
C:\PROGRA~2\COMMON~1\Blizzard Entertainment deleted successfully
C:\PROGRA~3\Oracle deleted successfully
C:\Users\rado\AppData\Local\GHISLER deleted successfully
C:\Users\rado\AppData\Local\My Games deleted successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\Users\rado\AppData\Roaming\MAGIX deleted
C:\Users\rado\AppData\Roaming\GetRightToGo deleted
C:\PROGRA~3\MAGIX deleted
C:\PROGRA~3\Package Cache deleted
C:\windows\SysNative\tasks\FileCure Default deleted
"C:\Users\rado\AppData\Local\LumaEmu" deleted

==== Chromium Look ======================

Comodo Drag&Drop Service - rado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aneodkojaglhnkkdbbdnmmmgimlcaogo
Comodo Web Inspector - rado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdngekjahnmlkinegnhdmmbcfnmbclnn
Comodo Media Downloader - rado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dihmnpngfonlhjmgkflpnibiaaliendo

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\rado\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\rado\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\rado\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\rado\AppData\Local\Comodo\Dragon\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=118 folders=47 30581314 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\rado\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\rado\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on p 12.12.2014 at 15:47:14,23 ======================

#6 Příspěvek od **altrok** » 12 pro 2014 17:16

Dejte novy log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

nogturn · #7 Příspěvek od **nogturn** » 14 pro 2014 08:53

ospravedlnujem sa za omeskanie

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-12-2014
Ran by rado (administrator) on RADO-PC on 14-12-2014 08:49:16
Running from C:\Users\rado\Desktop
Loaded Profile: rado (Available profiles: rado)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.EXE
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(BitTorrent Inc.) C:\Users\rado\AppData\Roaming\BitTorrent\BitTorrent.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(forum.viry.cz) C:\Users\rado\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5581888 2014-02-24] (ESET)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2460488 2014-09-17] (NVIDIA Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-05-09] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKU\S-1-5-21-2746386546-279506314-3770893357-1001\...\Run: [BitTorrent] => C:\Users\rado\AppData\Roaming\BitTorrent\BitTorrent.exe [1388888 2014-11-25] (BitTorrent Inc.)
HKU\S-1-5-21-2746386546-279506314-3770893357-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2746386546-279506314-3770893357-1001\...\RunOnce: [Adobe Speed Launcher] => 1418542948
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-09-10] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2746386546-279506314-3770893357-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll (Microsoft Corporation.)
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2746386546-279506314-3770893357-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\rado\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-08-10]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1343408 2014-02-24] (ESET)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-17] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19439944 2014-09-17] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1900400 2014-12-04] (Electronic Arts)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-09-27] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-09-04] (Duplex Secure Ltd.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-08-11] ()
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Corporation)
U3 a6mmjge2; C:\Windows\System32\Drivers\a6mmjge2.sys [0 ] (Advanced Micro Devices)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-14 08:49 - 2014-12-14 08:49 - 00009613 _____ () C:\Users\rado\Desktop\FRST.txt
2014-12-14 08:48 - 2014-12-14 08:48 - 00112640 _____ (forum.viry.cz) C:\Users\rado\Desktop\FRSTLauncher.exe
2014-12-14 08:43 - 2014-12-14 08:43 - 00000000 ____D () C:\Users\rado\Desktop\FRST-OlderVersion
2014-12-13 19:08 - 2014-12-13 19:08 - 00628293 _____ () C:\Users\rado\Downloads\MASS.EFFECT.3.V1.5.5427.124.PLUS13TRN.FLING (1).ZIP
2014-12-13 15:18 - 2014-12-13 15:18 - 00000000 ____D () C:\Users\rado\Documents\FLiNGTrainer
2014-12-13 15:17 - 2014-12-13 15:17 - 00628293 _____ () C:\Users\rado\Downloads\MASS.EFFECT.3.V1.5.5427.124.PLUS13TRN.FLING.ZIP
2014-12-13 10:36 - 2014-12-13 10:36 - 00001053 _____ () C:\Users\Public\Desktop\Mass Effect 3.lnk
2014-12-13 10:36 - 2014-12-13 10:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mr DJ
2014-12-13 09:38 - 2014-12-13 09:38 - 04134452 _____ ( ) C:\Users\rado\Downloads\ME3Cz_78.exe
2014-12-13 09:35 - 2014-12-13 09:36 - 03517282 _____ () C:\Users\rado\Downloads\mass_effect3_cz.zip
2014-12-13 09:27 - 2014-12-13 09:28 - 01489922 _____ () C:\Users\rado\Downloads\Coalesced.bin
2014-12-13 09:08 - 2014-12-13 09:08 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-12-13 08:59 - 2014-12-13 08:59 - 00000000 ____D () C:\Users\rado\AppData\Local\GHISLER
2014-12-12 15:55 - 2014-12-12 15:55 - 00002996 _____ () C:\Windows\System32\Tasks\{0E8DD7D5-332D-4920-B613-A6254723D6D4}
2014-12-12 15:45 - 2014-12-12 15:28 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-12-12 15:29 - 2014-12-12 15:47 - 00005082 _____ () C:\zoek-results.log
2014-12-12 15:28 - 2014-12-12 15:43 - 00000000 ____D () C:\zoek_backup
2014-12-12 15:27 - 2014-12-12 15:27 - 01295360 _____ () C:\Users\rado\Desktop\zoek.exe
2014-12-12 09:36 - 2014-12-12 09:36 - 02166272 _____ () C:\Users\rado\Downloads\adwcleaner_4.105.exe
2014-12-12 09:33 - 2014-12-12 15:46 - 00000648 _____ () C:\Windows\PFRO.log
2014-12-12 09:27 - 2014-12-12 09:33 - 00000000 ____D () C:\AdwCleaner
2014-12-12 09:16 - 2014-12-12 09:16 - 02166272 _____ () C:\Users\rado\Desktop\adwcleaner_4.105.exe
2014-12-11 19:08 - 2014-12-11 19:08 - 00000000 __SHD () C:\Users\rado\AppData\Local\EmieBrowserModeList
2014-12-11 14:41 - 2014-12-14 08:49 - 00000000 ____D () C:\FRST
2014-12-11 14:39 - 2014-12-14 08:43 - 02119168 _____ (Farbar) C:\Users\rado\Desktop\FRST64.exe
2014-12-11 13:14 - 2014-12-11 13:14 - 00015931 _____ () C:\Users\rado\Downloads\[CzT]Mikulasovy_patalie_na_prazdninach_Les_Vacances_du_Petit_Nicolas_2014_CZ_.torrent
2014-12-11 12:41 - 2014-12-11 12:41 - 00001175 _____ () C:\Users\rado\Desktop\AIDA64 Extreme.lnk
2014-12-11 12:41 - 2014-12-11 12:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire
2014-12-11 12:41 - 2014-12-11 12:41 - 00000000 ____D () C:\Program Files (x86)\FinalWire
2014-12-11 12:24 - 2014-12-14 08:41 - 00001512 _____ () C:\Windows\setupact.log
2014-12-11 12:24 - 2014-12-11 12:24 - 00000000 _____ () C:\Windows\setuperr.log
2014-12-11 09:53 - 2014-12-13 19:51 - 00000000 ____D () C:\Program Files (x86)\SpeedFan
2014-12-11 09:53 - 2014-12-11 09:53 - 00001007 _____ () C:\Users\rado\Desktop\SpeedFan.lnk
2014-12-11 09:53 - 2014-12-11 09:53 - 00000045 _____ () C:\Windows\SysWOW64\initdebug.nfo
2014-12-11 09:53 - 2014-12-11 09:53 - 00000000 ____D () C:\Users\rado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2014-12-11 09:53 - 2014-12-11 09:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan
2014-12-11 09:37 - 2014-12-11 09:40 - 00000000 ____D () C:\Program Files (x86)\CPU Thermometer
2014-12-11 09:37 - 2014-12-11 09:37 - 00001086 _____ () C:\Users\Public\Desktop\CPU Thermometer.lnk
2014-12-11 09:37 - 2014-12-11 09:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPU Thermometer
2014-12-10 19:10 - 2014-12-13 18:51 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-12-10 19:08 - 2014-12-10 19:13 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-12-10 19:08 - 2014-12-10 19:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-12-10 19:08 - 2014-12-10 19:13 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-12-10 19:08 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-12-10 19:08 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-12-10 19:08 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-12-10 17:29 - 2014-10-18 03:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-12-10 17:29 - 2014-10-18 02:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-12-10 17:26 - 2014-11-27 02:43 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-10 17:26 - 2014-11-27 02:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-10 17:26 - 2014-11-22 04:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-10 17:26 - 2014-11-22 04:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-10 17:26 - 2014-11-22 04:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-12-10 17:26 - 2014-11-22 03:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-10 17:26 - 2014-11-22 03:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-12-10 17:26 - 2014-11-22 03:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-10 17:26 - 2014-11-22 03:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-12-10 17:26 - 2014-11-22 03:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-12-10 17:26 - 2014-11-22 03:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-10 17:26 - 2014-11-22 03:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-12-10 17:26 - 2014-11-22 03:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-12-10 17:26 - 2014-11-22 03:35 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-12-10 17:26 - 2014-11-22 03:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-12-10 17:26 - 2014-11-22 03:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-10 17:26 - 2014-11-22 03:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-12-10 17:26 - 2014-11-22 03:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-10 17:26 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-10 17:26 - 2014-11-22 03:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-10 17:26 - 2014-11-22 03:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-12-10 17:26 - 2014-11-22 03:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-10 17:26 - 2014-11-22 03:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-12-10 17:26 - 2014-11-22 03:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-10 17:26 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-12-10 17:26 - 2014-11-22 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-12-10 17:26 - 2014-11-22 03:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-12-10 17:26 - 2014-11-22 03:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-10 17:26 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-10 17:26 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-10 17:26 - 2014-11-22 02:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-12-10 17:26 - 2014-11-22 02:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-12-10 17:26 - 2014-11-22 02:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-12-10 17:26 - 2014-11-22 02:55 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-12-10 17:26 - 2014-11-22 02:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-12-10 17:26 - 2014-11-22 02:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-10 17:26 - 2014-11-22 02:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-10 17:26 - 2014-11-22 02:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-12-10 17:26 - 2014-11-22 02:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-10 17:26 - 2014-11-22 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-12-10 17:26 - 2014-11-22 02:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-10 17:26 - 2014-11-22 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-10 17:26 - 2014-11-22 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-12-10 17:26 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-10 17:26 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-10 17:26 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-10 17:26 - 2014-11-22 02:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-10 17:26 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-10 17:26 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-10 17:26 - 2014-11-22 02:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-12-10 17:26 - 2014-11-22 02:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-10 17:26 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-10 17:26 - 2014-11-22 02:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-12-10 17:26 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-10 17:26 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-10 17:26 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-12-10 17:20 - 2014-11-11 04:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-10 17:20 - 2014-11-11 03:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-10 17:20 - 2014-11-11 02:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-12-10 17:20 - 2014-10-30 03:04 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-12-10 17:20 - 2014-10-30 03:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2014-12-10 17:20 - 2014-10-30 02:46 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-12-10 17:20 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2014-12-10 17:20 - 2014-10-03 03:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-12-10 17:20 - 2014-10-03 03:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-10 17:20 - 2014-10-03 03:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-12-10 17:20 - 2014-10-03 03:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2014-12-10 17:20 - 2014-10-03 03:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2014-12-10 17:20 - 2014-10-03 02:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-12-10 17:20 - 2014-10-03 02:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2014-12-10 17:20 - 2014-10-03 02:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2014-12-10 17:20 - 2014-10-03 02:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2014-12-10 17:20 - 2014-10-03 02:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2014-12-10 17:18 - 2014-11-08 04:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-12-10 17:18 - 2014-11-08 03:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-12-10 17:17 - 2014-10-14 03:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-12-10 17:17 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-12-09 15:02 - 2014-12-09 15:02 - 00015940 _____ () C:\Users\rado\Downloads\[CzT]The_Hunters_2013_SK_ (2).torrent
2014-12-09 15:02 - 2014-12-09 15:02 - 00015940 _____ () C:\Users\rado\Downloads\[CzT]The_Hunters_2013_SK_ (1).torrent
2014-12-09 15:02 - 2014-12-09 15:02 - 00015939 _____ () C:\Users\rado\Downloads\[CzT]The_Hunters_2013_SK_.torrent
2014-12-09 14:52 - 2014-12-09 14:52 - 00013325 _____ () C:\Users\rado\Downloads\[CzT]Utek_z_planety_Zeme_Escape_from_Planet_Earth_2013_CZ_SK_.torrent
2014-12-09 13:39 - 2014-12-09 13:39 - 00013497 _____ () C:\Users\rado\Downloads\[CzT]Mass_Effect_3_Citadel_DLC_2013_.torrent
2014-12-07 18:33 - 2014-12-07 18:33 - 00064751 _____ () C:\Users\rado\Downloads\[CzT]Mass_Effect_3_Complete_Pack_CZ_ (1).torrent
2014-12-06 11:53 - 2010-06-16 18:03 - 00430592 _____ () C:\Users\rado\Desktop\bws-me202.exe
2014-12-04 10:19 - 2014-12-04 10:19 - 00000845 _____ () C:\Users\Public\Desktop\Mass Effect 2.lnk
2014-12-04 09:38 - 2014-12-04 18:32 - 00000000 ____D () C:\Users\rado\AppData\Roaming\Origin
2014-12-04 09:37 - 2014-12-04 09:43 - 00000000 ____D () C:\Users\rado\AppData\Local\Origin
2014-12-04 09:34 - 2014-12-13 09:08 - 00000000 ____D () C:\ProgramData\Origin
2014-12-04 09:34 - 2014-12-04 09:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2014-12-04 09:34 - 2014-12-04 09:34 - 00000979 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-12-04 09:34 - 2014-12-04 09:34 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-12-04 09:33 - 2014-12-13 09:07 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-11-30 14:05 - 2014-11-30 14:05 - 00001301 _____ () C:\Users\rado\Desktop\MassEffect – zástupce.lnk
2014-11-30 11:22 - 2014-11-30 11:22 - 00002282 _____ () C:\Users\rado\Desktop\Pepakura Viewer 3.lnk
2014-11-30 11:20 - 2014-11-30 11:22 - 00000000 ____D () C:\Users\rado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pepakura Designer 3
2014-11-30 11:20 - 2014-11-30 11:20 - 00002253 _____ () C:\Users\rado\Desktop\Pepakura Designer 3.lnk
2014-11-30 11:20 - 2014-11-30 11:20 - 00000000 ____D () C:\Program Files (x86)\tamasoftware
2014-11-29 19:56 - 2014-11-29 19:56 - 00000000 ____D () C:\Users\rado\AppData\Roaming\FastStone
2014-11-29 19:55 - 2014-11-29 19:55 - 00001105 _____ () C:\Users\Public\Desktop\FastStone Image Viewer.lnk
2014-11-29 19:55 - 2014-11-29 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer
2014-11-29 19:55 - 2014-11-29 19:55 - 00000000 ____D () C:\Program Files (x86)\FastStone Image Viewer
2014-11-27 18:30 - 2014-12-08 15:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Repacky od tomi2k9
2014-11-27 09:29 - 2014-11-27 09:29 - 00059287 _____ () C:\Users\rado\Downloads\[CzT]Mass_Effect_2_CZ_Complete_Edition.torrent
2014-11-27 09:07 - 2014-11-27 09:07 - 00124828 _____ () C:\Users\rado\Downloads\[CzT]Mass_Effect_1_2_3_DLC_CZ_.torrent
2014-11-26 22:58 - 2014-11-26 22:58 - 00015960 _____ () C:\Users\rado\Downloads\[CzT]Mass_Effect_2_Full_DLC_Pack_2011_.torrent
2014-11-26 22:02 - 2014-11-26 22:52 - 00005607 _____ () C:\Users\rado\Documents\Mass Effect 2 1.01.log
2014-11-26 22:01 - 2014-11-26 22:01 - 00001214 _____ () C:\Users\rado\Documents\Mass Effect 2 - DLC_CON_Pack02.log
2014-11-26 22:00 - 2014-11-27 16:35 - 00003637 _____ () C:\Users\rado\Documents\Mass Effect 2 - DLC_EXP_Part02.log
2014-11-26 21:58 - 2014-11-27 16:33 - 00006058 _____ () C:\Users\rado\Documents\Mass Effect 2 - DLC_EXP_Part01.log
2014-11-26 18:36 - 2014-11-26 18:36 - 00015260 _____ () C:\Users\rado\Downloads\[CzT]Predestination_2014_CZ_.torrent
2014-11-26 18:33 - 2014-11-26 18:33 - 00016682 _____ () C:\Users\rado\Downloads\[CzT]Hercules_2014_CZ_.torrent
2014-11-26 17:57 - 2014-11-26 17:57 - 00064751 _____ () C:\Users\rado\Downloads\[CzT]Mass_Effect_3_Complete_Pack_CZ_.torrent
2014-11-26 14:43 - 2014-11-26 14:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mass Effect 2
2014-11-26 10:54 - 2014-11-26 10:53 - 00306688 _____ () C:\Windows\SysWOW64\unarc.dll
2014-11-26 10:54 - 2014-11-26 10:53 - 00306688 _____ () C:\Windows\system32\unarc.dll
2014-11-26 09:17 - 2014-11-26 09:13 - 00456704 _____ (FragSoft) C:\Windows\system32\ISDone.dll
2014-11-26 09:16 - 2014-11-26 09:13 - 00456704 _____ (FragSoft) C:\Windows\SysWOW64\ISDone.dll
2014-11-26 08:59 - 2014-11-26 08:59 - 00052813 _____ () C:\Users\rado\Downloads\[CzT]Mass_Effect_2_CZ_3_DVD_vcetne_DLC_.torrent
2014-11-26 08:56 - 2014-11-26 08:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-11-26 08:56 - 2014-11-26 08:56 - 00000000 ____D () C:\Program Files (x86)\7-Zip
2014-11-25 09:00 - 2014-11-26 13:32 - 00027061 _____ () C:\Users\rado\Downloads\[CzT]Mass_Effect_2_Veskere_DLC.torrent
2014-11-24 15:32 - 2014-12-04 13:28 - 00011022 _____ () C:\Users\rado\Documents\Mass Effect 2 1.02.log
2014-11-20 10:14 - 2014-11-27 17:33 - 00008960 _____ () C:\Users\rado\Documents\Uninstall Mass Effect 2.log
2014-11-19 22:59 - 2014-11-20 09:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mass Effect
2014-11-19 22:03 - 2014-11-11 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-19 22:03 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-19 22:03 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-19 22:03 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-19 19:18 - 2014-11-19 19:41 - 00000048 _____ () C:\RB.rdat
2014-11-19 19:18 - 2014-11-19 19:41 - 00000048 _____ () C:\License_Time.rdat
2014-11-19 19:18 - 2014-11-19 19:18 - 00002714 _____ () C:\Windows\System32\Tasks\ParetoLogic Update Version3 Startup Task
2014-11-19 18:48 - 2014-11-19 18:48 - 00000000 ____D () C:\Windows\C5C1C0F0D62F4DBF81D4D7EF397C228B.TMP
2014-11-19 18:24 - 2014-11-27 15:19 - 00057245 _____ () C:\Users\rado\Documents\Install Mass Effect 2.log
2014-11-18 10:38 - 2014-12-07 11:40 - 00000000 ____D () C:\Users\rado\Documents\BioWare
2014-11-18 08:42 - 2014-11-18 08:42 - 00057635 _____ () C:\Users\rado\Downloads\[CzT]StarCraft_II_Heart_of_the_Swarm_Mass_Recall_Mod_2013_.torrent
2014-11-17 20:21 - 2014-11-18 09:34 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2014-11-17 19:19 - 2014-11-17 19:54 - 00000347 _____ () C:\Users\rado\Desktop\pc zostava.txt
2014-11-17 16:47 - 2014-11-17 16:47 - 00020440 _____ () C:\Users\rado\Downloads\[CzT]StarCraft_2_StarCraft_II_Wings_of_Liberty_CZ_v1_3_6_.torrent
2014-11-15 19:41 - 2014-11-15 19:41 - 00014770 _____ () C:\Users\rado\Downloads\[CzT]Zvonilka_a_pirati_The_Pirate_Fairy_2014_CZ_SK_.torrent

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-14 08:47 - 2014-08-11 09:28 - 00000000 ____D () C:\Users\rado\AppData\Roaming\BitTorrent
2014-12-14 08:44 - 2014-08-10 16:27 - 01156013 _____ () C:\Windows\WindowsUpdate.log
2014-12-14 08:41 - 2014-08-10 20:15 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-12-14 08:41 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-14 01:03 - 2009-07-14 05:45 - 00014016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-12-14 01:03 - 2009-07-14 05:45 - 00014016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-12-14 00:18 - 2014-09-01 08:10 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-12-13 15:07 - 2014-08-11 08:44 - 00000000 ____D () C:\Users\rado\AppData\Roaming\vlc
2014-12-13 09:49 - 2014-11-11 08:59 - 00000222 _____ () C:\Users\rado\BullseyeCoverageError.txt
2014-12-13 09:38 - 2014-09-07 19:35 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-12-13 09:05 - 2014-09-04 07:23 - 00000000 ____D () C:\Users\rado\AppData\Roaming\DAEMON Tools Lite
2014-12-11 20:33 - 2014-08-10 17:12 - 00000000 ____D () C:\Users\rado
2014-12-11 20:22 - 2014-10-23 07:00 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-12-11 20:15 - 2014-10-23 07:00 - 00000000 ____D () C:\Users\rado\AppData\Roaming\Skype
2014-12-11 19:08 - 2014-09-10 10:07 - 00000000 ____D () C:\Users\rado\AppData\Local\Adobe
2014-12-11 19:06 - 2014-09-01 08:10 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-12-11 19:05 - 2014-09-01 08:10 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-11 19:05 - 2014-09-01 08:10 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-11 16:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-12-11 09:41 - 2014-08-11 10:13 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-12-11 09:39 - 2014-08-21 19:23 - 00000000 ____D () C:\Windows\Minidump
2014-12-10 20:11 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\Performance
2014-12-10 18:00 - 2014-08-15 12:07 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-12-10 17:41 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-12-10 17:38 - 2014-08-14 11:45 - 00000000 ____D () C:\Windows\system32\MRT
2014-12-10 17:32 - 2014-08-14 11:44 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-12-08 20:59 - 2014-09-17 16:32 - 00007625 _____ () C:\Users\rado\AppData\Local\Resmon.ResmonCfg
2014-12-04 07:49 - 2014-08-10 19:36 - 00003828 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1407695793
2014-12-04 07:49 - 2014-08-10 19:36 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-11-28 07:32 - 2009-07-14 05:45 - 00367384 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-27 17:00 - 2014-08-10 17:23 - 00104056 _____ () C:\Users\rado\AppData\Local\GDIPFONTCACHEV1.DAT
2014-11-27 15:17 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-11-18 09:43 - 2014-08-11 11:05 - 00000000 ____D () C:\Users\rado\Documents\My Games
2014-11-18 09:34 - 2014-08-11 10:21 - 00000000 ____D () C:\Users\rado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-11-18 09:33 - 2014-11-10 09:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\1C Company
2014-11-18 09:32 - 2014-11-08 20:10 - 00000000 ____D () C:\Users\rado\AppData\Roaming\eMachineShop
2014-11-17 17:15 - 2014-08-10 23:17 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-11-14 00:34 - 2014-08-10 17:12 - 00000000 ____D () C:\Users\rado\AppData\Local\VirtualStore

Some content of TEMP:
====================
C:\Users\rado\AppData\Local\Temp\BingBarSetup-Partner.exe
C:\Users\rado\AppData\Local\Temp\BullseyeCoverage-2-x86.dll
C:\Users\rado\AppData\Local\Temp\sfamcc00001.dll
C:\Users\rado\AppData\Local\Temp\sfareca00001.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-12-07 17:22

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:57.01 GB) (Free:23.52 GB) NTFS
Drive d: (data) (Fixed) (Total:175.78 GB) (Free:24.55 GB) NTFS
Drive j: (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive o: (Nový zväzok) (Fixed) (Total:19.08 GB) (Free:16.94 GB) NTFS

Available physical RAM: 1142 MB
Total physical RAM: 2046.49 MB
Percentage of memory in use: 44%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 19.1 GB) (Disk ID: 503BF151)
Partition 1: (Not Active) - (Size=19.1 GB) - (Type=07 NTFS)
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: CA10C8BB)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=57 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=175.8 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\rado\Desktop" je 133 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#8 Příspěvek od **altrok** » 14 pro 2014 11:49

Nic se nedeje, taky tu nesedim 24/7

Odinstalujte Bing Bar.

Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
znovu spustte FRST a kliknete na Fix

po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi

Kód: Vybrat vše

Start
CloseProcesses:
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKU\S-1-5-21-2746386546-279506314-3770893357-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2746386546-279506314-3770893357-1001\...\RunOnce: [Adobe Speed Launcher] => 1418542948

2014-12-12 15:45 - 2014-12-12 15:28 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-12-12 15:29 - 2014-12-12 15:47 - 00005082 _____ () C:\zoek-results.log
2014-12-12 15:28 - 2014-12-12 15:43 - 00000000 ____D () C:\zoek_backup
2014-12-12 15:27 - 2014-12-12 15:27 - 01295360 _____ () C:\Users\rado\Desktop\zoek.exe
2014-12-12 09:36 - 2014-12-12 09:36 - 02166272 _____ () C:\Users\rado\Downloads\adwcleaner_4.105.exe
2014-12-12 09:27 - 2014-12-12 09:33 - 00000000 ____D () C:\AdwCleaner
2014-12-12 09:16 - 2014-12-12 09:16 - 02166272 _____ () C:\Users\rado\Desktop\adwcleaner_4.105.exe
2014-12-14 08:43 - 2014-12-14 08:43 - 00000000 ____D () C:\Users\rado\Desktop\FRST-OlderVersion
2014-11-19 18:48 - 2014-11-19 18:48 - 00000000 ____D () C:\Windows\C5C1C0F0D62F4DBF81D4D7EF397C228B.TMP

Task: {FA13C25D-EDC6-4709-AA5A-72DA1CF56DE9} - \FileCure Default No Task File <==== ATTENTION
Hosts:
EmptyTemp:
End

nogturn · #9 Příspěvek od **nogturn** » 14 pro 2014 16:52

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 14-12-2014
Ran by rado at 2014-12-14 16:49:06 Run:1
Running from C:\Users\rado\Desktop
Loaded Profile: rado (Available profiles: rado)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKU\S-1-5-21-2746386546-279506314-3770893357-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2746386546-279506314-3770893357-1001\...\RunOnce: [Adobe Speed Launcher] => 1418542948

2014-12-12 15:45 - 2014-12-12 15:28 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-12-12 15:29 - 2014-12-12 15:47 - 00005082 _____ () C:\zoek-results.log
2014-12-12 15:28 - 2014-12-12 15:43 - 00000000 ____D () C:\zoek_backup
2014-12-12 15:27 - 2014-12-12 15:27 - 01295360 _____ () C:\Users\rado\Desktop\zoek.exe
2014-12-12 09:36 - 2014-12-12 09:36 - 02166272 _____ () C:\Users\rado\Downloads\adwcleaner_4.105.exe
2014-12-12 09:27 - 2014-12-12 09:33 - 00000000 ____D () C:\AdwCleaner
2014-12-12 09:16 - 2014-12-12 09:16 - 02166272 _____ () C:\Users\rado\Desktop\adwcleaner_4.105.exe
2014-12-14 08:43 - 2014-12-14 08:43 - 00000000 ____D () C:\Users\rado\Desktop\FRST-OlderVersion
2014-11-19 18:48 - 2014-11-19 18:48 - 00000000 ____D () C:\Windows\C5C1C0F0D62F4DBF81D4D7EF397C228B.TMP

Task: {FA13C25D-EDC6-4709-AA5A-72DA1CF56DE9} - \FileCure Default No Task File <==== ATTENTION
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value deleted successfully.
HKU\S-1-5-21-2746386546-279506314-3770893357-1001\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value deleted successfully.
HKU\S-1-5-21-2746386546-279506314-3770893357-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Adobe Speed Launcher => value deleted successfully.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\rado\Desktop\zoek.exe => Moved successfully.
C:\Users\rado\Downloads\adwcleaner_4.105.exe => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\rado\Desktop\adwcleaner_4.105.exe => Moved successfully.
C:\Users\rado\Desktop\FRST-OlderVersion => Moved successfully.
C:\Windows\C5C1C0F0D62F4DBF81D4D7EF397C228B.TMP => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FA13C25D-EDC6-4709-AA5A-72DA1CF56DE9}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FA13C25D-EDC6-4709-AA5A-72DA1CF56DE9}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\FileCure Default" => Key deleted successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 49.4 MB temporary data.

The system needed a reboot.

==== End of Fixlog ====

#10 Příspěvek od **altrok** » 14 pro 2014 16:59

Takze jeste uklidime.

Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
Oznacte jen moznost "Remove disinfection tools"
kliknete na Run

A pokud nejsou dotazy ci jine problemy, je to ode mne vse.

nogturn · #11 Příspěvek od **nogturn** » 14 pro 2014 23:30

moc krat dakujem za pomoc

#12 Příspěvek od **altrok** » 15 pro 2014 00:52

Nemate zac, rad jsem pomohl

Preju pohodovy vstup do pracovniho tydne

VIRY.CZ

prosím o kontrolu nie som si isty

prosím o kontrolu nie som si isty

Re: prosím o kontrolu nie som si isty

Re: prosím o kontrolu nie som si isty

Re: prosím o kontrolu nie som si isty

Re: prosím o kontrolu nie som si isty

Re: prosím o kontrolu nie som si isty

Re: prosím o kontrolu nie som si isty

Re: prosím o kontrolu nie som si isty

Re: prosím o kontrolu nie som si isty

Re: prosím o kontrolu nie som si isty

Re: prosím o kontrolu nie som si isty

Re: prosím o kontrolu nie som si isty