Virus v chrome.exe (avast)

[jhalamka]

Dobrý den, avast mi neustále chytá pokusy viru v procesu C:\Program Files (x86)\Google\Chrome\Application\chrome.exe dostat se na různé webové stránky, samotný virus ale neodstraní. Spybot ani další anti spyware není úspěšný.

Prosím o pomoc.

Díky,
Jirka


Logfile of random's system information tool 1.10 (written by random/random)
Run by Jerzi at 2015-03-27 22:40:16
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 1 GB (4%) free of 34 GB
Total RAM: 8093 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:40:25, on 27.3.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Windows\SysWOW64\HsMgr.exe
C:\Program Files (x86)\SpeedFan\speedfan.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
h:\Program Files (x86)\Steam\steam.exe
h:\Program Files (x86)\Steam\bin\steamwebhelper.exe
h:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files\ASUS Xonar DX Audio\Customapp\AsusAudioCenter.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Jerzi.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=s ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=s ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "H:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [update] wscript.exe //B "C:\Users\Jerzi\AppData\Local\Temp\update.js"
O4 - HKLM\..\Run: [SDTray] "h:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\RunOnce: [20150107] C:\Program Files\AVAST Software\Avast\setup\emupdate\cb753b22-45bb-4756-ab37-09fbb34569e5.exe /check
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Jerzi\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [ACEStream] C:\Users\Jerzi\AppData\Roaming\ACEStream\engine\ace_engine.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_086C67A8CD29115B982FA57FEDB91B91] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [update] wscript.exe //B "C:\Users\Jerzi\AppData\Local\Temp\update.js"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: SpeedFan.lnk = C:\Program Files (x86)\SpeedFan\speedfan.exe
O4 - Startup: update.js
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
O15 - Trusted IP range: http://192.168.0.1
O15 - ESC Trusted IP range: http://192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{29F5F7CF-27FB-4752-8BD5-06F842A66A47}: NameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{29F5F7CF-27FB-4752-8BD5-06F842A66A47}: NameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{29F5F7CF-27FB-4752-8BD5-06F842A66A47}: NameServer = 192.168.1.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: ACP User Service (amdacpusrsvc) - Advanced Micro Devices - C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: DTSAudioSvc - DTS, Inc - C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - CyberLink - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ScsiAccess - Unknown owner - h:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - h:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - h:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - h:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TabletServicePen - Unknown owner - C:\Windows\system32\Pen_Tablet.exe (file missing)
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WTouch Service (WTouchService) - Wacom Technology, Corp. - C:\Program Files\WTouch\WTouchService.exe

--
End of file - 11828 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe"
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\WTouch\WTouchService.exe"
atieclxx
/QuitInfo:000000000000040C;0000000000000424; /AddRef;
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
/QuitInfo:0000000000000474;0000000000000478; /AddRef;
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe"
"C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe"
"h:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe"
"h:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
"C:\Windows\SysWOW64\HsMgr.exe" Envoke
"C:\Windows\system\HsMgr64.exe" Envoke
"C:\Program Files\Logitech\Gaming Software\LWEMon.exe" /noui
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe"
"C:\Program Files (x86)\SpeedFan\speedfan.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM" PriorityLow
"h:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\Pen_Tablet.exe
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"h:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --channel="2988.0.1825038159\1220874562" --no-sandbox --lang=en-US --log-file="C:\Users\Jerzi\AppData\Roaming\AVAST Software\Avast\log\avastium.log" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36 Avastium (10.2.2214)" --proxy-auto-detect --disable-gpu --disable-software-rasterizer --no-sandbox --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,17,38 --gpu-vendor-id=0x1002 --gpu-device-id=0x665c --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=14.501.1003.0 --lang=en-US --log-file="C:\Users\Jerzi\AppData\Roaming\AVAST Software\Avast\log\avastium.log" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36 Avastium (10.2.2214)" --proxy-auto-detect --disable-gpu --disable-software-rasterizer --no-sandbox /prefetch:822062411
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
ngservice.exe pipeserver
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-d7869c9b-6be6-492d-8d54-b2c8c5765c40 -SystemEventPortName:HostProcess-f2826f4f-424a-4936-8fe9-8247011d362f -IoCancelEventPortName:HostProcess-f283ca8b-be22-4c88-888f-131a95cabb71 -NonStateChangingEventPortName:HostProcess-53197d52-d531-471b-93a8-72492882d933 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:17d781a5-fc0c-4638-ae58-5fe3a5ecc60f -DeviceGroupId:WpdFsGroup
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k SDRSVC
"taskhost.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
taskeng.exe {B15B7560-5954-421C-B4BC-CA3C079E114E}
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
"C:\Program Files\WTouch\WTouchUser.exe"
"h:\Program Files (x86)\Steam\steam.exe" "steam://rungameid/244210"
"h:\Program Files (x86)\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "C:\Users\Jerzi\AppData\Local\Steam\htmlcache" -steampid 772 -buildid 1427176184 -steamid "0" --blacklist-accelerated-compositing --process-per-tab --disable-accelerated-video-decode --enable-direct-write
"h:\Program Files (x86)\Steam\bin\steamwebhelper.exe" --type=renderer --disable-accelerated-video-decode --disable-delegated-renderer --disable-gpu-compositing --disable-threaded-compositing --enable-pinch --enable-software-compositing --no-sandbox --enable-direct-write --lang=en-US --lang=en-US --product-version="Valve Steam Client" --disable-accelerated-compositing --disable-gpu-compositing --channel="6616.0.1752466658\1394288094" /prefetch:673131151
"C:\Program Files\ASUS Xonar DX Audio\Customapp\AsusAudioCenter.exe"
C:\Windows\system32\AUDIODG.EXE 0x8dc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="6420.0.1616478684\1864224449" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,40 --gpu-vendor-id=0x1002 --gpu-device-id=0x665c --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=14.501.1003.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Freud/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/GoogleNow/Enable/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DevHUPDecayWithHQPRelevanceScoring_Control/PasswordGeneration/Disabled/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/SRTPromptFieldTrial/On/SafeBrowsingIncidentReportingService/Enabled/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/heuristics-mobile/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=6420 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6420.2.49316736\1220825925" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Freud/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/GoogleNow/Enable/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DevHUPDecayWithHQPRelevanceScoring_Control/PasswordGeneration/Disabled/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/SRTPromptFieldTrial/On/SafeBrowsingIncidentReportingService/Enabled/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/heuristics-mobile/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=6420 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6420.3.1680777978\1190684256" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Freud/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/GoogleNow/Enable/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DevHUPDecayWithHQPRelevanceScoring_Control/PasswordGeneration/Disabled/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/SRTPromptFieldTrial/On/SafeBrowsingIncidentReportingService/Enabled/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/heuristics-mobile/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=6420 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6420.4.2128145263\1144187729" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Freud/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/GoogleNow/Enable/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DevHUPDecayWithHQPRelevanceScoring_Control/PasswordGeneration/Disabled/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/SRTPromptFieldTrial/On/SafeBrowsingIncidentReportingService/Enabled/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/heuristics-mobile/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=6420 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6420.5.876637434\369560508" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Freud/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/GoogleNow/Enable/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DevHUPDecayWithHQPRelevanceScoring_Control/PasswordGeneration/Disabled/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/SRTPromptFieldTrial/On/SafeBrowsingIncidentReportingService/Enabled/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/heuristics-mobile/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=6420 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6420.6.617768064\1704431000" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Freud/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/GoogleNow/Enable/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DevHUPDecayWithHQPRelevanceScoring_Control/PasswordGeneration/Disabled/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/SRTPromptFieldTrial/On/SafeBrowsingIncidentReportingService/Enabled/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/heuristics-mobile/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=6420 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6420.8.2121253914\297028751" /prefetch:673131151
taskmgr.exe /3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Freud/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/GoogleNow/Enable/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DevHUPDecayWithHQPRelevanceScoring_Control/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/SRTPromptFieldTrial/On/SafeBrowsingIncidentReportingService/Enabled/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/heuristics-mobile/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=6420 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6420.23.1544040442\1715671353" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Freud/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/GoogleNow/Enable/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DevHUPDecayWithHQPRelevanceScoring_Control/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/SRTPromptFieldTrial/On/SafeBrowsingIncidentReportingService/Enabled/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/heuristics-mobile/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=6420 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6420.24.327868828\488986943" /prefetch:673131151
"H:\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-14 81024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-03-22 662672]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-14 69760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-04-14 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-03-22 565304]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Cmaudio8788"=C:\Windows\syswow64\RunDll32.exe [2009-07-14 44544]
"Cmaudio8788GX"=C:\Windows\syswow64\HsMgr.exe [2008-07-11 200704]
"Cmaudio8788GX64"=C:\Windows\system\HsMgr64.exe [2008-07-11 282112]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-03-21 472992]
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2010-06-14 190536]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeBridge"= []
"uTorrent"=C:\Users\Jerzi\AppData\Roaming\uTorrent\uTorrent.exe [2015-03-26 1442384]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-10-29 6501656]
"EpicScale"= []
"ACEStream"=C:\Users\Jerzi\AppData\Roaming\ACEStream\engine\ace_engine.exe [2013-04-03 27904]
"GoogleChromeAutoLaunch_086C67A8CD29115B982FA57FEDB91B91"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-03-14 809288]
"update"=wscript.exe //B C:\Users\Jerzi\AppData\Local\Temp\update.js []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-03-21 472992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2014-10-29 6501656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative SB Monitoring Utility]
RunDll32 sbavmon.dll,SBAVMonitor []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\Jerzi\AppData\Roaming\Seznam.cz\szninstall.exe -c []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Jerzi\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe -q []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
H:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleChromeAutoLaunch_086C67A8CD29115B982FA57FEDB91B91]
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-03-14 809288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2015-02-19 26232152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Green Christmas Tree]
C:\Users\Jerzi\AppData\Roaming\Skype\My Skype Received Files\GreenChristmasTree.exe [2014-12-23 1170432]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVBg_DTS]
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-08-06 1215632]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2012-08-07 6827664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Program Files (x86)\utorrent\uTorrent.exe [2013-10-01 1052496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Network Server.lnk]
C:\PROGRA~2\WIBUKEY\Server\WkSvMgr.exe []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-11-20 767176]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-03-22 5511352]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"QuickTime Task"=H:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]
"update"=wscript.exe //B C:\Users\Jerzi\AppData\Local\Temp\update.js []
"SDTray"=h:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2014-06-24 4101576]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"20150107"=C:\Program Files\AVAST Software\Avast\setup\emupdate\cb753b22-45bb-4756-ab37-09fbb34569e5.exe [2015-03-27 183232]

C:\Users\Jerzi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
SpeedFan.lnk - C:\Program Files (x86)\SpeedFan\speedfan.exe
update.js

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"h:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="h:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access"
"h:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="h:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"h:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="h:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"h:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="h:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.pDAD"=prodad-codec.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-03-27 22:40:16 ----D---- C:\rsit
2015-03-27 22:40:16 ----D---- C:\Program Files\trend micro
2015-03-26 13:36:18 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-03-26 13:31:55 ----A---- C:\Windows\system32\sdnclean64.exe
2015-03-26 13:31:54 ----D---- C:\ProgramData\Spybot - Search & Destroy
2015-03-25 10:45:37 ----A---- C:\Windows\system32\invagent.dll
2015-03-25 10:45:37 ----A---- C:\Windows\system32\generaltel.dll
2015-03-25 10:45:37 ----A---- C:\Windows\system32\devinv.dll
2015-03-25 10:45:37 ----A---- C:\Windows\system32\appraiser.dll
2015-03-25 10:45:37 ----A---- C:\Windows\system32\aepic.dll
2015-03-25 10:45:37 ----A---- C:\Windows\system32\aepdu.dll
2015-03-25 10:45:37 ----A---- C:\Windows\system32\aeinv.dll
2015-03-25 10:45:37 ----A---- C:\Windows\system32\acmigration.dll
2015-03-24 14:39:40 ----D---- C:\ProgramData\Malwarebytes
2015-03-24 06:49:15 ----D---- C:\Program Files (x86)\TeamViewer
2015-03-23 19:36:29 ----D---- C:\Users\Jerzi\AppData\Roaming\Netscape
2015-03-23 19:36:29 ----D---- C:\Users\Jerzi\AppData\Roaming\Mozilla
2015-03-23 19:36:29 ----D---- C:\Program Files (x86)\Photodex Presenter
2015-03-23 19:35:48 ----D---- C:\Users\Jerzi\AppData\Roaming\Photodex
2015-03-23 19:35:46 ----D---- C:\ProgramData\Photodex
2015-03-22 20:19:09 ----A---- C:\Windows\system32\aswBoot.exe
2015-03-22 20:19:07 ----A---- C:\Windows\avastSS.scr
2015-03-22 16:52:17 ----D---- C:\Users\Jerzi\AppData\Roaming\Titler
2015-03-22 13:18:46 ----D---- C:\ProgramData\{d88cb2d4-866a-fd77-d88c-cb2d4866cb52}
2015-03-22 12:55:36 ----D---- C:\Windows\SYSWOW64\X86
2015-03-22 12:55:36 ----D---- C:\Windows\SYSWOW64\AMD64
2015-03-22 12:54:57 ----D---- C:\Program Files (x86)\SaalePlus
2015-03-22 12:54:50 ----D---- C:\ProgramData\njnielgobepkaibndcgppicbjpcbajke
2015-03-22 12:53:57 ----D---- C:\ProgramData\{04311bff-67b5-7bd8-0431-11bff67b6ffd}
2015-03-22 12:36:06 ----D---- C:\Program Files (x86)\TerminusMaker
2015-03-22 12:35:48 ----D---- C:\Program Files (x86)\Grunt Devtools
2015-03-22 12:35:11 ----D---- C:\ProgramData\920817166288748903
2015-03-22 12:35:11 ----D---- C:\Program Files (x86)\SAlePPluusa
2015-03-22 12:34:52 ----D---- C:\Users\Jerzi\AppData\Roaming\CyberLink
2015-03-22 12:34:50 ----D---- C:\ProgramData\dldemlpenodfciiclidffebcijdpfpme
2015-03-22 12:34:21 ----D---- C:\ProgramData\{de03f338-ca16-cd66-de03-3f338ca1cce3}
2015-03-22 12:24:33 ----D---- C:\ProgramData\Apple Computer
2015-03-22 12:23:55 ----D---- C:\Program Files (x86)\Apple Software Update
2015-03-22 12:20:19 ----D---- C:\Users\Jerzi\AppData\Roaming\proDAD
2015-03-22 12:20:19 ----D---- C:\ProgramData\proDAD
2015-03-22 12:20:19 ----D---- C:\Program Files\proDAD
2015-03-22 12:20:19 ----A---- C:\Windows\system32\proDAD-PA-Support.dll
2015-03-22 12:20:19 ----A---- C:\Windows\system32\prodad-codec.dll
2015-03-22 12:19:50 ----D---- C:\Program Files\Cyberlink
2015-03-22 12:19:48 ----D---- C:\Program Files\Common Files\NewBlue
2015-03-22 12:19:44 ----D---- C:\Program Files\NewBlue
2015-03-22 12:19:40 ----D---- C:\Program Files (x86)\NewBlue
2015-03-22 12:19:36 ----D---- C:\Program Files (x86)\NSIS Uninstall Information
2015-03-22 12:19:28 ----D---- C:\Program Files (x86)\CyberLink
2015-03-22 12:17:38 ----D---- C:\ProgramData\CyberLink
2015-03-22 12:17:37 ----D---- C:\ProgramData\SUPPORTDIR
2015-03-22 12:17:37 ----D---- C:\ProgramData\install_clap
2015-03-14 19:52:03 ----D---- C:\Users\Jerzi\AppData\Roaming\.ACEStream
2015-03-14 19:51:32 ----D---- C:\Users\Jerzi\AppData\Roaming\ACEStream
2015-03-10 22:27:57 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-03-10 22:27:57 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-03-10 22:27:57 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-03-10 22:27:57 ----A---- C:\Windows\system32\lpk.dll
2015-03-10 22:27:57 ----A---- C:\Windows\system32\dciman32.dll
2015-03-10 22:27:57 ----A---- C:\Windows\system32\atmlib.dll
2015-03-10 22:27:57 ----A---- C:\Windows\system32\atmfd.dll
2015-03-10 22:27:56 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-03-10 22:27:56 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-03-10 22:27:56 ----A---- C:\Windows\system32\fontsub.dll
2015-03-10 22:27:51 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-03-10 22:27:51 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-03-10 22:27:51 ----A---- C:\Windows\system32\drmv2clt.dll
2015-03-10 22:27:51 ----A---- C:\Windows\system32\blackbox.dll
2015-03-10 22:27:50 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2015-03-10 22:27:50 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-03-10 22:27:49 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-03-10 22:27:49 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-03-10 22:27:49 ----A---- C:\Windows\system32\wmp.dll
2015-03-10 22:27:49 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-03-10 22:27:49 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-03-10 22:27:48 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-03-10 22:27:47 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-03-10 22:27:47 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-03-10 22:27:47 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-03-10 22:27:47 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-03-10 22:27:47 ----A---- C:\Windows\system32\crypt32.dll
2015-03-10 22:27:46 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-03-10 22:27:46 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-03-10 22:27:46 ----A---- C:\Windows\system32\quartz.dll
2015-03-10 22:27:46 ----A---- C:\Windows\system32\evr.dll
2015-03-10 22:27:45 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-03-10 22:27:45 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-03-10 22:27:45 ----A---- C:\Windows\system32\winresume.exe
2015-03-10 22:27:45 ----A---- C:\Windows\system32\mfplat.dll
2015-03-10 22:27:45 ----A---- C:\Windows\system32\cryptui.dll
2015-03-10 22:27:44 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-03-10 22:27:44 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-03-10 22:27:44 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-03-10 22:27:44 ----A---- C:\Windows\system32\pcasvc.dll
2015-03-10 22:27:44 ----A---- C:\Windows\system32\msscp.dll
2015-03-10 22:27:44 ----A---- C:\Windows\system32\mf.dll
2015-03-10 22:27:44 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-03-10 22:27:44 ----A---- C:\Windows\system32\cryptsp.dll
2015-03-10 22:27:43 ----A---- C:\Windows\system32\winload.exe
2015-03-10 22:27:42 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-03-10 22:27:42 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-03-10 22:27:42 ----A---- C:\Windows\system32\msnetobj.dll
2015-03-10 22:27:42 ----A---- C:\Windows\system32\cryptnet.dll
2015-03-10 22:27:42 ----A---- C:\Windows\system32\ci.dll
2015-03-10 22:27:42 ----A---- C:\Windows\system32\audiosrv.dll
2015-03-10 22:27:42 ----A---- C:\Windows\system32\appidsvc.dll
2015-03-10 22:27:41 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-03-10 22:27:41 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-03-10 22:27:41 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-03-10 22:27:41 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-03-10 22:27:41 ----A---- C:\Windows\system32\wintrust.dll
2015-03-10 22:27:41 ----A---- C:\Windows\system32\srcore.dll
2015-03-10 22:27:41 ----A---- C:\Windows\system32\rstrui.exe
2015-03-10 22:27:41 ----A---- C:\Windows\system32\qdvd.dll
2015-03-10 22:27:41 ----A---- C:\Windows\system32\drivers\appid.sys
2015-03-10 22:27:41 ----A---- C:\Windows\system32\AudioSes.dll
2015-03-10 22:27:41 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-03-10 22:27:41 ----A---- C:\Windows\system32\audiodg.exe
2015-03-10 22:27:40 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-03-10 22:27:40 ----A---- C:\Windows\system32\pcadm.dll
2015-03-10 22:27:40 ----A---- C:\Windows\system32\cryptsvc.dll
2015-03-10 22:27:40 ----A---- C:\Windows\system32\AudioEng.dll
2015-03-10 22:27:39 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-03-10 22:27:39 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-03-10 22:27:39 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-03-10 22:27:39 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-03-10 22:27:39 ----A---- C:\Windows\system32\smss.exe
2015-03-10 22:27:39 ----A---- C:\Windows\system32\rrinstaller.exe
2015-03-10 22:27:39 ----A---- C:\Windows\system32\msmmsp.dll
2015-03-10 22:27:39 ----A---- C:\Windows\system32\mfps.dll
2015-03-10 22:27:39 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-03-10 22:27:39 ----A---- C:\Windows\system32\appidapi.dll
2015-03-10 22:27:38 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-03-10 22:27:38 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-03-10 22:27:38 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-03-10 22:27:38 ----A---- C:\Windows\system32\srclient.dll
2015-03-10 22:27:38 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-03-10 22:27:38 ----A---- C:\Windows\system32\pcawrk.exe
2015-03-10 22:27:38 ----A---- C:\Windows\system32\pcalua.exe
2015-03-10 22:27:38 ----A---- C:\Windows\system32\mfpmp.exe
2015-03-10 22:27:38 ----A---- C:\Windows\system32\EncDump.dll
2015-03-10 22:27:38 ----A---- C:\Windows\system32\csrsrv.dll
2015-03-10 22:27:38 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-03-10 22:27:37 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-03-10 22:27:37 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-03-10 22:27:37 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-03-10 22:27:37 ----A---- C:\Windows\system32\spwmp.dll
2015-03-10 22:27:37 ----A---- C:\Windows\system32\pcaevts.dll
2015-03-10 22:27:37 ----A---- C:\Windows\system32\dxmasf.dll
2015-03-10 22:27:37 ----A---- C:\Windows\system32\apisetschema.dll
2015-03-10 22:27:36 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-03-10 22:27:36 ----A---- C:\Windows\system32\wmploc.DLL
2015-03-10 22:27:35 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-03-10 22:27:35 ----A---- C:\Windows\system32\mferror.dll
2015-03-10 22:27:14 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-03-10 22:27:14 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-03-10 22:27:14 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-03-10 22:27:14 ----A---- C:\Windows\system32\wdigest.dll
2015-03-10 22:27:14 ----A---- C:\Windows\system32\schannel.dll
2015-03-10 22:27:14 ----A---- C:\Windows\system32\ncrypt.dll
2015-03-10 22:27:14 ----A---- C:\Windows\system32\msv1_0.dll
2015-03-10 22:27:14 ----A---- C:\Windows\system32\lsasrv.dll
2015-03-10 22:27:14 ----A---- C:\Windows\system32\kerberos.dll
2015-03-10 22:27:14 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-03-10 22:27:14 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-03-10 22:27:14 ----A---- C:\Windows\system32\drivers\cng.sys
2015-03-10 22:27:13 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-03-10 22:27:13 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-03-10 22:27:13 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-03-10 22:27:13 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-03-10 22:27:13 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-03-10 22:27:13 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-03-10 22:27:13 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-03-10 22:27:13 ----A---- C:\Windows\system32\TSpkg.dll
2015-03-10 22:27:13 ----A---- C:\Windows\system32\sspisrv.dll
2015-03-10 22:27:13 ----A---- C:\Windows\system32\sspicli.dll
2015-03-10 22:27:13 ----A---- C:\Windows\system32\secur32.dll
2015-03-10 22:27:13 ----A---- C:\Windows\system32\lsass.exe
2015-03-10 22:27:13 ----A---- C:\Windows\system32\credssp.dll
2015-03-10 22:27:13 ----A---- C:\Windows\system32\auditpol.exe
2015-03-10 22:27:12 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-03-10 22:27:12 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-03-10 22:27:12 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-03-10 22:27:12 ----A---- C:\Windows\system32\msobjs.dll
2015-03-10 22:27:12 ----A---- C:\Windows\system32\msaudite.dll
2015-03-10 22:27:12 ----A---- C:\Windows\system32\adtschema.dll
2015-03-10 22:27:09 ----A---- C:\Windows\system32\shell32.dll
2015-03-10 22:27:08 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-03-10 22:27:07 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-03-10 22:27:07 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-03-10 22:27:07 ----A---- C:\Windows\system32\ubpm.dll
2015-03-10 22:27:07 ----A---- C:\Windows\system32\rdpudd.dll
2015-03-10 22:27:07 ----A---- C:\Windows\system32\rdpcorets.dll
2015-03-10 22:27:07 ----A---- C:\Windows\system32\msctf.dll
2015-03-10 22:27:07 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2015-03-10 22:27:06 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-03-10 22:27:06 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-03-10 22:27:05 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-03-10 22:27:05 ----A---- C:\Windows\system32\WMPhoto.dll
2015-03-10 22:27:05 ----A---- C:\Windows\system32\win32k.sys
2015-03-08 11:51:49 ----D---- C:\Users\Jerzi\AppData\Roaming\JGoodies
2015-03-08 11:36:28 ----A---- C:\Windows\system32\ExtraInfo.txt
2015-03-08 11:29:25 ----A---- C:\Windows\Reimage.ini
2015-03-04 20:59:12 ----D---- C:\ProgramData\EpicScale

======List of files/folders modified in the last 1 month======

2015-03-27 22:40:17 ----D---- C:\Windows\Temp
2015-03-27 22:40:16 ----D---- C:\Program Files
2015-03-27 19:41:53 ----D---- C:\Windows\system32\config
2015-03-26 21:36:47 ----D---- C:\Users\Jerzi\AppData\Roaming\uTorrent
2015-03-26 20:46:04 ----D---- C:\Windows\inf
2015-03-26 19:23:58 ----D---- C:\Windows\System32
2015-03-26 19:23:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-03-26 19:18:05 ----D---- C:\Users\Jerzi\AppData\Roaming\WTablet
2015-03-26 19:17:58 ----D---- C:\Program Files (x86)\SpeedFan
2015-03-26 18:55:04 ----SHD---- C:\Windows\Installer
2015-03-26 18:55:03 ----D---- C:\Program Files (x86)\Google
2015-03-26 18:54:59 ----D---- C:\Windows\system32\drivers
2015-03-26 18:54:57 ----SHD---- C:\System Volume Information
2015-03-26 18:53:05 ----D---- C:\Windows\system32\Tasks
2015-03-26 13:36:18 ----RD---- C:\Program Files (x86)
2015-03-26 13:31:57 ----SD---- C:\ProgramData\Microsoft
2015-03-26 13:31:54 ----HD---- C:\ProgramData
2015-03-26 13:19:49 ----D---- C:\Windows\winsxs
2015-03-26 13:19:43 ----D---- C:\Windows
2015-03-26 13:19:40 ----SD---- C:\Windows\system32\CompatTel
2015-03-26 13:19:40 ----D---- C:\Windows\system32\wbem
2015-03-26 13:19:40 ----D---- C:\Windows\system32\appraiser
2015-03-26 13:19:40 ----D---- C:\Windows\AppPatch
2015-03-25 08:14:33 ----D---- C:\Windows\Minidump
2015-03-24 14:51:32 ----D---- C:\Users\Jerzi\AppData\Roaming\SearchProtect
2015-03-24 14:51:32 ----D---- C:\ProgramData\Conduit
2015-03-24 14:51:31 ----D---- C:\Program Files (x86)\SearchProtect
2015-03-24 06:49:23 ----RSD---- C:\Windows\Fonts
2015-03-22 14:02:10 ----D---- C:\Users\Jerzi\AppData\Roaming\Skype
2015-03-22 13:02:07 ----D---- C:\ProgramData\Skype
2015-03-22 13:02:06 ----RD---- C:\Program Files (x86)\Skype
2015-03-22 12:57:54 ----D---- C:\Windows\debug
2015-03-22 12:55:36 ----D---- C:\Windows\SysWOW64
2015-03-22 12:25:11 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-03-22 12:24:00 ----D---- C:\Program Files (x86)\Common Files
2015-03-22 12:19:48 ----D---- C:\Program Files\Common Files
2015-03-15 07:10:52 ----D---- C:\Windows\rescache
2015-03-11 19:46:18 ----SHD---- C:\Boot
2015-03-11 19:45:21 ----D---- C:\Windows\SYSWOW64\sk-SK
2015-03-11 19:45:21 ----D---- C:\Windows\SYSWOW64\en-US
2015-03-11 19:45:21 ----D---- C:\Windows\SYSWOW64\Dism
2015-03-11 19:45:21 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-03-11 19:45:21 ----D---- C:\Windows\system32\sk-SK
2015-03-11 19:45:21 ----D---- C:\Windows\system32\en-US
2015-03-11 19:45:21 ----D---- C:\Windows\system32\Dism
2015-03-11 19:45:21 ----D---- C:\Windows\system32\cs-CZ
2015-03-11 19:45:21 ----D---- C:\Windows\system32\CodeIntegrity
2015-03-11 19:45:21 ----D---- C:\Windows\system32\Boot
2015-03-11 19:45:21 ----D---- C:\Program Files\Windows Media Player
2015-03-11 19:45:21 ----D---- C:\Program Files (x86)\Windows Media Player
2015-03-10 23:01:31 ----D---- C:\Windows\system32\MRT
2015-03-10 22:58:55 ----A---- C:\Windows\system32\MRT.exe
2015-03-10 22:26:44 ----D---- C:\Windows\system32\catroot2
2015-03-04 21:43:45 ----D---- C:\Program Files (x86)\TabletPlugins
2015-03-01 18:37:33 ----D---- C:\Windows\SoftwareDistribution
2015-03-01 18:35:02 ----D---- C:\Windows\Logs

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 asahci64;asahci64; C:\Windows\system32\DRIVERS\asahci64.sys [2012-01-06 49760]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-03-22 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-03-22 268640]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-03-22 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-03-22 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-03-22 441728]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-09 283064]
R2 amdacpksd;ACP Kernel Service Driver; \??\C:\Windows\system32\drivers\amdacpksd.sys [2014-11-21 294600]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-03-22 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-03-22 88408]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-03-22 136752]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-03-22 273824]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-11-21 18959360]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-11-21 589312]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-11-03 130536]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-11-03 395752]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2014-06-21 94720]
R3 cmudaxp;ASUS Xonar DX Audio Interface; C:\Windows\system32\drivers\cmudaxp.sys [2013-04-11 2734080]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-06-12 726160]
R3 wacommousefilter;Wacom Mouse Filter Driver; C:\Windows\system32\DRIVERS\wacommousefilter.sys [2007-02-16 12848]
R3 wacomvhid;Wacom Virtual Hid Driver; C:\Windows\system32\DRIVERS\wacomvhid.sys [2009-05-20 15656]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys [2010-04-27 26440]
R3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys [2010-04-27 43976]
R3 WmHidLo;Logitech Gaming USB Filter Driver; C:\Windows\system32\drivers\WmHidLo.sys [2010-04-27 36936]
R3 WmVirHid;Logitech Virtual Hid Device Driver; C:\Windows\system32\drivers\WmVirHid.sys [2010-04-27 16200]
R3 WmXlCore;Logitech Translation Layer Driver; C:\Windows\system32\drivers\WmXlCore.sys [2010-04-27 77512]
S3 ALSysIO;ALSysIO; \??\C:\Users\Jerzi\AppData\Local\Temp\ALSysIO64.sys []
S3 cpuz134;cpuz134; \??\C:\Users\Jerzi\AppData\Local\Temp\cpuz134\cpuz134_x64.sys []
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-08-07 4102928]
S3 ksaud;Creative USB Audio Driver; C:\Windows\system32\drivers\ksaud.sys [2011-02-16 1588608]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2015-01-31 20992]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-11-21 244736]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [2014-11-20 344064]
R2 amdacpusrsvc;ACP User Service; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [2014-11-20 116224]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-03-22 343336]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [2010-02-12 286720]
R2 DTSAudioSvc;DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [2012-01-23 233328]
R2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-02 116648]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2014-04-01 614664]
R2 ScsiAccess;ScsiAccess; h:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe [2015-03-23 186760]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; h:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2014-06-24 1738168]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; h:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2014-06-27 2088408]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; h:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2014-04-25 171928]
R2 TabletServicePen;TabletServicePen; C:\Windows\system32\Pen_Tablet.exe [2009-11-24 5556520]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-03-25 5447952]
R2 WTouchService;WTouch Service; C:\Program Files\WTouch\WTouchService.exe [2009-11-24 127784]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-03-22 4030800]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2014-01-30 79360]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-02 116648]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-09-16 569024]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-10-04 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-11 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-11 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-11 139944]

-----------------EOF-----------------

[Rudy]

Zdravím!
Jak je na tom váš oper. systém s legalitou?

[jhalamka]

Dobrý den, to nevím, převzal jsem se systémem již nainstalovaným.

[Rudy]

Měl byste vědět, co vám na PC běhá. Zkusíme tento postup:

Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*loader* /s

a klikněte na >Prohledat<. Dejte oba logy.

[jhalamka]

OTL logfile created on: 29.3.2015 10:55:51 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jerzi\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

7,90 Gb Total Physical Memory | 5,80 Gb Available Physical Memory | 73,44% Memory free
11,81 Gb Paging File | 9,23 Gb Available in Paging File | 78,14% Paging File free
Paging file location(s): c:\pagefile.sys 1000 4000e:\pagef [Binary data over 200 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 33,52 Gb Total Space | 1,40 Gb Free Space | 4,17% Space Free | Partition Type: NTFS
Drive D: | 100,00 Mb Total Space | 80,24 Mb Free Space | 80,24% Space Free | Partition Type: NTFS
Drive E: | 78,17 Gb Total Space | 11,21 Gb Free Space | 14,34% Space Free | Partition Type: NTFS
Drive G: | 97,56 Gb Total Space | 97,46 Gb Free Space | 99,90% Space Free | Partition Type: NTFS
Drive H: | 833,86 Gb Total Space | 91,97 Gb Free Space | 11,03% Space Free | Partition Type: NTFS

Computer Name: JERZI-PC | User Name: Jerzi | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2015.03.29 10:53:15 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jerzi\Downloads\OTL.exe
PRC - [2015.03.26 14:20:30 | 001,442,384 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\uTorrent.exe
PRC - [2015.03.25 13:16:31 | 017,652,496 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\TeamViewer.exe
PRC - [2015.03.25 13:16:31 | 005,447,952 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
PRC - [2015.03.25 12:54:17 | 000,229,136 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\tv_w32.exe
PRC - [2015.03.22 21:19:30 | 005,511,352 | ---- | M] (Avast Software s.r.o.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2015.03.22 21:19:07 | 000,343,336 | ---- | M] (Avast Software s.r.o.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2015.03.14 12:12:39 | 000,809,288 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2015.02.07 03:10:11 | 000,232,264 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
PRC - [2014.12.19 09:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014.06.27 12:52:26 | 002,088,408 | ---- | M] (Safer-Networking Ltd.) -- h:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
PRC - [2014.06.24 11:41:42 | 001,738,168 | ---- | M] (Safer-Networking Ltd.) -- h:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
PRC - [2014.04.25 15:12:20 | 000,171,928 | ---- | M] (Safer-Networking Ltd.) -- h:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
PRC - [2013.03.21 06:33:38 | 000,806,784 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
PRC - [2013.03.15 21:28:12 | 004,683,768 | ---- | M] (Almico Software (www.almico.com)) -- C:\Program Files (x86)\SpeedFan\speedfan.exe
PRC - [2012.12.13 09:50:42 | 002,007,040 | ---- | M] (CMedia) -- C:\Program Files\ASUS Xonar DX Audio\Customapp\AsusAudioCenter.exe
PRC - [2010.02.12 11:23:12 | 000,286,720 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
PRC - [2008.07.11 15:04:22 | 000,200,704 | ---- | M] () -- C:\Windows\SysWOW64\HsMgr.exe


========== Modules (No Company Name) ==========

MOD - [2015.03.28 18:21:35 | 000,192,512 | ---- | M] () -- C:\Users\Jerzi\AppData\Local\Temp\sfamcc00001.dll
MOD - [2015.03.28 18:21:35 | 000,158,720 | ---- | M] () -- C:\Users\Jerzi\AppData\Local\Temp\sfareca00001.dll
MOD - [2015.03.22 21:19:08 | 040,540,672 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2015.03.22 21:19:08 | 001,359,872 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libGLESv2.dll
MOD - [2015.03.22 21:19:08 | 000,212,992 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libEGL.dll
MOD - [2015.03.22 21:19:07 | 000,104,400 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\log.dll
MOD - [2015.03.22 21:19:07 | 000,081,728 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
MOD - [2015.03.14 12:12:37 | 014,974,280 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.101\PepperFlash\pepflashplayer.dll
MOD - [2015.03.14 12:12:35 | 009,278,792 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.101\pdf.dll
MOD - [2015.03.14 12:12:30 | 001,174,856 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.101\libglesv2.dll
MOD - [2015.03.14 12:12:28 | 000,080,200 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.101\libegl.dll
MOD - [2012.06.06 09:56:50 | 000,143,360 | ---- | M] () -- C:\Program Files\ASUS Xonar DX Audio\Customapp\VmixP8.dll
MOD - [2008.07.11 15:04:22 | 000,200,704 | ---- | M] () -- C:\Windows\SysWOW64\HsMgr.exe
MOD - [2007.12.17 13:05:20 | 000,323,584 | ---- | M] () -- C:\Program Files\ASUS Xonar DX Audio\Customapp\CmDevice.dll


========== Services (SafeList) ==========

SRV:64bit: - [2015.03.22 21:19:07 | 000,343,336 | ---- | M] (Avast Software s.r.o.) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2015.03.22 21:19:05 | 004,030,800 | ---- | M] (Avast Software) [On_Demand | Stopped] -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe -- (AvastVBoxSvc)
SRV:64bit: - [2014.11.21 04:12:40 | 000,244,736 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2014.11.20 22:23:06 | 000,344,064 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64bit: - [2014.11.20 22:18:44 | 000,116,224 | ---- | M] (Advanced Micro Devices) [Auto | Running] -- C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe -- (amdacpusrsvc)
SRV:64bit: - [2014.04.01 14:09:46 | 000,614,664 | ---- | M] (CyberLink) [Auto | Running] -- C:\Program Files\Cyberlink\Shared files\RichVideo64.exe -- (RichVideo64)
SRV:64bit: - [2013.05.27 07:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2012.01.23 16:30:22 | 000,233,328 | ---- | M] (DTS, Inc) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe -- (DTSAudioSvc)
SRV:64bit: - [2009.11.24 02:53:58 | 000,127,784 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\WTouch\WTouchService.exe -- (WTouchService)
SRV:64bit: - [2009.11.24 02:53:54 | 005,556,520 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Windows\SysNative\Pen_Tablet.exe -- (TabletServicePen)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2015.03.25 13:16:31 | 005,447,952 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe -- (TeamViewer)
SRV - [2015.01.02 20:45:12 | 000,315,488 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014.12.19 09:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014.09.16 23:10:54 | 000,569,024 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2014.04.11 23:08:08 | 000,103,608 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2014.03.21 00:49:18 | 000,067,224 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2014.01.30 14:57:17 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2010.02.19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2010.02.12 11:23:12 | 000,286,720 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2015.03.22 21:19:09 | 000,441,728 | ---- | M] (Avast Software s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2015.03.22 21:19:09 | 000,268,640 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2015.03.22 21:19:09 | 000,136,752 | ---- | M] (Avast Software s.r.o.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
DRV:64bit: - [2015.03.22 21:19:09 | 000,093,528 | ---- | M] (Avast Software s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2015.03.22 21:19:09 | 000,088,408 | ---- | M] (Avast Software s.r.o.) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2015.03.22 21:19:09 | 000,065,736 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2015.03.22 21:19:09 | 000,029,168 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswHwid.sys -- (aswHwid)
DRV:64bit: - [2015.03.22 21:19:06 | 001,047,320 | ---- | M] (Avast Software s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2015.03.22 21:19:05 | 000,273,824 | ---- | M] (Avast Software) [Kernel | Auto | Running] -- C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys -- (VBoxAswDrv)
DRV:64bit: - [2015.01.31 05:04:08 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2014.11.21 04:41:36 | 000,294,600 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\amdacpksd.sys -- (amdacpksd)
DRV:64bit: - [2014.11.21 04:40:00 | 018,959,360 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2014.11.21 04:08:54 | 000,589,312 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2014.06.21 19:01:22 | 000,094,720 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2014.02.11 17:36:52 | 000,059,616 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\AMD\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.3)
DRV:64bit: - [2013.12.09 21:50:03 | 000,283,064 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2013.04.11 19:21:06 | 002,734,080 | ---- | M] (C-Media Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cmudaxp.sys -- (cmudaxp)
DRV:64bit: - [2012.06.13 00:00:48 | 000,726,160 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012.01.06 10:44:12 | 000,049,760 | ---- | M] (Asmedia Technology) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\asahci64.sys -- (asahci64)
DRV:64bit: - [2011.11.03 11:10:42 | 000,395,752 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmtxhci.sys -- (asmtxhci)
DRV:64bit: - [2011.11.03 11:10:42 | 000,130,536 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmthub3.sys -- (asmthub3)
DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011.02.16 18:52:02 | 001,588,608 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ksaud.sys -- (ksaud)
DRV:64bit: - [2010.11.20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.04.27 16:57:20 | 000,016,200 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmVirHid.sys -- (WmVirHid)
DRV:64bit: - [2010.04.27 16:57:14 | 000,036,936 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmHidLo.sys -- (WmHidLo)
DRV:64bit: - [2010.04.27 16:57:12 | 000,026,440 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmBEnum.sys -- (WmBEnum)
DRV:64bit: - [2010.04.27 14:03:12 | 000,077,512 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmXlCore.sys -- (WmXlCore)
DRV:64bit: - [2010.04.27 14:02:42 | 000,043,976 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmFilter.sys -- (WmFilter)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.05.20 21:54:06 | 000,015,656 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacomvhid.sys -- (wacomvhid)
DRV:64bit: - [2007.02.16 21:12:36 | 000,012,848 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacommousefilter.sys -- (wacommousefilter)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=s ... earchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
IE - HKLM\..\SearchScopes,DefaultScope = {E9410C70-B6AE-41FF-AB71-32F4B279EA5F}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}: "URL" = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
IE - HKLM\..\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://websearch.coolsearches.info/?l=1 ... Z&unqvl=85
IE - HKLM\..\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}: "URL" = https://www.google.com/search?trackid=s ... earchTerms}


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-798018489-438667052-1584509140-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
IE - HKU\S-1-5-21-798018489-438667052-1584509140-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=s ... earchTerms}
IE - HKU\S-1-5-21-798018489-438667052-1584509140-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
IE - HKU\S-1-5-21-798018489-438667052-1584509140-1000\..\SearchScopes,DefaultScope = {E9410C70-B6AE-41FF-AB71-32F4B279EA5F}
IE - HKU\S-1-5-21-798018489-438667052-1584509140-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-798018489-438667052-1584509140-1000\..\SearchScopes\{60F5A373-9AF6-45BC-8EE1-DC71063867A8}: "URL" = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
IE - HKU\S-1-5-21-798018489-438667052-1584509140-1000\..\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}: "URL" = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
IE - HKU\S-1-5-21-798018489-438667052-1584509140-1000\..\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://websearch.coolsearches.info/?l=1 ... Z&unqvl=85
IE - HKU\S-1-5-21-798018489-438667052-1584509140-1000\..\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}: "URL" = https://www.google.com/search?trackid=s ... earchTerms}
IE - HKU\S-1-5-21-798018489-438667052-1584509140-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: E:\Program Files\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.55.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@photodex.com/PhotodexPresenter: C:\Program Files (x86)\Photodex Presenter\npPxPlay.dll ( )
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.0: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: E:\Program Files\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF - HKCU\Software\MozillaPlugins\@acestream.net/acestreamplugin,version=2.0.13.1: C:\Users\Jerzi\AppData\Roaming\ACEStream\player\npace_plugin.dll (Innovative Digital Technologies)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2015.03.22 21:19:09 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi\1.1408.5.2_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\

O1 HOSTS File: ([2015.03.23 20:42:53 | 000,000,975 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 cap.cyberlink.com
O1 - Hosts: 127.0.0.1 activation.cyberlink.com
O1 - Hosts: 127.0.0.1 photodex.com
O1 - Hosts: 127.0.0.1 www.photodex.com
O2:64bit: - BHO: (SteadyVideoBHO Class) - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (Avast Software s.r.o.)
O2 - BHO: (SteadyVideoBHO Class) - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (Avast Software s.r.o.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No CLSID value found.
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [Cmaudio8788] C:\Windows\Syswow64\cmicnfgp.dll (C-Media Corporation)
O4:64bit: - HKLM..\Run: [Cmaudio8788GX] C:\Windows\syswow64\HsMgr.exe ()
O4:64bit: - HKLM..\Run: [Cmaudio8788GX64] C:\Windows\system\HsMgr64.exe ()
O4:64bit: - HKLM..\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Logitech Inc.)
O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o.)
O4 - HKLM..\Run: [SDTray] h:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [update] wscript.exe //B "C:\Users\Jerzi\AppData\Local\Temp\update.js" File not found
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-798018489-438667052-1584509140-1000..\Run: [ACEStream] C:\Users\Jerzi\AppData\Roaming\ACEStream\engine\ace_engine.exe ()
O4 - HKU\S-1-5-21-798018489-438667052-1584509140-1000..\Run: [AdobeBridge] File not found
O4 - HKU\S-1-5-21-798018489-438667052-1584509140-1000..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKU\S-1-5-21-798018489-438667052-1584509140-1000..\Run: [EpicScale] File not found
O4 - HKU\S-1-5-21-798018489-438667052-1584509140-1000..\Run: [update] wscript.exe //B "C:\Users\Jerzi\AppData\Local\Temp\update.js" File not found
O4 - HKU\S-1-5-21-798018489-438667052-1584509140-1000..\Run: [uTorrent] C:\Users\Jerzi\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
O4 - HKU\.DEFAULT..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 File not found
O4 - HKU\S-1-5-18..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\Jerzi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SpeedFan.lnk = C:\Program Files (x86)\SpeedFan\speedfan.exe (Almico Software (www.almico.com))
O4 - Startup: C:\Users\Jerzi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\update.js ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O7 - HKU\S-1-5-21-798018489-438667052-1584509140-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html File not found
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html File not found
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-798018489-438667052-1584509140-1000\..Trusted Domains: localhost ([]http in Internet)
O15 - HKU\S-1-5-21-798018489-438667052-1584509140-1000\..Trusted Ranges: Range1979 ([http] in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{29F5F7CF-27FB-4752-8BD5-06F842A66A47}: NameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18:64bit: - Protocol\Filter\video/mp4 {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O18:64bit: - Protocol\Filter\video/x-flv {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O18 - Protocol\Filter\video/mp4 {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O18 - Protocol\Filter\video/x-flv {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\SDWinLogon: DllName - (SDWinLogon.dll) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2015.03.29 10:55:20 | 000,000,000 | ---D | C] -- C:\_OTL
[2015.03.28 09:21:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2015.03.27 23:40:16 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2015.03.26 14:36:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy 2
[2015.03.26 14:31:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
[2015.03.26 14:31:55 | 000,021,040 | ---- | C] (Safer Networking Limited) -- C:\Windows\SysNative\sdnclean64.exe
[2015.03.26 14:31:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2015.03.26 14:29:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro
[2015.03.25 11:45:37 | 001,107,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
[2015.03.25 11:45:37 | 000,943,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appraiser.dll
[2015.03.25 11:45:37 | 000,760,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\invagent.dll
[2015.03.25 11:45:37 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\generaltel.dll
[2015.03.25 11:45:37 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\devinv.dll
[2015.03.25 11:45:37 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll
[2015.03.25 11:45:37 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepic.dll
[2015.03.25 11:45:37 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\acmigration.dll
[2015.03.24 15:39:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2015.03.24 07:49:27 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Local\TeamViewer
[2015.03.24 07:49:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamViewer
[2015.03.23 20:37:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProShow Producer
[2015.03.23 20:36:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Photodex Presenter
[2015.03.23 20:36:29 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\Netscape
[2015.03.23 20:36:29 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\Mozilla
[2015.03.23 20:35:48 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\Photodex
[2015.03.23 20:35:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Photodex
[2015.03.22 21:19:09 | 000,364,472 | ---- | C] (Avast Software s.r.o.) -- C:\Windows\SysNative\aswBoot.exe
[2015.03.22 21:19:07 | 000,043,112 | ---- | C] (Avast Software s.r.o.) -- C:\Windows\avastSS.scr
[2015.03.22 17:52:17 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\Titler
[2015.03.22 17:52:17 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\Documents\NewBlueFX
[2015.03.22 14:18:46 | 000,000,000 | ---D | C] -- C:\ProgramData\{d88cb2d4-866a-fd77-d88c-cb2d4866cb52}
[2015.03.22 14:02:12 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\Tracing
[2015.03.22 13:55:36 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\X86
[2015.03.22 13:55:36 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\AMD64
[2015.03.22 13:54:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SaalePlus
[2015.03.22 13:54:50 | 000,000,000 | ---D | C] -- C:\ProgramData\njnielgobepkaibndcgppicbjpcbajke
[2015.03.22 13:53:57 | 000,000,000 | ---D | C] -- C:\ProgramData\{04311bff-67b5-7bd8-0431-11bff67b6ffd}
[2015.03.22 13:37:21 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\Documents\CyberLink
[2015.03.22 13:36:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TerminusMaker
[2015.03.22 13:35:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Grunt Devtools
[2015.03.22 13:35:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SAlePPluusa
[2015.03.22 13:35:11 | 000,000,000 | ---D | C] -- C:\ProgramData\920817166288748903
[2015.03.22 13:34:52 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\CyberLink
[2015.03.22 13:34:50 | 000,000,000 | ---D | C] -- C:\ProgramData\dldemlpenodfciiclidffebcijdpfpme
[2015.03.22 13:34:21 | 000,000,000 | ---D | C] -- C:\ProgramData\{de03f338-ca16-cd66-de03-3f338ca1cce3}
[2015.03.22 13:25:19 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Local\CyberLink
[2015.03.22 13:25:11 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink WaveEditor 2
[2015.03.22 13:24:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2015.03.22 13:24:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2015.03.22 13:24:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2015.03.22 13:23:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2015.03.22 13:20:19 | 000,607,256 | ---- | C] (proDAD GmbH) -- C:\Windows\SysNative\prodad-codec.dll
[2015.03.22 13:20:19 | 000,375,832 | ---- | C] (proDAD GmbH) -- C:\Windows\SysNative\proDAD-PA-Support.dll
[2015.03.22 13:20:19 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\proDAD
[2015.03.22 13:20:19 | 000,000,000 | ---D | C] -- C:\ProgramData\proDAD
[2015.03.22 13:20:19 | 000,000,000 | ---D | C] -- C:\Program Files\proDAD
[2015.03.22 13:19:50 | 000,000,000 | ---D | C] -- C:\Program Files\Cyberlink
[2015.03.22 13:19:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\NewBlue
[2015.03.22 13:19:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue
[2015.03.22 13:19:44 | 000,000,000 | ---D | C] -- C:\Program Files\NewBlue
[2015.03.22 13:19:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\NewBlue
[2015.03.22 13:19:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NewBlue
[2015.03.22 13:19:37 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 13
[2015.03.22 13:19:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NSIS Uninstall Information
[2015.03.22 13:19:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CyberLink
[2015.03.22 13:17:38 | 000,000,000 | ---D | C] -- C:\ProgramData\CyberLink
[2015.03.22 13:17:37 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPPORTDIR
[2015.03.22 13:17:37 | 000,000,000 | ---D | C] -- C:\ProgramData\install_clap
[2015.03.14 20:52:03 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\.ACEStream
[2015.03.14 20:51:46 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ACE Stream Media
[2015.03.14 20:51:32 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\ACEStream
[2015.03.10 23:27:57 | 000,372,224 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2015.03.10 23:27:57 | 000,299,008 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2015.03.10 23:27:57 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2015.03.10 23:27:57 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpk.dll
[2015.03.10 23:27:57 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2015.03.10 23:27:57 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dciman32.dll
[2015.03.10 23:27:56 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2015.03.10 23:27:56 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2015.03.10 23:27:51 | 002,644,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2015.03.10 23:27:51 | 001,202,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drmv2clt.dll
[2015.03.10 23:27:51 | 000,842,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\blackbox.dll
[2015.03.10 23:27:51 | 000,744,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\blackbox.dll
[2015.03.10 23:27:50 | 002,135,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2015.03.10 23:27:50 | 000,988,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drmv2clt.dll
[2015.03.10 23:27:49 | 014,632,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2015.03.10 23:27:49 | 005,554,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2015.03.10 23:27:49 | 003,209,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mf.dll
[2015.03.10 23:27:49 | 000,782,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmsdk.dll
[2015.03.10 23:27:49 | 000,617,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmsdk.dll
[2015.03.10 23:27:48 | 011,411,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2015.03.10 23:27:47 | 001,480,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2015.03.10 23:27:47 | 000,497,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drmmgrtn.dll
[2015.03.10 23:27:47 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drmmgrtn.dll
[2015.03.10 23:27:46 | 003,973,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2015.03.10 23:27:46 | 003,917,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2015.03.10 23:27:46 | 001,574,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2015.03.10 23:27:46 | 000,631,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\evr.dll
[2015.03.10 23:27:45 | 001,329,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2015.03.10 23:27:45 | 001,069,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptui.dll
[2015.03.10 23:27:45 | 000,616,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2015.03.10 23:27:45 | 000,532,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2015.03.10 23:27:45 | 000,489,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\evr.dll
[2015.03.10 23:27:45 | 000,432,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfplat.dll
[2015.03.10 23:27:44 | 004,121,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mf.dll
[2015.03.10 23:27:44 | 001,005,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptui.dll
[2015.03.10 23:27:44 | 000,641,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscp.dll
[2015.03.10 23:27:44 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfplat.dll
[2015.03.10 23:27:44 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptsp.dll
[2015.03.10 23:27:43 | 000,619,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2015.03.10 23:27:42 | 000,693,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2015.03.10 23:27:42 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2015.03.10 23:27:42 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscp.dll
[2015.03.10 23:27:42 | 000,457,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll
[2015.03.10 23:27:42 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msnetobj.dll
[2015.03.10 23:27:42 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2015.03.10 23:27:41 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2015.03.10 23:27:41 | 000,500,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AUDIOKSE.dll
[2015.03.10 23:27:41 | 000,371,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2015.03.10 23:27:41 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
[2015.03.10 23:27:41 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2015.03.10 23:27:41 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msnetobj.dll
[2015.03.10 23:27:41 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2015.03.10 23:27:41 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe
[2015.03.10 23:27:40 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEng.dll
[2015.03.10 23:27:40 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcadm.dll
[2015.03.10 23:27:39 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AUDIOKSE.dll
[2015.03.10 23:27:39 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll
[2015.03.10 23:27:39 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appidpolicyconverter.exe
[2015.03.10 23:27:39 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe
[2015.03.10 23:27:39 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfps.dll
[2015.03.10 23:27:39 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appidapi.dll
[2015.03.10 23:27:39 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rrinstaller.exe
[2015.03.10 23:27:39 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appidapi.dll
[2015.03.10 23:27:39 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rrinstaller.exe
[2015.03.10 23:27:39 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmmsp.dll
[2015.03.10 23:27:38 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDump.dll
[2015.03.10 23:27:38 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setbcdlocale.dll
[2015.03.10 23:27:38 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srclient.dll
[2015.03.10 23:27:38 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2015.03.10 23:27:38 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfpmp.exe
[2015.03.10 23:27:38 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfpmp.exe
[2015.03.10 23:27:38 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appidcertstorecheck.exe
[2015.03.10 23:27:38 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcawrk.exe
[2015.03.10 23:27:38 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcalua.exe
[2015.03.10 23:27:37 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwmp.dll
[2015.03.10 23:27:37 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcaevts.dll
[2015.03.10 23:27:37 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwmp.dll
[2015.03.10 23:27:37 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll
[2015.03.10 23:27:37 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apisetschema.dll
[2015.03.10 23:27:37 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdxm.ocx
[2015.03.10 23:27:37 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxmasf.dll
[2015.03.10 23:27:37 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdxm.ocx
[2015.03.10 23:27:37 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxmasf.dll
[2015.03.10 23:27:36 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2015.03.10 23:27:36 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2015.03.10 23:27:35 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mferror.dll
[2015.03.10 23:27:35 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mferror.dll
[2015.03.10 23:27:14 | 001,461,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2015.03.10 23:27:14 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2015.03.10 23:27:13 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2015.03.10 23:27:13 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\auditpol.exe
[2015.03.10 23:27:13 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\auditpol.exe
[2015.03.10 23:27:13 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2015.03.10 23:27:13 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2015.03.10 23:27:12 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adtschema.dll
[2015.03.10 23:27:12 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adtschema.dll
[2015.03.10 23:27:12 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msaudite.dll
[2015.03.10 23:27:12 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msaudite.dll
[2015.03.10 23:27:12 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msobjs.dll
[2015.03.10 23:27:12 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msobjs.dll
[2015.03.10 23:27:07 | 001,113,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2015.03.10 23:27:07 | 001,067,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctf.dll
[2015.03.10 23:27:07 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ubpm.dll
[2015.03.10 23:27:07 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ubpm.dll
[2015.03.10 23:27:07 | 000,162,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2015.03.10 23:27:07 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys
[2015.03.10 23:27:06 | 001,190,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2015.03.10 23:27:05 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2015.03.10 23:27:05 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2015.03.08 12:51:49 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\JGoodies
[2015.03.08 12:26:22 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDiskReport 1.4.0
[2015.03.08 12:26:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDiskReport 1.4.0
[2015.03.08 12:22:38 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks
[2015.03.04 21:59:12 | 000,000,000 | ---D | C] -- C:\ProgramData\EpicScale
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2015.03.29 10:33:58 | 000,000,948 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015.03.29 10:26:08 | 000,000,952 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015.03.29 10:25:18 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015.03.28 18:27:31 | 002,571,982 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2015.03.28 18:27:31 | 001,308,738 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2015.03.28 18:27:31 | 000,784,614 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2015.03.28 18:27:31 | 000,747,042 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2015.03.28 18:27:31 | 000,006,224 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2015.03.28 18:21:27 | 000,024,576 | ---- | M] () -- C:\Windows\SysNative\umstartup.etl
[2015.03.28 16:31:06 | 000,027,648 | ---- | M] () -- C:\Windows\SysNative\umstartup000.etl
[2015.03.28 16:31:05 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\spu_storage.bin
[2015.03.28 09:49:38 | 000,000,279 | ---- | M] () -- C:\Windows\wininit.ini
[2015.03.28 09:21:18 | 000,002,255 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015.03.26 20:42:29 | 020,566,462 | ---- | M] () -- C:\Users\Jerzi\Desktop\Svatba Hali+Ma2.pxc
[2015.03.26 20:38:42 | 068,271,057 | ---- | M] () -- C:\Users\Jerzi\Desktop\Svatba Hali+Ma (2).pxc
[2015.03.26 20:25:57 | 233,526,727 | ---- | M] () -- C:\Users\Jerzi\Desktop\Svatba Hali+Ma.pxc
[2015.03.26 19:53:02 | 000,000,959 | ---- | M] () -- C:\Users\Public\Desktop\TeamViewer 10.lnk
[2015.03.26 16:03:24 | 000,017,296 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015.03.26 16:03:24 | 000,017,296 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015.03.26 14:31:57 | 000,001,050 | ---- | M] () -- C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
[2015.03.26 14:29:00 | 000,002,139 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth Pro.lnk
[2015.03.24 07:50:31 | 004,896,664 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2015.03.23 21:05:03 | 075,866,816 | ---- | M] () -- C:\Users\Jerzi\Desktop\ProShow Slideshow.pxc
[2015.03.23 20:37:18 | 000,001,026 | ---- | M] () -- C:\Users\Public\Desktop\ProShow Producer.lnk
[2015.03.22 21:19:09 | 000,441,728 | ---- | M] (Avast Software s.r.o.) -- C:\Windows\SysNative\drivers\aswSP.sys
[2015.03.22 21:19:09 | 000,364,472 | ---- | M] (Avast Software s.r.o.) -- C:\Windows\SysNative\aswBoot.exe
[2015.03.22 21:19:09 | 000,268,640 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2015.03.22 21:19:09 | 000,136,752 | ---- | M] (Avast Software s.r.o.) -- C:\Windows\SysNative\drivers\aswStm.sys
[2015.03.22 21:19:09 | 000,093,528 | ---- | M] (Avast Software s.r.o.) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2015.03.22 21:19:09 | 000,088,408 | ---- | M] (Avast Software s.r.o.) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2015.03.22 21:19:09 | 000,065,736 | ---- | M] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2015.03.22 21:19:09 | 000,029,168 | ---- | M] () -- C:\Windows\SysNative\drivers\aswHwid.sys
[2015.03.22 21:19:07 | 000,043,112 | ---- | M] (Avast Software s.r.o.) -- C:\Windows\avastSS.scr
[2015.03.22 21:19:06 | 001,047,320 | ---- | M] (Avast Software s.r.o.) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2015.03.22 13:25:12 | 000,002,207 | ---- | M] () -- C:\Users\Public\Desktop\CyberLink WaveEditor 2.lnk
[2015.03.22 13:24:41 | 000,001,606 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2015.03.22 13:19:37 | 000,001,286 | ---- | M] () -- C:\Users\Public\Desktop\CyberLink PowerDirector 13 (64-bit).lnk
[2015.03.22 12:06:12 | 000,607,256 | ---- | M] (proDAD GmbH) -- C:\Windows\SysNative\prodad-codec.dll
[2015.03.22 10:29:59 | 000,375,832 | ---- | M] (proDAD GmbH) -- C:\Windows\SysNative\proDAD-PA-Support.dll
[2015.03.18 20:16:19 | 000,002,042 | ---- | M] () -- C:\Users\Public\Desktop\Google Slides.lnk
[2015.03.18 20:16:19 | 000,002,040 | ---- | M] () -- C:\Users\Public\Desktop\Google Sheets.lnk
[2015.03.18 20:16:19 | 000,002,030 | ---- | M] () -- C:\Users\Public\Desktop\Google Docs.lnk
[2015.03.14 20:51:46 | 000,001,917 | ---- | M] () -- C:\Users\Jerzi\Desktop\ACE Player.lnk
[2015.03.11 20:58:57 | 005,013,451 | ---- | M] () -- C:\Users\Jerzi\Desktop\disk.jdr
[2015.03.11 06:06:14 | 000,677,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\generaltel.dll
[2015.03.11 06:06:05 | 000,760,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\invagent.dll
[2015.03.11 06:06:02 | 000,414,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\devinv.dll
[2015.03.11 06:06:00 | 000,943,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\appraiser.dll
[2015.03.11 06:05:59 | 000,227,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll
[2015.03.11 06:05:59 | 000,192,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aepic.dll
[2015.03.11 06:05:59 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\acmigration.dll
[2015.03.11 06:02:07 | 001,107,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
[2015.03.08 12:51:48 | 000,001,232 | ---- | M] () -- C:\Users\Jerzi\Desktop\JDiskReport.lnk
[2015.03.08 12:48:47 | 000,007,607 | ---- | M] () -- C:\Users\Jerzi\AppData\Local\resmon.resmoncfg
[2015.03.08 12:31:28 | 000,000,156 | ---- | M] () -- C:\Windows\Reimage.ini
[2015.03.06 07:42:35 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2015.03.06 07:42:35 | 000,029,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2015.03.06 07:42:33 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2015.03.06 07:42:29 | 000,309,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2015.03.06 07:42:27 | 001,461,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2015.03.06 07:41:31 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\auditpol.exe
[2015.03.06 07:39:16 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msobjs.dll
[2015.03.06 07:38:57 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msaudite.dll
[2015.03.06 07:36:56 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\adtschema.dll
[2015.03.06 07:09:31 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\auditpol.exe
[2015.03.06 07:07:50 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msobjs.dll
[2015.03.06 07:07:43 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msaudite.dll
[2015.03.06 07:06:20 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\adtschema.dll
[2015.03.04 21:59:11 | 000,000,851 | ---- | M] () -- C:\Users\Jerzi\Desktop\µTorrent.lnk
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

========== Files Created - No Company Name ==========

[2015.03.28 09:49:38 | 000,000,279 | ---- | C] () -- C:\Windows\wininit.ini
[2015.03.28 09:21:18 | 000,002,255 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015.03.26 20:38:48 | 020,566,462 | ---- | C] () -- C:\Users\Jerzi\Desktop\Svatba Hali+Ma2.pxc
[2015.03.26 20:34:27 | 233,526,727 | ---- | C] () -- C:\Users\Jerzi\Desktop\Svatba Hali+Ma.pxc
[2015.03.26 20:29:03 | 075,866,816 | ---- | C] () -- C:\Users\Jerzi\Desktop\ProShow Slideshow.pxc
[2015.03.26 14:31:57 | 000,001,050 | ---- | C] () -- C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
[2015.03.26 14:31:57 | 000,001,050 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
[2015.03.26 14:29:00 | 000,002,139 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth Pro.lnk
[2015.03.24 09:56:03 | 068,271,057 | ---- | C] () -- C:\Users\Jerzi\Desktop\Svatba Hali+Ma (2).pxc
[2015.03.24 07:49:22 | 000,000,971 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
[2015.03.24 07:49:22 | 000,000,959 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer 10.lnk
[2015.03.23 20:37:18 | 000,001,026 | ---- | C] () -- C:\Users\Public\Desktop\ProShow Producer.lnk
[2015.03.22 14:27:46 | 000,305,772 | ---- | C] () -- C:\Users\Jerzi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\update.js
[2015.03.22 13:25:12 | 000,002,207 | ---- | C] () -- C:\Users\Public\Desktop\CyberLink WaveEditor 2.lnk
[2015.03.22 13:24:41 | 000,001,606 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2015.03.22 13:23:55 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2015.03.22 13:19:37 | 000,001,286 | ---- | C] () -- C:\Users\Public\Desktop\CyberLink PowerDirector 13 (64-bit).lnk
[2015.03.14 20:51:46 | 000,001,917 | ---- | C] () -- C:\Users\Jerzi\Desktop\ACE Player.lnk
[2015.03.11 20:58:54 | 005,013,451 | ---- | C] () -- C:\Users\Jerzi\Desktop\disk.jdr
[2015.03.08 12:29:25 | 000,000,156 | ---- | C] () -- C:\Windows\Reimage.ini
[2015.03.08 12:26:22 | 000,001,232 | ---- | C] () -- C:\Users\Jerzi\Desktop\JDiskReport.lnk
[2014.11.20 22:35:00 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2014.11.18 00:35:01 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2014.04.04 19:52:16 | 000,200,704 | ---- | C] () -- C:\Windows\SysWow64\HsMgr.exe
[2014.04.04 19:52:16 | 000,000,048 | ---- | C] () -- C:\Windows\SysWow64\cmasiop.ini
[2014.04.04 18:58:08 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\VmixP8.dll
[2014.04.04 18:58:00 | 000,083,332 | ---- | C] () -- C:\Windows\Cmicnfgp.ini.cfl
[2014.04.04 18:57:47 | 000,004,929 | ---- | C] () -- C:\Windows\Cmicnfgp.ini.cfg
[2014.04.04 18:57:47 | 000,000,890 | ---- | C] () -- C:\Windows\Cmicnfgp.ini.imi
[2014.03.26 22:50:01 | 000,007,607 | ---- | C] () -- C:\Users\Jerzi\AppData\Local\resmon.resmoncfg
[2014.01.30 14:08:20 | 000,181,760 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2014.01.30 14:08:20 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2014.01.22 21:08:24 | 000,002,892 | ---- | C] () -- C:\Windows\SysWow64\audcon.sys
[2014.01.22 21:07:19 | 000,000,051 | ---- | C] () -- C:\Windows\SysWow64\SYNSOPOS.exe.cfg
[2014.01.22 21:07:18 | 000,086,016 | ---- | C] () -- C:\Windows\SysWow64\SYNSOPOS.exe
[2014.01.16 20:36:27 | 000,007,168 | ---- | C] () -- C:\Users\Jerzi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013.10.03 20:25:33 | 000,109,104 | ---- | C] () -- C:\Users\Jerzi\AppData\Roaming\PhotoStage.dmp
[2013.10.02 18:20:24 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2013.10.02 18:20:24 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2013.10.02 03:02:08 | 000,049,966 | ---- | C] () -- C:\Windows\Ascd_log.ini
[2013.10.02 03:01:32 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2013.10.02 03:01:29 | 000,035,804 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2013.10.02 02:47:45 | 001,557,940 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013.10.01 21:23:21 | 000,218,200 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2013.08.31 01:47:50 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe
[2013.08.31 01:47:50 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe
[2010.06.29 15:04:18 | 000,001,772 | ---- | C] () -- C:\ProgramData\cfSB1095.ini

========== ZeroAccess Check ==========

[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2015.02.13 07:22:33 | 014,177,280 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2015.02.13 07:26:18 | 012,875,264 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2015.03.15 16:09:22 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\.ACEStream
[2015.03.14 20:51:44 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\ACEStream
[2014.12.18 12:55:45 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\AMD
[2013.10.03 18:40:47 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Ashampoo
[2014.04.04 19:52:25 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\ASUS
[2014.01.26 23:23:29 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\AVAST Software
[2014.10.17 10:16:22 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Convert Audio Free
[2015.01.04 12:21:14 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\DAEMON Tools Lite
[2014.11.23 14:28:06 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Downloaded Installations
[2014.10.17 10:17:11 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\freemkvtomp4converter
[2013.10.01 21:28:48 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\GHISLER
[2014.09.23 19:12:27 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Graphisoft
[2014.09.23 19:11:53 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Install.GS
[2015.03.08 12:51:49 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\JGoodies
[2014.12.21 19:26:25 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\library_dir
[2014.12.23 12:18:21 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Marine Aquarium 3
[2015.03.23 20:36:29 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Netscape
[2015.03.23 20:36:44 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Photodex
[2015.03.22 13:20:19 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\proDAD
[2013.12.19 22:27:22 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Seznam.cz
[2014.01.13 18:55:23 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\SketchUp
[2013.10.01 23:19:08 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2015.03.28 09:11:47 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Steinberg
[2014.11.17 10:16:10 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\TeamViewer
[2015.03.22 17:52:17 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Titler
[2014.08.22 18:06:06 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Tropico 5
[2013.10.20 19:36:19 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\TS3Client
[2015.03.29 11:02:32 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\uTorrent
[2013.10.13 21:25:05 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Wargaming.net
[2013.11.17 20:12:14 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\WTouch

========== Purity Check ==========



< End of report >

[jhalamka]

OTL Extras logfile created on: 29.3.2015 10:55:51 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jerzi\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

7,90 Gb Total Physical Memory | 5,80 Gb Available Physical Memory | 73,44% Memory free
11,81 Gb Paging File | 9,23 Gb Available in Paging File | 78,14% Paging File free
Paging file location(s): c:\pagefile.sys 1000 4000e:\pagef [Binary data over 200 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 33,52 Gb Total Space | 1,40 Gb Free Space | 4,17% Space Free | Partition Type: NTFS
Drive D: | 100,00 Mb Total Space | 80,24 Mb Free Space | 80,24% Space Free | Partition Type: NTFS
Drive E: | 78,17 Gb Total Space | 11,21 Gb Free Space | 14,34% Space Free | Partition Type: NTFS
Drive G: | 97,56 Gb Total Space | 97,46 Gb Free Space | 99,90% Space Free | Partition Type: NTFS
Drive H: | 833,86 Gb Total Space | 91,97 Gb Free Space | 11,03% Space Free | Partition Type: NTFS

Computer Name: JERZI-PC | User Name: Jerzi | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- Reg Error: Key error. File not found
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- Reg Error: Key error. File not found

[HKEY_USERS\S-1-5-21-798018489-438667052-1584509140-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- Reg Error: Key error.
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- H:\Program Files\Adobe\Adobe Bridge CC (64 Bit)\Bridge.exe "%L" (Adobe Systems Incorporated)
Directory [CEWE prezentace] -- "H:\Program Files (x86)\Fotolab\Fotolab Fotosvet\CEWE prezentace.exe" -d "%1" ()
Directory [CEWE prezentace fotografií] -- "h:\Program Files (x86)\Fotolab\Fotolab Fotosvet\CEWE prezentace fotografií.exe" -d "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Fotolab Fotosvet] -- "H:\Program Files (x86)\Fotolab\Fotolab Fotosvet\Fotolab Fotosvet.exe" "%1" ()
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- Reg Error: Key error.
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- Reg Error: Key error.
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- H:\Program Files\Adobe\Adobe Bridge CC (64 Bit)\Bridge.exe "%L" (Adobe Systems Incorporated)
Directory [CEWE prezentace] -- "H:\Program Files (x86)\Fotolab\Fotolab Fotosvet\CEWE prezentace.exe" -d "%1" ()
Directory [CEWE prezentace fotografií] -- "h:\Program Files (x86)\Fotolab\Fotolab Fotosvet\CEWE prezentace fotografií.exe" -d "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Fotolab Fotosvet] -- "H:\Program Files (x86)\Fotolab\Fotolab Fotosvet\Fotolab Fotosvet.exe" "%1" ()
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- Reg Error: Key error.
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"h:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" = h:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access -- (Safer-Networking Ltd.)
"h:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" = h:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service -- (Safer-Networking Ltd.)
"h:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" = h:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater -- (Safer-Networking Ltd.)
"h:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" = h:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service -- (Safer-Networking Ltd.)
"h:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" = h:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access -- (Safer-Networking Ltd.)
"h:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" = h:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service -- (Safer-Networking Ltd.)
"h:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" = h:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater -- (Safer-Networking Ltd.)
"h:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" = h:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service -- (Safer-Networking Ltd.)


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0D00577B-8180-46D5-901B-29C3D09B32A0}" = lport=10243 | protocol=6 | dir=in | app=system |
"{16BCB460-6934-4BF4-86C7-CA1ACD56D17A}" = lport=2869 | protocol=6 | dir=in | app=system |
"{17D4CDB0-0039-4E80-9EF5-E93E4DAF60A9}" = lport=139 | protocol=6 | dir=in | app=system |
"{1BBBAA68-2AD8-4D8C-8DD9-91C19112DE49}" = rport=10243 | protocol=6 | dir=out | app=system |
"{216F7E6A-A2E2-4772-9C7C-7B90A0A7AD91}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{21F83827-4BA2-4965-919A-EB576C4F96F9}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{270EFE89-BC25-4DEC-9C54-E9F801ECE488}" = rport=137 | protocol=17 | dir=out | app=system |
"{301BFD02-3D57-4F91-A240-8E9B9AF31209}" = lport=138 | protocol=17 | dir=in | app=system |
"{49CE020C-7DF6-469A-BAE9-D30286166637}" = lport=445 | protocol=6 | dir=in | app=system |
"{49DC91E0-BFFC-44CE-A139-13C615A2D56C}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4D19B713-F089-4AA2-BC24-261E1DE75B83}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{4FA63AC3-F56E-4F68-825D-7A81DAEFE741}" = lport=137 | protocol=17 | dir=in | app=system |
"{52CA7419-9E85-4E51-86D3-6E8D108EFB7B}" = rport=139 | protocol=6 | dir=out | app=system |
"{533E5148-3785-4D0E-A008-5535B0A12D5E}" = lport=20014 | protocol=17 | dir=in | name=wot2 |
"{5C618158-CD43-4D05-96B5-AC36C1159445}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{60460F35-8D96-4488-85A0-E6C8FB4A8548}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7DD37A75-F25A-48B0-B3AF-0B8BA660F9D8}" = rport=138 | protocol=17 | dir=out | app=system |
"{8EE72B39-21A6-4EB6-A7B6-FA63DC3069AD}" = lport=3128 | protocol=6 | dir=in | name=wot |
"{9DA6E408-16F0-4F83-A483-36F884594446}" = rport=445 | protocol=6 | dir=out | app=system |
"{9F228F02-05EE-486F-AA37-CD02B48A7B61}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{ABC92167-6EEE-4D01-ADAB-3FC0EFDAD966}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{AC924136-2A96-4EE9-9E70-80BC58C16F7D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{D06DDE66-51E1-48E7-AB1A-A83475D75A98}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{EB6155B8-34F2-41F7-97E3-279C59FD968C}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0CBCA351-5BBA-49FF-A900-49D5AC3BA9FE}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{10EAF27A-F575-4451-B55F-D43D578FDD92}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{15C3F23C-5B27-4AE9-9088-CED2B0A4EFD7}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{16F0B4B8-9288-4B9E-92D5-952FC9E871B0}" = protocol=17 | dir=in | app=c:\users\jerzi\appdata\roaming\utorrent\utorrent.exe |
"{194B5361-54E0-4122-B58A-D28C54CB3D28}" = protocol=6 | dir=in | app=h:\program files (x86)\winamp\winamp.exe |
"{1A3FAFB8-9DD2-41AC-B32E-8D87CE557E60}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1B5A5BAC-9593-45C6-9143-C6657E1C22A1}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{1C666CFE-F55B-4F41-84FB-7BF08AAB4035}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{254698C2-CE56-45E9-B937-7CC0429EB9DC}" = protocol=17 | dir=in | app=h:\program files (x86)\steam\steamapps\common\assettocorsa\assettocorsa.exe |
"{2E99BD69-480F-47D6-8C1D-F765B531F8BC}" = protocol=6 | dir=out | app=system |
"{31FF33EA-7ED0-40A2-9F5A-3BFA824D60FE}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{33197372-3CB5-4465-B581-1EA081D76AFA}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\teamviewer.exe |
"{33FFB330-191E-4B93-87B7-15CFD60AD23A}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{3BA40033-6AC6-48DB-9218-B616D6EAD1A6}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\teamviewer.exe |
"{3C5BFBB8-F817-446F-8303-6DB29304B2DC}" = protocol=6 | dir=in | app=h:\program files (x86)\steam\bin\steamwebhelper.exe |
"{3D58E358-7B11-4221-B868-E3DB652680F1}" = protocol=6 | dir=in | app=h:\program files (x86)\microsoft games\age of empires iii\autopatcher2.exe |
"{47F95545-FD62-4403-8702-C6187F8F5AB4}" = protocol=6 | dir=in | app=h:\program files (x86)\microsoft games\age of empires iii\age3.exe |
"{4AD441C6-ED79-40E5-A798-9968341FAD85}" = protocol=17 | dir=in | app=c:\users\jerzi\appdata\roaming\svchost.exe |
"{4D1B21FD-E598-4BEB-BFB5-3ECDC884C1CE}" = protocol=17 | dir=in | app=h:\program files (x86)\microsoft games\age of empires iii\age3.exe |
"{520AC637-36A7-4DE1-8E46-E6D9D94A76E8}" = protocol=17 | dir=in | app=h:\program files (x86)\microsoft games\age of empires iii\age3launcher.exe |
"{5776E6CF-4BDF-4E1A-A29F-6968FFCCC5B8}" = protocol=6 | dir=in | app=h:\program files (x86)\microsoft games\age of empires iii\autopatcher.exe |
"{5D8F1783-E200-43D1-929E-841EAFBA07EB}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{66AD1C8D-FA02-4309-BEE4-B2BAC6DE4A2A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6FD317A6-07D6-41C9-A008-E3C10AE5095F}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{70E2DAA5-221B-4697-AF2A-9A2499F75592}" = protocol=17 | dir=in | app=h:\program files (x86)\microsoft games\age of empires iii\age3launcher.exe |
"{76B4C815-1BDC-4121-B4F1-CB7E975C97E6}" = protocol=6 | dir=in | app=c:\users\jerzi\appdata\roaming\utorrent\utorrent.exe |
"{7A239369-3816-4584-A8CE-473F7715101B}" = protocol=6 | dir=in | app=h:\program files (x86)\steam\steam.exe |
"{8015009A-4ADB-4C94-8B18-10F83B797737}" = dir=in | app=e:\program files\adobe\adobe photoshop lightroom 5.2\lightroom.exe |
"{80801EFF-F876-46E5-A57A-041583526461}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{8514D67C-FF77-4AD3-B3DE-48D1132C1E7D}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\teamviewer_service.exe |
"{9084EE46-E22F-465F-A1E9-14600E2C58DC}" = protocol=6 | dir=in | app=c:\users\jerzi\appdata\roaming\acestream\engine\ace_engine.exe |
"{921C8DBC-8A54-4738-9795-EADFB6737516}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{9D6004D3-98B8-4CFF-8061-1887B66EFF1F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A1230E51-8356-4751-BCA3-A8457BDB360E}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{A42D3836-2AD3-47E2-B663-CB27A7B7DACF}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{B0893EB1-9FC4-4489-87A6-DF302FDB1A05}" = protocol=17 | dir=in | app=h:\program files (x86)\microsoft games\age of empires iii\autopatcher2.exe |
"{B32B095A-C5E9-41C3-B8A5-691BA517D553}" = protocol=6 | dir=in | app=h:\program files (x86)\microsoft games\age of empires iii\age3launcher.exe |
"{B552A891-0D97-4763-91CF-B2984B47BFAE}" = protocol=6 | dir=in | app=h:\program files (x86)\steam\steamapps\common\assettocorsa\assettocorsa.exe |
"{B77F20F1-095F-44A0-A5FF-F515E6D972F5}" = protocol=6 | dir=in | app=c:\program files\avast software\avast\ng\vbox\aswfe.exe |
"{BC6B7084-9250-427E-A239-51C57C0212BF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{D293BF56-3460-413E-8CCE-01E22B2B78EE}" = protocol=17 | dir=in | app=h:\program files (x86)\microsoft games\age of empires iii\autopatcher.exe |
"{D2F4F456-99A6-465B-80D6-98E6FA60213B}" = protocol=17 | dir=in | app=c:\program files\avast software\avast\ng\vbox\aswfe.exe |
"{D4AD7C64-B118-4AD7-A06D-8ABF6F3B087A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D76EBAE2-0854-409A-8413-0A3AB94EAF80}" = protocol=6 | dir=in | app=c:\users\jerzi\appdata\roaming\svchost.exe |
"{DD46E956-6E1D-409F-9F65-449E03775AB4}" = protocol=17 | dir=in | app=h:\program files (x86)\steam\bin\steamwebhelper.exe |
"{DE8CCC4A-B65A-41DA-B31F-BC6F976AAAB3}" = dir=in | app=h:\program files (x86)\photodex\proshow gold\proshow.exe |
"{DF49AB00-97D3-4D01-BFD2-42557E784B1D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E059B31C-E294-4D92-BB80-2094608C83D1}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E1085D8C-F26A-4999-B2D7-409542BB4C3A}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{E1EFA868-E718-4B1C-BEBA-0DAE73928B7F}" = dir=out | app=e:\program files\adobe\adobe photoshop lightroom 5.2\lightroom.exe |
"{E4FA7C9B-FCCC-4322-A92D-432FCF4F760B}" = protocol=17 | dir=in | app=h:\program files (x86)\winamp\winamp.exe |
"{E512F1AD-2F5C-427A-AFE7-358F64C84B2F}" = protocol=17 | dir=in | app=h:\program files (x86)\steam\steam.exe |
"{E902FE3F-CB47-46F2-A3E1-456AF13093AE}" = protocol=6 | dir=in | app=h:\program files (x86)\microsoft games\age of empires iii\age3launcher.exe |
"{F3E93FC7-5850-4679-86D1-43C817E24836}" = dir=out | app=h:\program files (x86)\photodex\proshow gold\proshow.exe |
"{F4C5F75E-3C0D-47C8-8BA5-54684B712370}" = protocol=17 | dir=in | app=c:\users\jerzi\appdata\roaming\acestream\engine\ace_engine.exe |
"{F6F00D2C-0253-416B-9F75-239E01DBE2E1}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{FE96AE34-C196-4BAD-BA0D-8FF3F9562D16}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\teamviewer_service.exe |
"TCP Query User{087CFB45-8706-41AA-BCA0-DD1EE9C992CB}E:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=e:\games\world_of_tanks\wotlauncher.exe |
"TCP Query User{1313CFF3-46EE-49C8-8D4C-EB8E6EF230C2}C:\users\jerzi\appdata\roaming\acestream\engine\ace_engine.exe" = protocol=6 | dir=in | app=c:\users\jerzi\appdata\roaming\acestream\engine\ace_engine.exe |
"TCP Query User{400F243C-C975-404D-ABF1-09D8F65991A4}E:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=e:\games\world_of_tanks\worldoftanks.exe |
"TCP Query User{AFB2B161-FF76-4FD8-BE82-1E459885DC6E}H:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe" = protocol=6 | dir=in | app=h:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe |
"UDP Query User{2257D02E-5313-4D98-A8D6-9B7CD0DE33EF}C:\users\jerzi\appdata\roaming\acestream\engine\ace_engine.exe" = protocol=17 | dir=in | app=c:\users\jerzi\appdata\roaming\acestream\engine\ace_engine.exe |
"UDP Query User{3A6031B6-129A-4AE1-B7B4-26BE444F98BA}E:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=e:\games\world_of_tanks\wotlauncher.exe |
"UDP Query User{AB1CCCBE-42A8-4C2A-9A91-02AE527ADE7F}H:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe" = protocol=17 | dir=in | app=h:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe |
"UDP Query User{DE0785C0-8BFC-43F4-BDAD-6DC7B42D4707}E:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=e:\games\world_of_tanks\worldoftanks.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1444D2EE-C7AD-44A8-844F-2634B49353D1}" = Logitech Gaming Software 5.10
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26784146-6E05-3FF9-9335-786C7C0FB5BE}" = Microsoft .NET Framework 4.5.2
"{2C637DB1-3E0A-4089-8366-C6C0B01E5C2B}" = AMD Steady Video Plug-In
"{2DFD8316-9EF1-3210-908C-4CB61961C1AC}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729
"{37B8F9C7-03FB-3253-8781-2517C99D7C00}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
"{426582A8-202F-D13C-8BD5-F00551BAFC93}" = AMD Wireless Display v3.0
"{461CA979-8990-39B7-ECCC-A378CBD6A452}" = AMD Fuel
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{54E6C675-3AD4-42E4-957F-31666ABF1603}" = Adobe Photoshop Lightroom 5.2 64-bit
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8F2415FA-72F2-F029-0450-4EB2FAE484C5}" = AMD Accelerated Video Transcoding
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5.2 (čeština)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{A2AC0D43-9788-B1BD-B2A8-EFC758916BB1}" = AMD Drag and Drop Transcoding
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{C068588D-7275-E9E0-9158-2D57BA13FDFD}" = AMD Wireless Display v3.0
"{C16CD4C0-48EE-0F40-C9FD-0778EAF73FBD}" = AMD Wireless Display v3.0
"{C48AF3CF-C632-3C19-838E-7DAB7283D46A}" = Microsoft .NET Framework 4.5.2 (CSY)
"{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
"{D5A2E1F8-66E3-FBB5-7F83-78D7EFE0E347}" = ACP Application
"{DBAFD1B4-DDC5-DD01-D1C4-E7AEB5139097}" = AMD Fuel
"{F2A7CE36-57BF-5C86-952D-90DBF3746D82}" = AMD Catalyst Install Manager
"{F60D5FAB-2C7B-A299-F839-05A7F7D9CE2C}" = ccc-utility64
"{F7FE0989-5F4C-3499-B78F-A63E942D100B}" = ccc-utility64
"CCleaner" = CCleaner
"C-Media Oxygen HD Audio Driver" = ASUS Xonar DX Audio Driver
"proDAD-Adorage-3.0" = proDAD Adorage 3.0 (64bit)
"Totalcmd64" = Total Commander 64-bit (Remove or Repair)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{050d4fc8-5d48-4b8f-8972-47c82c46020f}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0FE3F13F-8A37-46BA-F973-762F81E833C3}" = CCC Help French
"{11087D24-567D-7D88-69C6-D7A08B5F4C47}" = Catalyst Control Center - Branding
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{1543E140-FADF-9E99-D388-4435C2FBC55E}" = CCC Help Chinese Standard
"{1A4C46F0-1DCE-B7FF-753E-1BFFD38CAD11}" = CCC Help Spanish
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype™ 7.2
"{26A24AE4-039D-4CA4-87B4-2F83217051FF}" = Java 7 Update 55
"{28E3970E-5D53-A59D-84B6-B2BB7637553A}" = Catalyst Control Center Localization All
"{2C9A2369-162D-7AD7-D50F-5F59CEC8A046}" = CCC Help Danish
"{2D61415B-F99C-8161-F452-760B6E441428}" = CCC Help Hungarian
"{31EF3584-9232-F8F4-4BAD-EED7653090D3}" = CCC Help Turkish
"{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}" = CyberLink WaveEditor 2
"{339647D6-A277-974F-FF29-83CA6284559B}" = CCC Help German
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{355E39A9-6C8E-CB2A-1210-F39569A625EC}" = CCC Help Swedish
"{359F8007-6486-429C-A8C5-D67F6897C88C}" = Adobe Bridge CC (64 Bit)
"{3CF111C7-92E1-AD47-B521-A153921D0FE3}" = CCC Help Dutch
"{408B1AE6-D09B-74DE-A38B-96B74CCECC34}" = CCC Help Hungarian
"{44FC61F0-2F8A-11E3-8CAE-B8AC6F97B88E}" = Google Earth Pro
"{45160C56-61F6-468D-A5B0-9FAE2C3E68D6}" = Catalyst Control Center - Branding
"{48614A23-EF39-FA3B-BA1C-115F83993B19}" = CCC Help Portuguese
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4BD8FB0D-9407-429D-C412-FAE0A318A8AE}" = CCC Help Polish
"{4C19EF63-EA64-44C9-A7CD-1461D228B971}" = ASUS PMP Lite
"{4D594F78-0C6D-1442-61CC-94D735FEC05D}" = CCC Help English
"{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{5958C669-28BF-D667-A004-E6FBF448027D}" = CCC Help Spanish
"{5A67D2EA-FB70-4033-A6F3-606AD85B2015}_is1" = Driver Sweeper verze 3.2.0
"{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}" = Apple Application Support
"{5E57EF20-E146-9911-8AAE-E6665AE0B536}" = AMD Catalyst Control Center
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}" = Asmedia ASM106x SATA Host Controller Driver
"{637B1239-84B7-0B0F-2549-7020CA57C831}" = CCC Help Thai
"{6AE0A655-9BB8-460E-1956-ED37E3B221FA}" = CCC Help Greek
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6B254D2F-6F6F-5455-DD3B-E71E5C1C0C9A}" = AMD Catalyst Control Center
"{6C36881B-0E51-4231-9D02-BF2149664D34}" = Google Drive
"{70F8B183-99EB-4304-BA35-080E2DFFD2A3}" = Age of Empires III
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7481E13B-EC16-1B14-0E32-E88165CD4C57}" = Catalyst Control Center Graphics Previews Common
"{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}" = Adobe Photoshop CS6
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7A59840D-8F35-A994-427B-822314E81AAF}" = CCC Help Chinese Traditional
"{7ABA4B54-3672-0548-C1CC-97405F767061}" = CCC Help Russian
"{7B228E0D-FFB9-A3D0-42C4-1A90D9286F8E}" = CCC Help Japanese
"{7FE73251-50FA-E864-67EB-19C4BC7AA1C9}" = CCC Help Portuguese
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{894CBED0-8225-D59B-5632-D01B14C6D520}" = CCC Help Norwegian
"{8BD7C51C-0CC4-3E28-CFDC-F7D4C5583783}" = CCC Help Finnish
"{8D0D61A4-B3DE-CBB6-7425-C2BB4D8D8C1A}" = CCC Help English
"{8ECCC07B-83E3-3877-26DF-815CD2B30749}" = CCC Help Italian
"{900FD4B9-9C27-D907-36E7-E9CCF170E2FC}" = Catalyst Control Center InstallProxy
"{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1" = Ashampoo Burning Studio 6 FREE v.6.84
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{96903DF6-228F-4ED6-660B-956DE8D43981}" = CCC Help Russian
"{988949CE-DE9A-D187-A010-22B9085FB813}" = CCC Help Swedish
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B798FEC-837B-84BF-D690-D4D5EC1CBD53}" = CCC Help Italian
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A85092B2-8FB5-5A8C-B27A-69A3D78979D8}" = CCC Help Korean
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-0804-1033-1959-001802114130}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.10) - Czech
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B1977E93-5FC0-0BA4-2D5A-D3E69870C7D4}" = CCC Help Chinese Traditional
"{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1" = Spybot - Search & Destroy
"{B4A3B8BE-4953-064E-E1FD-8D3AFCF58A07}" = CCC Help Chinese Standard
"{B67BAFBA-4C9F-48FA-9496-933E3B255044}" = QuickTime
"{BA362E17-3164-CFA3-A1D7-A8CECB20D56C}" = Catalyst Control Center Graphics Previews Common
"{BA385AFC-00B1-417C-8C20-74B996EF3AF0}" = CyberLink PowerDirector 13
"{BB939DE5-2680-3FE2-5B4F-C40629336C08}" = CCC Help French
"{BBC9BF50-A35D-B0C2-9117-F3CA2F6BB64A}" = CCC Help Czech
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{BE3359DF-E0AF-E1D7-FEBF-63D4D3729CC5}" = CCC Help Polish
"{BFE8FCC5-B9FE-39A2-B062-678A4D98D7CA}" = CCC Help Finnish
"{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}" = PDF Settings CS6
"{C14B79C1-2D2F-BCEB-8F25-49D91A6B2324}" = CCC Help German
"{C86A5731-2E91-63FF-14A3-1BB7FEEF9B6F}" = CCC Help Danish
"{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
"{CBE3BEFB-1514-6F68-64B5-03F83735A240}" = CCC Help Korean
"{CE8AA8D6-2186-5551-EC7F-E94919D166A6}" = CCC Help Norwegian
"{D0FD2FF9-1BE9-E729-3878-9A603B5F1529}" = Catalyst Control Center Localization All
"{D94F2DE6-55B4-B211-A381-54089BC791A0}" = CCC Help Japanese
"{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}" = Asmedia ASM104x USB 3.0 Host Controller Driver
"{EC1CBFB4-E22A-D856-31A7-665CFCC2C116}" = CCC Help Greek
"{EEFDBD75-0BD9-AC5F-8F61-903C6A19C0ED}" = CCC Help Dutch
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F5460185-E398-6A00-2ABF-3194D03C30EA}" = CCC Help Thai
"{f65db027-aff3-4070-886a-0d87064aabb1}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
"{F8360AF1-47D9-2A5C-558A-ED6F01511C71}" = Catalyst Control Center InstallProxy
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FB2EEC93-63C4-9734-FA07-D840E0219040}" = CCC Help Czech
"{FB415F81-DC5E-ED99-D2FE-3DC4D88BCA58}" = CCC Help Turkish
"{FCE0B4DE-0C22-44C9-9FFA-CE6F12746368}" = ASUS PMP Lite
"AudioCS" = Creative Audio Control Panel
"avast" = Avast Free Antivirus
"DAEMON Tools Lite" = DAEMON Tools Lite
"eLicenser Control" = eLicenser Control
"Fotolab Fotosvet" = Fotolab Fotosvet
"Fraps" = Fraps (remove only)
"Google Chrome" = Google Chrome
"InstallShield_{70F8B183-99EB-4304-BA35-080E2DFFD2A3}" = Age of Empires III
"JDiskReport 1.4.0" = JDiskReport 1.4.0
"KLiteCodecPack_is1" = K-Lite Codec Pack 10.4.0 Basic
"NewBlue Titler Pro for Windows" = NewBlue Titler Pro for Windows
"NewBlue Video Essentials for Windows" = NewBlue Video Essentials for Windows
"NewBlue Video Essentials V for Windows" = NewBlue Video Essentials V for Windows
"OpenAL" = OpenAL
"Pen Tablet Driver" = Bamboo
"Photodex Presenter" = Photodex Presenter
"ProShow Producer" = ProShow Producer
"SereneScreen Marine Aquarium 3_is1" = SereneScreen Marine Aquarium 3
"SpeedFan" = SpeedFan (remove only)
"Steam" = Steam
"Steam App 244210" = Assetto Corsa
"SubtitleWorkshop" = Subtitle Workshop 2.51
"TeamViewer" = TeamViewer 10
"VLC media player" = VLC media player
"Winamp" = Winamp
"WinRAR archiver" = WinRAR 4.20 (32-bit)

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-798018489-438667052-1584509140-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1" = World of Tanks
"ACEStream" = ACE Stream Media 2.0.13.1
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"uTorrent" = µTorrent

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 28.3.2015 2:47:34 | Computer Name = Jerzi-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces
Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu
obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota
DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error - 28.3.2015 2:47:34 | Computer Name = Jerzi-PC | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo.
První hodnota DWORD v datové oblasti obsahuje kód chyby.

Error - 28.3.2015 3:23:32 | Computer Name = Jerzi-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces
Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu
obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota
DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error - 28.3.2015 3:23:32 | Computer Name = Jerzi-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces
Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu
obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota
DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error - 28.3.2015 3:23:32 | Computer Name = Jerzi-PC | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo.
První hodnota DWORD v datové oblasti obsahuje kód chyby.

Error - 28.3.2015 12:21:29 | Computer Name = Jerzi-PC | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

Error - 28.3.2015 12:21:42 | Computer Name = Jerzi-PC | Source = TabletServicePen | ID = 0
Description =

Error - 28.3.2015 12:27:28 | Computer Name = Jerzi-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces
Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu
obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota
DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error - 28.3.2015 12:27:28 | Computer Name = Jerzi-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces
Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu
obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota
DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error - 28.3.2015 12:27:28 | Computer Name = Jerzi-PC | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo.
První hodnota DWORD v datové oblasti obsahuje kód chyby.

[ System Events ]
Error - 11.9.2014 12:53:59 | Computer Name = Jerzi-PC | Source = DCOM | ID = 10001
Description =

Error - 12.9.2014 12:50:15 | Computer Name = Jerzi-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby lmhosts bylo dosaženo časového
limitu (30000 ms).

Error - 12.9.2014 13:40:39 | Computer Name = Jerzi-PC | Source = DCOM | ID = 10001
Description =

Error - 22.9.2014 12:06:03 | Computer Name = Jerzi-PC | Source = volsnap | ID = 393252
Description = Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného
uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error - 23.9.2014 13:42:23 | Computer Name = Jerzi-PC | Source = DCOM | ID = 10001
Description =

Error - 24.9.2014 7:07:49 | Computer Name = Jerzi-PC | Source = volsnap | ID = 393252
Description = Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného
uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error - 26.9.2014 4:52:29 | Computer Name = Jerzi-PC | Source = volsnap | ID = 393252
Description = Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného
uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error - 28.9.2014 3:54:46 | Computer Name = Jerzi-PC | Source = volsnap | ID = 393252
Description = Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného
uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error - 28.9.2014 8:22:09 | Computer Name = Jerzi-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby lmhosts bylo dosaženo časového
limitu (30000 ms).

Error - 29.9.2014 14:55:45 | Computer Name = Jerzi-PC | Source = DCOM | ID = 10001
Description =


< End of report >

[Rudy]

V logu OTL chybí všechny položky, počínajíc "Custom Scans" do konce. Poprosím o jejich doplnění.

[jhalamka]

OTL logfile created on: 30.3.2015 20:44:54 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = H:\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

7,90 Gb Total Physical Memory | 5,73 Gb Available Physical Memory | 72,51% Memory free
11,81 Gb Paging File | 9,09 Gb Available in Paging File | 76,94% Paging File free
Paging file location(s): c:\pagefile.sys 1000 4000e:\pagef [Binary data over 200 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 33,52 Gb Total Space | 0,97 Gb Free Space | 2,88% Space Free | Partition Type: NTFS
Drive D: | 100,00 Mb Total Space | 80,24 Mb Free Space | 80,24% Space Free | Partition Type: NTFS
Drive E: | 78,17 Gb Total Space | 11,17 Gb Free Space | 14,28% Space Free | Partition Type: NTFS
Drive G: | 97,56 Gb Total Space | 97,46 Gb Free Space | 99,90% Space Free | Partition Type: NTFS
Drive H: | 833,86 Gb Total Space | 83,29 Gb Free Space | 9,99% Space Free | Partition Type: NTFS

Computer Name: JERZI-PC | User Name: Jerzi | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2015.03.30 20:44:05 | 000,602,112 | ---- | M] (OldTimer Tools) -- H:\Downloads\OTL.exe
PRC - [2015.03.26 14:20:30 | 001,442,384 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\uTorrent.exe
PRC - [2015.03.25 13:16:31 | 017,652,496 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\TeamViewer.exe
PRC - [2015.03.25 13:16:31 | 005,447,952 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
PRC - [2015.03.25 12:54:17 | 000,229,136 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\tv_w32.exe
PRC - [2015.03.22 21:19:30 | 005,511,352 | ---- | M] (Avast Software s.r.o.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2015.03.22 21:19:07 | 000,343,336 | ---- | M] (Avast Software s.r.o.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2015.03.14 12:12:39 | 000,809,288 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2015.02.07 03:10:11 | 000,232,264 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
PRC - [2015.01.09 12:31:28 | 009,074,440 | ---- | M] (Wargaming.net) -- E:\Games\World_of_Tanks\WoTLauncher.exe
PRC - [2014.12.19 09:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014.06.27 12:52:26 | 002,088,408 | ---- | M] (Safer-Networking Ltd.) -- h:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
PRC - [2014.06.24 11:42:12 | 004,101,576 | ---- | M] (Safer-Networking Ltd.) -- H:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
PRC - [2014.06.24 11:41:42 | 001,738,168 | ---- | M] (Safer-Networking Ltd.) -- h:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
PRC - [2014.04.25 15:12:20 | 000,171,928 | ---- | M] (Safer-Networking Ltd.) -- h:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
PRC - [2013.03.21 06:33:38 | 000,806,784 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
PRC - [2013.03.15 21:28:12 | 004,683,768 | ---- | M] (Almico Software (www.almico.com)) -- C:\Program Files (x86)\SpeedFan\speedfan.exe
PRC - [2012.12.13 09:50:42 | 002,007,040 | ---- | M] (CMedia) -- C:\Program Files\ASUS Xonar DX Audio\Customapp\AsusAudioCenter.exe
PRC - [2010.02.12 11:23:12 | 000,286,720 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
PRC - [2008.07.11 15:04:22 | 000,200,704 | ---- | M] () -- C:\Windows\SysWOW64\HsMgr.exe


========== Modules (No Company Name) ==========

MOD - [2015.03.30 20:01:31 | 000,192,512 | ---- | M] () -- C:\Users\Jerzi\AppData\Local\Temp\sfamcc00001.dll
MOD - [2015.03.30 20:01:31 | 000,158,720 | ---- | M] () -- C:\Users\Jerzi\AppData\Local\Temp\sfareca00001.dll
MOD - [2015.03.22 21:19:08 | 040,540,672 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2015.03.22 21:19:08 | 001,359,872 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libGLESv2.dll
MOD - [2015.03.22 21:19:08 | 000,212,992 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libEGL.dll
MOD - [2015.03.22 21:19:07 | 000,104,400 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\log.dll
MOD - [2015.03.22 21:19:07 | 000,081,728 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
MOD - [2015.03.14 12:12:35 | 009,278,792 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.101\pdf.dll
MOD - [2015.03.14 12:12:30 | 001,174,856 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.101\libglesv2.dll
MOD - [2015.03.14 12:12:28 | 000,080,200 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.101\libegl.dll
MOD - [2014.05.13 13:04:48 | 000,167,768 | ---- | M] () -- H:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
MOD - [2014.05.13 13:04:46 | 000,109,400 | ---- | M] () -- H:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
MOD - [2014.05.13 13:04:42 | 000,416,600 | ---- | M] () -- H:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
MOD - [2012.06.06 09:56:50 | 000,143,360 | ---- | M] () -- C:\Program Files\ASUS Xonar DX Audio\Customapp\VmixP8.dll
MOD - [2008.07.11 15:04:22 | 000,200,704 | ---- | M] () -- C:\Windows\SysWOW64\HsMgr.exe
MOD - [2007.12.17 13:05:20 | 000,323,584 | ---- | M] () -- C:\Program Files\ASUS Xonar DX Audio\Customapp\CmDevice.dll


========== Services (SafeList) ==========

SRV:64bit: - [2015.03.22 21:19:07 | 000,343,336 | ---- | M] (Avast Software s.r.o.) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2015.03.22 21:19:05 | 004,030,800 | ---- | M] (Avast Software) [On_Demand | Stopped] -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe -- (AvastVBoxSvc)
SRV:64bit: - [2014.11.21 04:12:40 | 000,244,736 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2014.11.20 22:23:06 | 000,344,064 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64bit: - [2014.11.20 22:18:44 | 000,116,224 | ---- | M] (Advanced Micro Devices) [Auto | Running] -- C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe -- (amdacpusrsvc)
SRV:64bit: - [2014.04.01 14:09:46 | 000,614,664 | ---- | M] (CyberLink) [Auto | Running] -- C:\Program Files\Cyberlink\Shared files\RichVideo64.exe -- (RichVideo64)
SRV:64bit: - [2013.05.27 07:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2012.01.23 16:30:22 | 000,233,328 | ---- | M] (DTS, Inc) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe -- (DTSAudioSvc)
SRV:64bit: - [2009.11.24 02:53:58 | 000,127,784 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\WTouch\WTouchService.exe -- (WTouchService)
SRV:64bit: - [2009.11.24 02:53:54 | 005,556,520 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Windows\SysNative\Pen_Tablet.exe -- (TabletServicePen)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2015.03.25 13:16:31 | 005,447,952 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe -- (TeamViewer)
SRV - [2015.01.02 20:45:12 | 000,315,488 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014.12.19 09:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014.09.16 23:10:54 | 000,569,024 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2014.04.11 23:08:08 | 000,103,608 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2014.03.21 00:49:18 | 000,067,224 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2014.01.30 14:57:17 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2010.02.19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2010.02.12 11:23:12 | 000,286,720 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2015.03.22 21:19:09 | 000,441,728 | ---- | M] (Avast Software s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2015.03.22 21:19:09 | 000,268,640 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2015.03.22 21:19:09 | 000,136,752 | ---- | M] (Avast Software s.r.o.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
DRV:64bit: - [2015.03.22 21:19:09 | 000,093,528 | ---- | M] (Avast Software s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2015.03.22 21:19:09 | 000,088,408 | ---- | M] (Avast Software s.r.o.) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2015.03.22 21:19:09 | 000,065,736 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2015.03.22 21:19:09 | 000,029,168 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswHwid.sys -- (aswHwid)
DRV:64bit: - [2015.03.22 21:19:06 | 001,047,320 | ---- | M] (Avast Software s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2015.03.22 21:19:05 | 000,273,824 | ---- | M] (Avast Software) [Kernel | Auto | Running] -- C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys -- (VBoxAswDrv)
DRV:64bit: - [2015.01.31 05:04:08 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2014.11.21 04:41:36 | 000,294,600 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\amdacpksd.sys -- (amdacpksd)
DRV:64bit: - [2014.11.21 04:40:00 | 018,959,360 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2014.11.21 04:08:54 | 000,589,312 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2014.06.21 19:01:22 | 000,094,720 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2014.02.11 17:36:52 | 000,059,616 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\AMD\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.3)
DRV:64bit: - [2013.12.09 21:50:03 | 000,283,064 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2013.04.11 19:21:06 | 002,734,080 | ---- | M] (C-Media Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cmudaxp.sys -- (cmudaxp)
DRV:64bit: - [2012.06.13 00:00:48 | 000,726,160 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012.01.06 10:44:12 | 000,049,760 | ---- | M] (Asmedia Technology) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\asahci64.sys -- (asahci64)
DRV:64bit: - [2011.11.03 11:10:42 | 000,395,752 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmtxhci.sys -- (asmtxhci)
DRV:64bit: - [2011.11.03 11:10:42 | 000,130,536 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmthub3.sys -- (asmthub3)
DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011.02.16 18:52:02 | 001,588,608 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ksaud.sys -- (ksaud)
DRV:64bit: - [2010.11.20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.04.27 16:57:20 | 000,016,200 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmVirHid.sys -- (WmVirHid)
DRV:64bit: - [2010.04.27 16:57:14 | 000,036,936 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmHidLo.sys -- (WmHidLo)
DRV:64bit: - [2010.04.27 16:57:12 | 000,026,440 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmBEnum.sys -- (WmBEnum)
DRV:64bit: - [2010.04.27 14:03:12 | 000,077,512 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmXlCore.sys -- (WmXlCore)
DRV:64bit: - [2010.04.27 14:02:42 | 000,043,976 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmFilter.sys -- (WmFilter)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.05.20 21:54:06 | 000,015,656 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacomvhid.sys -- (wacomvhid)
DRV:64bit: - [2007.02.16 21:12:36 | 000,012,848 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacommousefilter.sys -- (wacommousefilter)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=s ... earchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
IE - HKLM\..\SearchScopes,DefaultScope = {E9410C70-B6AE-41FF-AB71-32F4B279EA5F}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}: "URL" = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
IE - HKLM\..\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://websearch.coolsearches.info/?l=1 ... Z&unqvl=85
IE - HKLM\..\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}: "URL" = https://www.google.com/search?trackid=s ... earchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=s ... earchTerms}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
IE - HKCU\..\SearchScopes,DefaultScope = {E9410C70-B6AE-41FF-AB71-32F4B279EA5F}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKCU\..\SearchScopes\{60F5A373-9AF6-45BC-8EE1-DC71063867A8}: "URL" = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
IE - HKCU\..\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}: "URL" = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
IE - HKCU\..\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://websearch.coolsearches.info/?l=1 ... Z&unqvl=85
IE - HKCU\..\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}: "URL" = https://www.google.com/search?trackid=s ... earchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: E:\Program Files\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.55.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@photodex.com/PhotodexPresenter: C:\Program Files (x86)\Photodex Presenter\npPxPlay.dll ( )
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.0: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: E:\Program Files\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF - HKCU\Software\MozillaPlugins\@acestream.net/acestreamplugin,version=2.0.13.1: C:\Users\Jerzi\AppData\Roaming\ACEStream\player\npace_plugin.dll (Innovative Digital Technologies)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2015.03.22 21:19:09 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi\1.1408.5.2_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.21_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\koiaokdomkpjdgniimnkhgbilbjgpeak\6.8_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\

O1 HOSTS File: ([2015.03.23 20:42:53 | 000,000,975 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 cap.cyberlink.com
O1 - Hosts: 127.0.0.1 activation.cyberlink.com
O1 - Hosts: 127.0.0.1 photodex.com
O1 - Hosts: 127.0.0.1 www.photodex.com
O2:64bit: - BHO: (SteadyVideoBHO Class) - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (Avast Software s.r.o.)
O2 - BHO: (SteadyVideoBHO Class) - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (Avast Software s.r.o.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No CLSID value found.
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [Cmaudio8788] C:\Windows\Syswow64\cmicnfgp.dll (C-Media Corporation)
O4:64bit: - HKLM..\Run: [Cmaudio8788GX] C:\Windows\syswow64\HsMgr.exe ()
O4:64bit: - HKLM..\Run: [Cmaudio8788GX64] C:\Windows\system\HsMgr64.exe ()
O4:64bit: - HKLM..\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Logitech Inc.)
O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o.)
O4 - HKLM..\Run: [SDTray] h:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [update] wscript.exe //B "C:\Users\Jerzi\AppData\Local\Temp\update.js" File not found
O4 - HKCU..\Run: [ACEStream] C:\Users\Jerzi\AppData\Roaming\ACEStream\engine\ace_engine.exe ()
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKCU..\Run: [EpicScale] File not found
O4 - HKCU..\Run: [update] wscript.exe //B "C:\Users\Jerzi\AppData\Local\Temp\update.js" File not found
O4 - HKCU..\Run: [uTorrent] C:\Users\Jerzi\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
O4 - Startup: C:\Users\Jerzi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SpeedFan.lnk = C:\Program Files (x86)\SpeedFan\speedfan.exe (Almico Software (www.almico.com))
O4 - Startup: C:\Users\Jerzi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\update.js ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html File not found
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html File not found
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: localhost ([]http in Internet)
O15 - HKCU\..Trusted Ranges: Range1979 ([http] in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{29F5F7CF-27FB-4752-8BD5-06F842A66A47}: NameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18:64bit: - Protocol\Filter\video/mp4 {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O18:64bit: - Protocol\Filter\video/x-flv {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O18 - Protocol\Filter\video/mp4 {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O18 - Protocol\Filter\video/x-flv {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\SDWinLogon: DllName - (SDWinLogon.dll) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.FPS1 - frapsv64.dll (Beepa P/L)
Drivers32:64bit: vidc.pDAD - prodad-codec.dll (proDAD GmbH)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codecp - C:\Windows\SysWow64\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FPS1 - C:\Windows\SysWow64\frapsvid.dll (Beepa P/L)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2015.03.29 10:55:20 | 000,000,000 | ---D | C] -- C:\_OTL
[2015.03.28 09:21:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2015.03.27 23:40:16 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2015.03.26 14:36:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy 2
[2015.03.26 14:31:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
[2015.03.26 14:31:55 | 000,021,040 | ---- | C] (Safer Networking Limited) -- C:\Windows\SysNative\sdnclean64.exe
[2015.03.26 14:31:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2015.03.26 14:29:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro
[2015.03.25 11:45:37 | 001,107,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
[2015.03.25 11:45:37 | 000,943,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appraiser.dll
[2015.03.25 11:45:37 | 000,760,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\invagent.dll
[2015.03.25 11:45:37 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\generaltel.dll
[2015.03.25 11:45:37 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\devinv.dll
[2015.03.25 11:45:37 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll
[2015.03.25 11:45:37 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepic.dll
[2015.03.25 11:45:37 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\acmigration.dll
[2015.03.24 15:39:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2015.03.24 07:49:27 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Local\TeamViewer
[2015.03.24 07:49:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamViewer
[2015.03.23 20:37:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProShow Producer
[2015.03.23 20:36:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Photodex Presenter
[2015.03.23 20:36:29 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\Netscape
[2015.03.23 20:36:29 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\Mozilla
[2015.03.23 20:35:48 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\Photodex
[2015.03.23 20:35:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Photodex
[2015.03.22 21:19:09 | 000,364,472 | ---- | C] (Avast Software s.r.o.) -- C:\Windows\SysNative\aswBoot.exe
[2015.03.22 21:19:07 | 000,043,112 | ---- | C] (Avast Software s.r.o.) -- C:\Windows\avastSS.scr
[2015.03.22 17:52:17 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\Titler
[2015.03.22 17:52:17 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\Documents\NewBlueFX
[2015.03.22 14:18:46 | 000,000,000 | ---D | C] -- C:\ProgramData\{d88cb2d4-866a-fd77-d88c-cb2d4866cb52}
[2015.03.22 14:02:12 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\Tracing
[2015.03.22 13:55:36 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\X86
[2015.03.22 13:55:36 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\AMD64
[2015.03.22 13:54:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SaalePlus
[2015.03.22 13:54:50 | 000,000,000 | ---D | C] -- C:\ProgramData\njnielgobepkaibndcgppicbjpcbajke
[2015.03.22 13:53:57 | 000,000,000 | ---D | C] -- C:\ProgramData\{04311bff-67b5-7bd8-0431-11bff67b6ffd}
[2015.03.22 13:37:21 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\Documents\CyberLink
[2015.03.22 13:36:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TerminusMaker
[2015.03.22 13:35:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Grunt Devtools
[2015.03.22 13:35:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SAlePPluusa
[2015.03.22 13:35:11 | 000,000,000 | ---D | C] -- C:\ProgramData\920817166288748903
[2015.03.22 13:34:52 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\CyberLink
[2015.03.22 13:34:50 | 000,000,000 | ---D | C] -- C:\ProgramData\dldemlpenodfciiclidffebcijdpfpme
[2015.03.22 13:34:21 | 000,000,000 | ---D | C] -- C:\ProgramData\{de03f338-ca16-cd66-de03-3f338ca1cce3}
[2015.03.22 13:25:19 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Local\CyberLink
[2015.03.22 13:25:11 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink WaveEditor 2
[2015.03.22 13:24:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2015.03.22 13:24:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2015.03.22 13:24:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2015.03.22 13:23:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2015.03.22 13:20:19 | 000,607,256 | ---- | C] (proDAD GmbH) -- C:\Windows\SysNative\prodad-codec.dll
[2015.03.22 13:20:19 | 000,375,832 | ---- | C] (proDAD GmbH) -- C:\Windows\SysNative\proDAD-PA-Support.dll
[2015.03.22 13:20:19 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\proDAD
[2015.03.22 13:20:19 | 000,000,000 | ---D | C] -- C:\ProgramData\proDAD
[2015.03.22 13:20:19 | 000,000,000 | ---D | C] -- C:\Program Files\proDAD
[2015.03.22 13:19:50 | 000,000,000 | ---D | C] -- C:\Program Files\Cyberlink
[2015.03.22 13:19:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\NewBlue
[2015.03.22 13:19:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue
[2015.03.22 13:19:44 | 000,000,000 | ---D | C] -- C:\Program Files\NewBlue
[2015.03.22 13:19:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\NewBlue
[2015.03.22 13:19:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NewBlue
[2015.03.22 13:19:37 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 13
[2015.03.22 13:19:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NSIS Uninstall Information
[2015.03.22 13:19:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CyberLink
[2015.03.22 13:17:38 | 000,000,000 | ---D | C] -- C:\ProgramData\CyberLink
[2015.03.22 13:17:37 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPPORTDIR
[2015.03.22 13:17:37 | 000,000,000 | ---D | C] -- C:\ProgramData\install_clap
[2015.03.14 20:52:03 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\.ACEStream
[2015.03.14 20:51:46 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ACE Stream Media
[2015.03.14 20:51:32 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\ACEStream
[2015.03.10 23:27:57 | 000,372,224 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2015.03.10 23:27:57 | 000,299,008 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2015.03.10 23:27:57 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2015.03.10 23:27:57 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpk.dll
[2015.03.10 23:27:57 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2015.03.10 23:27:57 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dciman32.dll
[2015.03.10 23:27:56 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2015.03.10 23:27:56 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2015.03.10 23:27:51 | 002,644,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2015.03.10 23:27:51 | 001,202,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drmv2clt.dll
[2015.03.10 23:27:51 | 000,842,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\blackbox.dll
[2015.03.10 23:27:51 | 000,744,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\blackbox.dll
[2015.03.10 23:27:50 | 002,135,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2015.03.10 23:27:50 | 000,988,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drmv2clt.dll
[2015.03.10 23:27:49 | 014,632,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2015.03.10 23:27:49 | 005,554,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2015.03.10 23:27:49 | 003,209,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mf.dll
[2015.03.10 23:27:49 | 000,782,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmsdk.dll
[2015.03.10 23:27:49 | 000,617,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmsdk.dll
[2015.03.10 23:27:48 | 011,411,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2015.03.10 23:27:47 | 001,480,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2015.03.10 23:27:47 | 000,497,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drmmgrtn.dll
[2015.03.10 23:27:47 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drmmgrtn.dll
[2015.03.10 23:27:46 | 003,973,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2015.03.10 23:27:46 | 003,917,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2015.03.10 23:27:46 | 001,574,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2015.03.10 23:27:46 | 000,631,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\evr.dll
[2015.03.10 23:27:45 | 001,329,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2015.03.10 23:27:45 | 001,069,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptui.dll
[2015.03.10 23:27:45 | 000,616,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2015.03.10 23:27:45 | 000,532,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2015.03.10 23:27:45 | 000,489,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\evr.dll
[2015.03.10 23:27:45 | 000,432,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfplat.dll
[2015.03.10 23:27:44 | 004,121,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mf.dll
[2015.03.10 23:27:44 | 001,005,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptui.dll
[2015.03.10 23:27:44 | 000,641,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscp.dll
[2015.03.10 23:27:44 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfplat.dll
[2015.03.10 23:27:44 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptsp.dll
[2015.03.10 23:27:43 | 000,619,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2015.03.10 23:27:42 | 000,693,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2015.03.10 23:27:42 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2015.03.10 23:27:42 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscp.dll
[2015.03.10 23:27:42 | 000,457,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll
[2015.03.10 23:27:42 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msnetobj.dll
[2015.03.10 23:27:42 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2015.03.10 23:27:41 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2015.03.10 23:27:41 | 000,500,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AUDIOKSE.dll
[2015.03.10 23:27:41 | 000,371,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2015.03.10 23:27:41 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
[2015.03.10 23:27:41 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2015.03.10 23:27:41 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msnetobj.dll
[2015.03.10 23:27:41 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2015.03.10 23:27:41 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe
[2015.03.10 23:27:40 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEng.dll
[2015.03.10 23:27:40 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcadm.dll
[2015.03.10 23:27:39 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AUDIOKSE.dll
[2015.03.10 23:27:39 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll
[2015.03.10 23:27:39 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appidpolicyconverter.exe
[2015.03.10 23:27:39 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe
[2015.03.10 23:27:39 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfps.dll
[2015.03.10 23:27:39 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appidapi.dll
[2015.03.10 23:27:39 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rrinstaller.exe
[2015.03.10 23:27:39 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appidapi.dll
[2015.03.10 23:27:39 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rrinstaller.exe
[2015.03.10 23:27:39 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmmsp.dll
[2015.03.10 23:27:38 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDump.dll
[2015.03.10 23:27:38 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setbcdlocale.dll
[2015.03.10 23:27:38 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srclient.dll
[2015.03.10 23:27:38 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2015.03.10 23:27:38 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfpmp.exe
[2015.03.10 23:27:38 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfpmp.exe
[2015.03.10 23:27:38 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appidcertstorecheck.exe
[2015.03.10 23:27:38 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcawrk.exe
[2015.03.10 23:27:38 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcalua.exe
[2015.03.10 23:27:37 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwmp.dll
[2015.03.10 23:27:37 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcaevts.dll
[2015.03.10 23:27:37 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwmp.dll
[2015.03.10 23:27:37 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll
[2015.03.10 23:27:37 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apisetschema.dll
[2015.03.10 23:27:37 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdxm.ocx
[2015.03.10 23:27:37 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxmasf.dll
[2015.03.10 23:27:37 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdxm.ocx
[2015.03.10 23:27:37 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxmasf.dll
[2015.03.10 23:27:36 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2015.03.10 23:27:36 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2015.03.10 23:27:35 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mferror.dll
[2015.03.10 23:27:35 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mferror.dll
[2015.03.10 23:27:14 | 001,461,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2015.03.10 23:27:14 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2015.03.10 23:27:13 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2015.03.10 23:27:13 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\auditpol.exe
[2015.03.10 23:27:13 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\auditpol.exe
[2015.03.10 23:27:13 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2015.03.10 23:27:13 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2015.03.10 23:27:12 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adtschema.dll
[2015.03.10 23:27:12 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adtschema.dll
[2015.03.10 23:27:12 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msaudite.dll
[2015.03.10 23:27:12 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msaudite.dll
[2015.03.10 23:27:12 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msobjs.dll
[2015.03.10 23:27:12 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msobjs.dll
[2015.03.10 23:27:07 | 001,113,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2015.03.10 23:27:07 | 001,067,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctf.dll
[2015.03.10 23:27:07 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ubpm.dll
[2015.03.10 23:27:07 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ubpm.dll
[2015.03.10 23:27:07 | 000,162,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2015.03.10 23:27:07 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys
[2015.03.10 23:27:06 | 001,190,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2015.03.10 23:27:05 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2015.03.10 23:27:05 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2015.03.08 12:51:49 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\JGoodies
[2015.03.08 12:26:22 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDiskReport 1.4.0
[2015.03.08 12:26:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDiskReport 1.4.0
[2015.03.08 12:22:38 | 000,000,000 | ---D | C] -- C:\Users\Jerzi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks
[2015.03.04 21:59:12 | 000,000,000 | ---D | C] -- C:\ProgramData\EpicScale
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2015.03.30 20:48:29 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2015.03.30 20:15:16 | 000,000,952 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015.03.30 20:07:46 | 002,584,342 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2015.03.30 20:07:46 | 001,312,990 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2015.03.30 20:07:46 | 000,788,792 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2015.03.30 20:07:46 | 000,751,102 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2015.03.30 20:07:46 | 000,006,224 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2015.03.30 20:01:34 | 000,000,948 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015.03.30 20:01:23 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015.03.30 20:01:22 | 000,015,360 | ---- | M] () -- C:\Windows\SysNative\umstartup.etl
[2015.03.29 22:51:44 | 000,043,008 | ---- | M] () -- C:\Windows\SysNative\umstartup000.etl
[2015.03.29 22:51:43 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\spu_storage.bin
[2015.03.28 09:49:38 | 000,000,279 | ---- | M] () -- C:\Windows\wininit.ini
[2015.03.28 09:21:18 | 000,002,255 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015.03.26 20:42:29 | 020,566,462 | ---- | M] () -- C:\Users\Jerzi\Desktop\Svatba Hali+Ma2.pxc
[2015.03.26 20:38:42 | 068,271,057 | ---- | M] () -- C:\Users\Jerzi\Desktop\Svatba Hali+Ma (2).pxc
[2015.03.26 20:25:57 | 233,526,727 | ---- | M] () -- C:\Users\Jerzi\Desktop\Svatba Hali+Ma.pxc
[2015.03.26 19:53:02 | 000,000,959 | ---- | M] () -- C:\Users\Public\Desktop\TeamViewer 10.lnk
[2015.03.26 16:03:24 | 000,017,296 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015.03.26 16:03:24 | 000,017,296 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015.03.26 14:31:57 | 000,001,050 | ---- | M] () -- C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
[2015.03.26 14:29:00 | 000,002,139 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth Pro.lnk
[2015.03.24 07:50:31 | 004,896,664 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2015.03.23 21:05:03 | 075,866,816 | ---- | M] () -- C:\Users\Jerzi\Desktop\ProShow Slideshow.pxc
[2015.03.23 20:37:18 | 000,001,026 | ---- | M] () -- C:\Users\Public\Desktop\ProShow Producer.lnk
[2015.03.22 21:19:09 | 000,441,728 | ---- | M] (Avast Software s.r.o.) -- C:\Windows\SysNative\drivers\aswSP.sys
[2015.03.22 21:19:09 | 000,364,472 | ---- | M] (Avast Software s.r.o.) -- C:\Windows\SysNative\aswBoot.exe
[2015.03.22 21:19:09 | 000,268,640 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2015.03.22 21:19:09 | 000,136,752 | ---- | M] (Avast Software s.r.o.) -- C:\Windows\SysNative\drivers\aswStm.sys
[2015.03.22 21:19:09 | 000,093,528 | ---- | M] (Avast Software s.r.o.) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2015.03.22 21:19:09 | 000,088,408 | ---- | M] (Avast Software s.r.o.) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2015.03.22 21:19:09 | 000,065,736 | ---- | M] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2015.03.22 21:19:09 | 000,029,168 | ---- | M] () -- C:\Windows\SysNative\drivers\aswHwid.sys
[2015.03.22 21:19:07 | 000,043,112 | ---- | M] (Avast Software s.r.o.) -- C:\Windows\avastSS.scr
[2015.03.22 21:19:06 | 001,047,320 | ---- | M] (Avast Software s.r.o.) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2015.03.22 13:25:12 | 000,002,207 | ---- | M] () -- C:\Users\Public\Desktop\CyberLink WaveEditor 2.lnk
[2015.03.22 13:24:41 | 000,001,606 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2015.03.22 13:19:37 | 000,001,286 | ---- | M] () -- C:\Users\Public\Desktop\CyberLink PowerDirector 13 (64-bit).lnk
[2015.03.22 12:06:12 | 000,607,256 | ---- | M] (proDAD GmbH) -- C:\Windows\SysNative\prodad-codec.dll
[2015.03.22 10:29:59 | 000,375,832 | ---- | M] (proDAD GmbH) -- C:\Windows\SysNative\proDAD-PA-Support.dll
[2015.03.18 20:16:19 | 000,002,042 | ---- | M] () -- C:\Users\Public\Desktop\Google Slides.lnk
[2015.03.18 20:16:19 | 000,002,040 | ---- | M] () -- C:\Users\Public\Desktop\Google Sheets.lnk
[2015.03.18 20:16:19 | 000,002,030 | ---- | M] () -- C:\Users\Public\Desktop\Google Docs.lnk
[2015.03.14 20:51:46 | 000,001,917 | ---- | M] () -- C:\Users\Jerzi\Desktop\ACE Player.lnk
[2015.03.11 20:58:57 | 005,013,451 | ---- | M] () -- C:\Users\Jerzi\Desktop\disk.jdr
[2015.03.11 06:06:14 | 000,677,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\generaltel.dll
[2015.03.11 06:06:05 | 000,760,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\invagent.dll
[2015.03.11 06:06:02 | 000,414,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\devinv.dll
[2015.03.11 06:06:00 | 000,943,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\appraiser.dll
[2015.03.11 06:05:59 | 000,227,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll
[2015.03.11 06:05:59 | 000,192,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aepic.dll
[2015.03.11 06:05:59 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\acmigration.dll
[2015.03.11 06:02:07 | 001,107,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
[2015.03.08 12:51:48 | 000,001,232 | ---- | M] () -- C:\Users\Jerzi\Desktop\JDiskReport.lnk
[2015.03.08 12:48:47 | 000,007,607 | ---- | M] () -- C:\Users\Jerzi\AppData\Local\resmon.resmoncfg
[2015.03.08 12:31:28 | 000,000,156 | ---- | M] () -- C:\Windows\Reimage.ini
[2015.03.06 07:42:35 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2015.03.06 07:42:35 | 000,029,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2015.03.06 07:42:33 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2015.03.06 07:42:29 | 000,309,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2015.03.06 07:42:27 | 001,461,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2015.03.06 07:41:31 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\auditpol.exe
[2015.03.06 07:39:16 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msobjs.dll
[2015.03.06 07:38:57 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msaudite.dll
[2015.03.06 07:36:56 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\adtschema.dll
[2015.03.06 07:09:31 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\auditpol.exe
[2015.03.06 07:07:50 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msobjs.dll
[2015.03.06 07:07:43 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msaudite.dll
[2015.03.06 07:06:20 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\adtschema.dll
[2015.03.04 21:59:11 | 000,000,851 | ---- | M] () -- C:\Users\Jerzi\Desktop\µTorrent.lnk
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

========== Files Created - No Company Name ==========

[2015.03.30 20:48:29 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2015.03.28 09:49:38 | 000,000,279 | ---- | C] () -- C:\Windows\wininit.ini
[2015.03.28 09:21:18 | 000,002,255 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015.03.26 20:38:48 | 020,566,462 | ---- | C] () -- C:\Users\Jerzi\Desktop\Svatba Hali+Ma2.pxc
[2015.03.26 20:34:27 | 233,526,727 | ---- | C] () -- C:\Users\Jerzi\Desktop\Svatba Hali+Ma.pxc
[2015.03.26 20:29:03 | 075,866,816 | ---- | C] () -- C:\Users\Jerzi\Desktop\ProShow Slideshow.pxc
[2015.03.26 14:31:57 | 000,001,050 | ---- | C] () -- C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
[2015.03.26 14:31:57 | 000,001,050 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
[2015.03.26 14:29:00 | 000,002,139 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth Pro.lnk
[2015.03.24 09:56:03 | 068,271,057 | ---- | C] () -- C:\Users\Jerzi\Desktop\Svatba Hali+Ma (2).pxc
[2015.03.24 07:49:22 | 000,000,971 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
[2015.03.24 07:49:22 | 000,000,959 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer 10.lnk
[2015.03.23 20:37:18 | 000,001,026 | ---- | C] () -- C:\Users\Public\Desktop\ProShow Producer.lnk
[2015.03.22 14:27:46 | 000,305,772 | ---- | C] () -- C:\Users\Jerzi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\update.js
[2015.03.22 13:25:12 | 000,002,207 | ---- | C] () -- C:\Users\Public\Desktop\CyberLink WaveEditor 2.lnk
[2015.03.22 13:24:41 | 000,001,606 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2015.03.22 13:23:55 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2015.03.22 13:19:37 | 000,001,286 | ---- | C] () -- C:\Users\Public\Desktop\CyberLink PowerDirector 13 (64-bit).lnk
[2015.03.14 20:51:46 | 000,001,917 | ---- | C] () -- C:\Users\Jerzi\Desktop\ACE Player.lnk
[2015.03.11 20:58:54 | 005,013,451 | ---- | C] () -- C:\Users\Jerzi\Desktop\disk.jdr
[2015.03.08 12:29:25 | 000,000,156 | ---- | C] () -- C:\Windows\Reimage.ini
[2015.03.08 12:26:22 | 000,001,232 | ---- | C] () -- C:\Users\Jerzi\Desktop\JDiskReport.lnk
[2014.11.20 22:35:00 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2014.11.18 00:35:01 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2014.04.04 19:52:16 | 000,200,704 | ---- | C] () -- C:\Windows\SysWow64\HsMgr.exe
[2014.04.04 19:52:16 | 000,000,048 | ---- | C] () -- C:\Windows\SysWow64\cmasiop.ini
[2014.04.04 18:58:08 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\VmixP8.dll
[2014.04.04 18:58:00 | 000,083,332 | ---- | C] () -- C:\Windows\Cmicnfgp.ini.cfl
[2014.04.04 18:57:47 | 000,004,929 | ---- | C] () -- C:\Windows\Cmicnfgp.ini.cfg
[2014.04.04 18:57:47 | 000,000,890 | ---- | C] () -- C:\Windows\Cmicnfgp.ini.imi
[2014.03.26 22:50:01 | 000,007,607 | ---- | C] () -- C:\Users\Jerzi\AppData\Local\resmon.resmoncfg
[2014.01.30 14:08:20 | 000,181,760 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2014.01.30 14:08:20 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2014.01.22 21:08:24 | 000,002,892 | ---- | C] () -- C:\Windows\SysWow64\audcon.sys
[2014.01.22 21:07:19 | 000,000,051 | ---- | C] () -- C:\Windows\SysWow64\SYNSOPOS.exe.cfg
[2014.01.22 21:07:18 | 000,086,016 | ---- | C] () -- C:\Windows\SysWow64\SYNSOPOS.exe
[2014.01.16 20:36:27 | 000,007,168 | ---- | C] () -- C:\Users\Jerzi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013.10.03 20:25:33 | 000,109,104 | ---- | C] () -- C:\Users\Jerzi\AppData\Roaming\PhotoStage.dmp
[2013.10.02 18:20:24 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2013.10.02 18:20:24 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2013.10.02 03:02:08 | 000,049,966 | ---- | C] () -- C:\Windows\Ascd_log.ini
[2013.10.02 03:01:32 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2013.10.02 03:01:29 | 000,035,804 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2013.10.02 02:47:45 | 001,557,940 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013.10.01 21:23:21 | 000,218,200 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2013.08.31 01:47:50 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe
[2013.08.31 01:47:50 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe
[2010.06.29 15:04:18 | 000,001,772 | ---- | C] () -- C:\ProgramData\cfSB1095.ini

========== ZeroAccess Check ==========

[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2015.02.13 07:22:33 | 014,177,280 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2015.02.13 07:26:18 | 012,875,264 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2015.03.15 16:09:22 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\.ACEStream
[2015.03.14 20:51:44 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\ACEStream
[2014.12.18 12:55:45 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\AMD
[2013.10.03 18:40:47 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Ashampoo
[2014.04.04 19:52:25 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\ASUS
[2014.01.26 23:23:29 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\AVAST Software
[2014.10.17 10:16:22 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Convert Audio Free
[2015.01.04 12:21:14 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\DAEMON Tools Lite
[2014.11.23 14:28:06 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Downloaded Installations
[2014.10.17 10:17:11 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\freemkvtomp4converter
[2013.10.01 21:28:48 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\GHISLER
[2014.09.23 19:12:27 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Graphisoft
[2014.09.23 19:11:53 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Install.GS
[2015.03.08 12:51:49 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\JGoodies
[2014.12.21 19:26:25 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\library_dir
[2014.12.23 12:18:21 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Marine Aquarium 3
[2015.03.23 20:36:29 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Netscape
[2015.03.23 20:36:44 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Photodex
[2015.03.22 13:20:19 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\proDAD
[2013.12.19 22:27:22 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Seznam.cz
[2014.01.13 18:55:23 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\SketchUp
[2013.10.01 23:19:08 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2015.03.28 09:11:47 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Steinberg
[2014.11.17 10:16:10 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\TeamViewer
[2015.03.22 17:52:17 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Titler
[2014.08.22 18:06:06 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Tropico 5
[2013.10.20 19:36:19 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\TS3Client
[2015.03.30 20:52:23 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\uTorrent
[2013.10.13 21:25:05 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Wargaming.net
[2013.11.17 20:12:14 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\WTouch

========== Purity Check ==========



========== Custom Scans ==========

< >
[2009.07.14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 07:08:49 | 000,032,608 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2013.10.02 03:02:25 | 000,000,948 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013.10.02 03:02:25 | 000,000,952 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

< >

< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_552ea5111ec825a6\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_3b457059383c66e6\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_3be7afc0514717fa\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2010.11.20 15:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.20 15:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2010.11.20 14:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010.11.20 14:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2010.11.20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2011.02.26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011.02.25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011.02.25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011.02.26 08:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010.11.20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010.11.20 15:24:45 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: HAL.DLL >
[2010.11.20 15:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010.11.20 15:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll

< MD5 for: SCECLI.DLL >
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.20 15:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.20 15:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll

< MD5 for: SERVICES.EXE >
[2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

[jhalamka]

< MD5 for: TCPIP.SYS >
[2014.04.05 04:47:20 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=04ADD18EE5CC9FBEDAEC1DD1CD0CB45E -- C:\Windows\SysNative\drivers\tcpip.sys
[2014.04.05 04:47:20 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=04ADD18EE5CC9FBEDAEC1DD1CD0CB45E -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18438_none_113260637d1284ef\tcpip.sys
[2012.10.03 19:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_110e0fbd7d2e4b88\tcpip.sys
[2013.09.08 04:30:37 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=40AF23633D197905F03AB5628C558C51 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_1118bb977d265d27\tcpip.sys
[2014.04.05 04:37:43 | 001,897,408 | ---- | M] (Microsoft Corporation) MD5=4F80944B03112F486212DC20BE166079 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22648_none_11b12f2896383dd1\tcpip.sys
[2010.11.20 15:33:57 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2013.09.07 04:27:48 | 001,896,896 | ---- | M] (Microsoft Corporation) MD5=75F9106B74585D38C8FF6BB5CAD262D7 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_11ad2a34963bde27\tcpip.sys
[2012.10.03 19:44:29 | 001,902,472 | ---- | M] (Microsoft Corporation) MD5=D5707FC2300AA5B04B7BFE86D40C0133 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_11c2c45a962baed0\tcpip.sys
[2013.11.26 13:34:34 | 001,897,408 | ---- | M] (Microsoft Corporation) MD5=F55B41AA6114568AC558ADBABDA85620 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22525_none_11c3cc3c962abcc3\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010.11.20 15:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.20 15:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010.11.20 15:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2014.03.04 13:08:14 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=6CE2AE073BD21C542FC2C707CAE944CC -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22616_none_ce748d1d04acf24f\winlogon.exe
[2014.03.04 11:43:50 | 000,455,168 | ---- | M] (Microsoft Corporation) MD5=88AB9B72B4BF3963A0DE0820B4B0B06C -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18409_none_cdf8bf35eb848572\winlogon.exe
[2014.07.17 04:07:24 | 000,455,168 | ---- | M] (Microsoft Corporation) MD5=8CEBD9D0A0A879CDE9F36F4383B7CAEA -- C:\Windows\SysNative\winlogon.exe
[2014.07.17 04:07:24 | 000,455,168 | ---- | M] (Microsoft Corporation) MD5=8CEBD9D0A0A879CDE9F36F4383B7CAEA -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18540_none_cdc47ed1ebad0e4e\winlogon.exe
[2014.07.16 05:23:23 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=98AA0BFEE089C7E5DADB94190D93456C -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22750_none_ce434d9704d2c730\winlogon.exe

< >

< %systemroot%*.* /U /s >
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[4 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[2 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3d3df8816def173c1b76b2bfa0c99be9\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3d3df8816def173c1b76b2bfa0c99be9\*.tmp -> ]
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[2 C:\Windows\SysWOW64\*.tmp files -> C:\Windows\SysWOW64\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2015.03.15 16:09:22 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\.ACEStream
[2015.03.14 20:51:44 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\ACEStream
[2015.01.08 21:27:44 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Adobe
[2014.12.18 12:55:45 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\AMD
[2014.03.23 08:16:47 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Apple Computer
[2013.10.03 18:40:47 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Ashampoo
[2014.04.04 19:52:25 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\ASUS
[2014.11.18 00:35:09 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\ATI
[2014.01.26 23:23:29 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\AVAST Software
[2014.10.17 10:16:22 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Convert Audio Free
[2015.03.22 17:39:13 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\CyberLink
[2015.01.04 12:21:14 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\DAEMON Tools Lite
[2014.11.23 14:28:06 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Downloaded Installations
[2014.10.23 18:02:35 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\dvdcss
[2014.10.17 10:17:11 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\freemkvtomp4converter
[2013.10.01 21:28:48 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\GHISLER
[2014.09.23 19:12:27 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Graphisoft
[2013.10.02 02:45:03 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Identities
[2014.09.23 19:11:53 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Install.GS
[2014.04.04 19:01:20 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\InstallShield
[2015.03.08 12:51:49 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\JGoodies
[2014.12.21 19:26:25 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\library_dir
[2013.10.01 23:09:52 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Macromedia
[2014.12.23 12:18:21 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Marine Aquarium 3
[2009.07.14 09:45:14 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Media Center Programs
[2014.04.05 17:24:13 | 000,000,000 | --SD | M] -- C:\Users\Jerzi\AppData\Roaming\Microsoft
[2015.03.23 20:36:29 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Mozilla
[2013.10.04 00:09:40 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\NCH Software
[2015.03.23 20:36:29 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Netscape
[2015.03.23 20:36:44 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Photodex
[2015.03.22 13:20:19 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\proDAD
[2013.12.19 22:27:22 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Seznam.cz
[2014.01.13 18:55:23 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\SketchUp
[2015.03.22 15:02:10 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Skype
[2013.10.01 23:19:08 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2015.03.28 09:11:47 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Steinberg
[2014.11.17 10:16:10 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\TeamViewer
[2015.03.22 17:52:17 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Titler
[2014.08.22 18:06:06 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Tropico 5
[2013.10.20 19:36:19 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\TS3Client
[2015.03.30 20:57:28 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\uTorrent
[2014.10.23 18:02:35 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\vlc
[2013.10.13 21:25:05 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Wargaming.net
[2013.11.27 21:45:06 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\Winamp
[2013.10.01 21:29:11 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\WinRAR
[2015.03.30 20:01:50 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\WTablet
[2013.11.17 20:12:14 | 000,000,000 | ---D | M] -- C:\Users\Jerzi\AppData\Roaming\WTouch

< %APPDATA%\*.exe /s >
[2015.03.14 20:51:44 | 000,151,485 | ---- | M] () -- C:\Users\Jerzi\AppData\Roaming\ACEStream\Uninstall.exe
[2013.04.03 08:44:38 | 000,027,904 | ---- | M] () -- C:\Users\Jerzi\AppData\Roaming\ACEStream\engine\ace_engine.exe
[2013.04.03 08:44:40 | 000,028,416 | ---- | M] () -- C:\Users\Jerzi\AppData\Roaming\ACEStream\engine\ace_stream.exe
[2011.06.12 15:05:52 | 000,049,664 | ---- | M] () -- C:\Users\Jerzi\AppData\Roaming\ACEStream\engine\w9xpopen.exe
[2013.03.27 12:05:50 | 000,098,936 | ---- | M] () -- C:\Users\Jerzi\AppData\Roaming\ACEStream\player\ace_player.exe
[2013.02.11 17:04:38 | 000,039,544 | ---- | M] () -- C:\Users\Jerzi\AppData\Roaming\ACEStream\player\vlc-cache-gen.exe
[2013.03.27 12:05:10 | 000,026,744 | ---- | M] () -- C:\Users\Jerzi\AppData\Roaming\ACEStream\updater\ace_update.exe
[2011.06.12 15:05:52 | 000,049,664 | ---- | M] () -- C:\Users\Jerzi\AppData\Roaming\ACEStream\updater\w9xpopen.exe
[2014.11.18 00:34:06 | 000,010,134 | R--- | M] () -- C:\Users\Jerzi\AppData\Roaming\Microsoft\Installer\{2C637DB1-3E0A-4089-8366-C6C0B01E5C2B}\ARPPRODUCTICON.exe
[2007.11.27 08:41:32 | 000,405,504 | ---- | M] () -- C:\Users\Jerzi\AppData\Roaming\NCH Software\Components\mp3el2\lame.exe
[2012.01.25 15:46:26 | 001,465,393 | ---- | M] () -- C:\Users\Jerzi\AppData\Roaming\NCH Software\Components\x264enc2\x264enc2.exe
[2014.12.23 20:36:33 | 001,170,432 | ---- | M] () -- C:\Users\Jerzi\AppData\Roaming\Skype\My Skype Received Files\GreenChristmasTree.exe
[2015.03.26 14:20:30 | 001,442,384 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\uTorrent.exe
[2014.03.23 10:22:03 | 001,614,416 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\updates\3.4.0_30660.exe
[2014.04.02 18:40:03 | 001,264,984 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\updates\3.4.1_30740.exe
[2014.04.25 21:57:43 | 001,266,520 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\updates\3.4.1_30888.exe
[2014.05.13 18:28:56 | 001,272,400 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\updates\3.4.1_31139.exe
[2014.06.16 19:35:37 | 001,267,536 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\updates\3.4.1_31395.exe
[2014.07.02 18:34:31 | 001,322,832 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\updates\3.4.2_32126.exe
[2014.09.16 18:54:35 | 001,414,992 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\updates\3.4.2_33870.exe
[2014.09.23 19:07:40 | 001,416,016 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\updates\3.4.2_34024.exe
[2014.10.08 19:28:21 | 001,385,808 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\updates\3.4.2_34309.exe
[2014.10.28 09:28:57 | 001,385,808 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\updates\3.4.2_34944.exe
[2014.11.23 12:05:21 | 001,385,808 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\updates\3.4.2_35702.exe
[2015.01.16 14:49:58 | 001,374,032 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\updates\3.4.2_37754.exe
[2015.03.04 21:58:54 | 001,742,928 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\updates\3.4.2_38913.exe
[2015.03.25 07:56:14 | 001,439,144 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\updates\3.4.2_39586.exe
[2015.03.26 14:20:30 | 001,442,384 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jerzi\AppData\Roaming\uTorrent\updates\3.4.2_39710.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job >
[2015.03.30 20:01:34 | 000,000,948 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2015.03.30 20:15:16 | 000,000,952 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"AdobeBridge" =
"uTorrent" = "C:\Users\Jerzi\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED -- [2015.03.26 14:20:30 | 001,442,384 | ---- | M] (BitTorrent Inc.)
"CCleaner Monitoring" = "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR -- [2014.10.29 18:18:32 | 006,501,656 | ---- | M] (Piriform Ltd)
"EpicScale" =
"ACEStream" = C:\Users\Jerzi\AppData\Roaming\ACEStream\engine\ace_engine.exe -- [2013.04.03 08:44:38 | 000,027,904 | ---- | M] ()
"update" = wscript.exe //B "C:\Users\Jerzi\AppData\Local\Temp\update.js" -- [2013.10.12 03:15:48 | 000,141,824 | ---- | M] (Microsoft Corporation)

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2015.03.14 12:12:39 | 000,809,288 | ---- | M] (Google Inc.) MD5=F217EF2EA31D8F73504B1CD2F9787D9D -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2015.03.30 20:48:29 | 000,000,512 | ---- | M] () MD5=1EE658338433840AB09CEE2B277E1888 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2011.04.21 11:28:12 | 000,014,382 | ---- | M] () -- \Dokumenty\Buehler\ImTOO Software Studio\Video to Audio Converter\crack.js
[2012.09.26 09:59:03 | 000,031,232 | ---- | M] () -- \Users\Jerzi\Downloads\Photodex ProShow Producer And Gold v6.0.3410 [deepstatus][h33t][1337x]\uget\uget\Keyfilemaker-RNDD\Cracktro.exe

< *keygen* /s >

< *loader* /s >
[2012.05.17 11:11:36 | 000,301,616 | ---- | M] () -- \Dokumenty\roman\záloha Jéma\Roman\Stažené soubory\SoftonicDownloader_for_htc-sync.exe
[2014.10.14 12:01:30 | 000,422,912 | ---- | M] () -- \Program Files (x86)\Fotolab\Fotolab Fotosvet\CWImageLoader.dll
[2013.09.25 10:35:26 | 000,401,920 | ---- | M] () -- \Program Files (x86)\Fotolab\Fotolab Fotosvet\CWImageLoader0.dll
[2006.01.02 10:10:42 | 000,049,152 | ---- | M] () -- \Program Files (x86)\Futuremark\3DMark06\PhysXLoader.dll
[2005.09.19 13:30:30 | 000,001,825 | R--- | M] () -- \Program Files (x86)\Microsoft Games\Age of Empires III\AI\aiLoaderInactive.xs
[2005.09.19 13:30:30 | 000,001,575 | R--- | M] () -- \Program Files (x86)\Microsoft Games\Age of Empires III\AI\aiLoaderStandard.xs
[2014.12.10 03:28:04 | 000,001,701 | ---- | M] () -- \Program Files (x86)\Steam\friends\broadcastuploaderrornotification.res
[2014.11.11 20:48:42 | 000,007,825 | ---- | M] () -- \Program Files (x86)\Steam\remoteui\static\libs\images\ajax-loader.gif
[2008.02.25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files (x86)\The KMPlayer\ImLoader.dll
[2012.06.15 12:10:22 | 000,071,208 | ---- | M] () -- \Program Files (x86)\World_of_Tanks\PhysXLoader.dll
[2013.02.26 18:36:29 | 000,003,668 | ---- | M] () -- \Program Files (x86)\World_of_Tanks\res\scripts\client\helpers\rssdownloader.pyc
[2013.02.26 18:36:29 | 000,006,407 | ---- | M] () -- \Program Files (x86)\World_of_Tanks\res\scripts\client\tutorial\loader.pyc
[2014.05.29 16:53:26 | 003,296,432 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\Photodownloader.exe
[2013.04.24 12:39:16 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2013.04.24 12:38:54 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\apd\shared_assets\combined_bitmaps\main_window\C_LoadError.png
[2013.04.24 12:39:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2013.04.24 12:39:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\apd\shared_assets\locales\de_de\Photodownloader.ini
[2013.04.24 12:39:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\apd\shared_assets\locales\en_us\Photodownloader.ini
[2013.04.24 12:39:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\apd\shared_assets\locales\es_es\Photodownloader.ini
[2013.04.24 12:39:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2013.04.24 12:39:16 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2013.04.24 12:39:16 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\apd\shared_assets\locales\it_it\Photodownloader.ini
[2013.04.24 12:39:18 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2013.04.24 12:39:18 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2013.04.24 12:39:18 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2013.04.24 12:39:18 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\apd\shared_assets\locales\no_no\Photodownloader.ini
[2013.04.24 12:39:18 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2013.04.24 12:39:18 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2013.04.24 12:39:18 | 000,000,324 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2013.04.24 12:39:18 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\photodownloader\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2014.05.29 16:53:38 | 000,099,328 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\Required\dynamiclinkmediaserver\MXF_SDK_MetaMetadata_BinaryLoader_4.4.33_vs10.dll
[2014.05.29 16:53:38 | 000,196,608 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\Required\dynamiclinkmediaserver\MXF_SDK_MetaMetadata_XSDLoader2_4.4.33_vs10.dll
[2014.05.29 16:53:38 | 000,148,480 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CC (64 Bit)\Required\dynamiclinkmediaserver\MXF_SDK_MetaMetadata_XSDLoader_4.4.33_vs10.dll
[2013.01.08 17:26:28 | 003,298,024 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\Photodownloader.exe
[2012.03.13 11:42:26 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2012.03.13 11:42:28 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\combined_bitmaps\main_window\C_LoadError.png
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\de_de\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\en_us\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\es_es\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\it_it\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\no_no\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2012.03.13 11:42:30 | 000,000,324 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2012.03.13 11:42:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2012.12.04 13:51:16 | 000,078,336 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 4.3\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_BinaryLoader_4.4.3.dll
[2012.12.04 13:51:16 | 000,155,136 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 4.3\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader2_4.4.3.dll
[2012.12.04 13:51:16 | 000,117,248 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 4.3\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader_4.4.3.dll
[2014.07.09 13:57:18 | 003,325,704 | ---- | M] () -- \Program Files\CyberLink\PowerDirector13\PowerDirector13\CESdlls\CES_3DLoaderFBX.dll

< End of report >

[Rudy]

Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text:

:OTL
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}: "URL" = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
IE - HKLM\..\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://websearch.coolsearches.info/?l=1 ... Z&unqvl=85
IE - HKU\S-1-5-21-798018489-438667052-1584509140-1000\..\SearchScopes,DefaultScope = {E9410C70-B6AE-41FF-AB71-32F4B279EA5F}
IE - HKU\S-1-5-21-798018489-438667052-1584509140-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-798018489-438667052-1584509140-1000\..\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}: "URL" = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
IE - HKU\S-1-5-21-798018489-438667052-1584509140-1000\..\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://websearch.coolsearches.info/?l=1 ... Z&unqvl=85
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi\1.1408.5.2_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\
CHR - Extension: No name found = C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
O3:64bit: - HKLM\..\Toolbar: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No CLSID value found.
O4 - HKU\S-1-5-21-798018489-438667052-1584509140-1000..\Run: [AdobeBridge] File not found
O4 - HKU\S-1-5-21-798018489-438667052-1584509140-1000..\Run: [EpicScale] File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O8:64bit: - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html File not found
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html File not found
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O20 - Winlogon\Notify\SDWinLogon: DllName - (SDWinLogon.dll) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.


:files
C:\Program Files (x86)\Google\Google Toolbar
C:\ProgramData\njnielgobepkaibndcgppicbjpcbajke
C:\ProgramData\920817166288748903
C:\ProgramData\dldemlpenodfciiclidffebcijdpfpme
C:\ProgramData\{de03f338-ca16-cd66-de03-3f338ca1cce3}
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
[CreateRestorePoint]
[Resethosts]

Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.

[jhalamka]

All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}\ not found.
HKEY_USERS\S-1-5-21-798018489-438667052-1584509140-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-798018489-438667052-1584509140-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-798018489-438667052-1584509140-1000\Software\Microsoft\Internet Explorer\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}\ not found.
Registry key HKEY_USERS\S-1-5-21-798018489-438667052-1584509140-1000\Software\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_metadata folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\zh_TW folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\zh_CN folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\vi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\uk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\tr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\th folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\sv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\sr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\sl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\sk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\ru folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\ro folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\pt_PT folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\pt_BR folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\pl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\no folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\nl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\ms folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\lv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\lt folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\ko folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\ja folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\it folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\id folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\hu folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\hi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\he folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\fr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\fil folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\fi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\et folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\es_419 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\es folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\en_US folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\en_GB folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\el folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\de folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\da folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\cs folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\ca folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\bg folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales\ar folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\_locales folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_metadata folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\zh_TW folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\zh_CN folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\vi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\uk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\tr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\th folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\sv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\sr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\sl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\sk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ru folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ro folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\pt_PT folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\pt_BR folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\pl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\no folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\nl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ms folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\lv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\lt folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ko folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ja folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\it folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\id folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\hu folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\hi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\he folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\fr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\fil folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\fi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\et folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\es_419 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\es folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\en_US folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\en_GB folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\el folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\de folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\da folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\cs folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ca folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\bg folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ar folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_metadata folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\zh_TW folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\zh_CN folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\vi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\uk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\tr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\th folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\sv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\sr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\sl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\sk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ru folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ro folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\pt_PT folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\pt_BR folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\pl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\no folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\nl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ms folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\lv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\lt folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ko folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ja folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\it folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\id folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\hu folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\hr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\hi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\he folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\fr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\fil folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\fi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\eu folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\et folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\es_419 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\es folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\en_US folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\en_GB folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\el folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\de folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\da folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\cs folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ca folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\bg folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales\ar folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\_locales folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_metadata folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\zh_TW folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\zh_CN folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\vi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\uk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\tr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\th folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\sv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\sr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\sl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\sk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\ru folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\ro folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\pt_PT folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\pt_BR folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\pl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\no folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\nl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\lv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\lt folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\ko folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\ja folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\it folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\id folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\hu folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\hr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\hi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\he folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\fr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\fil folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\fi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\es folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\en folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\el folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\de folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\da folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\cs folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\ca folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\bg folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales\ar folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\_locales folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_metadata folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\hu folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\hr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\hi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\he folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\fr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\fil folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\fi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\et folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\es_419 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\es folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\en_US folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\en_GB folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\en folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\el folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\de folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\da folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\cs folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\ca folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\bg folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales\ar folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\_locales folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi\1.1408.5.2_0\_metadata folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi\1.1408.5.2_0\js folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi\1.1408.5.2_0\images folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi\1.1408.5.2_0\html folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi\1.1408.5.2_0 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_metadata folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\zh_TW folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\zh_CN folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\vi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\ur folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\uk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\tr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\th folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\sv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\sr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\sl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\sk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\ru folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\ro folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\pt_PT folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\pt_BR folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\pl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\nl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\nb folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\ms folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\lv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\lt folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\ko folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\ja folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\it folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\id folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\hu folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\hr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\hi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\he folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\fr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\fi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\fa folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\et folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\es folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\en_GB folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\en folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\el folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\de folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\da folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\cs folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\ca folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\bn folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\bg folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\be folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales\ar folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\_locales folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\scripts folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\common\skin\img folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\common\skin\css folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\common\skin folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\common\scripts folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\common\libs folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0\common folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\10.2.0.190_0 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_metadata folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\zh_TW folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\zh_CN folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\vi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\uk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\tr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\th folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\sv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\sr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\sl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\sk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\ru folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\ro folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\pt_PT folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\pt_BR folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\pl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\no folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\nl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\ms folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\lv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\lt folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\ko folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\ja folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\it folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\id folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\hu folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\hi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\he folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\fr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\fil folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\fi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\et folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\es_419 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\es folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\en_US folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\en_GB folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\el folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\de folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\da folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\cs folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\ca folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\bg folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales\ar folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\_locales folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_metadata folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\zh_TW folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\zh_CN folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\vi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\ur folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\uk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\tr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\th folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\sv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\sr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\sl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\sk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\ru folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\ro folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\pt_PT folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\pt_BR folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\pl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\nl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\nb folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\ms folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\lv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\lt folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\ko folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\ja folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\it folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\id folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\hu folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\hr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\hi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\he folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\fr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\fi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\fa folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\et folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\es folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\en_GB folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\en folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\el folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\de folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\da folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\cs folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\ca folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\bn folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\bg folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\be folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales\ar folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\_locales folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\scripts folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\common\ui\templates folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\common\ui\icons folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\common\ui\css folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\common\ui\bgs folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\common\ui folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\common\skin\img folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\common\skin\css folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\common\skin folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\common\scripts folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\common\mocks folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\common\libs folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\common folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_metadata folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\vi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\uk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\tr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\th folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\te folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\sw folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\sv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\sr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\sl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\sk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\ru folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\ro folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\pt_PT folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\pt_BR folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\pl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\no folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\nl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\lv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\lt folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\ko folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\kn folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\it folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\id folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\hu folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\hr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\hi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\he folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\gu folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\fr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\fil folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\fi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\fa folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\et folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\es_419 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\es folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\en_US folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\en_GB folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\en folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\el folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\de folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\da folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\cs folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\ca folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\bn folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\bg folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales\ar folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0\_locales folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgiedegfmekolcplboelnmfoiefpcpfg\1.5_0 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_metadata folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\zh_TW folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\zh_CN folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\vi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\uk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\tr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\th folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ru folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ro folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pt_PT folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pt_BR folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\nl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\nb folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\lv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\lt folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ko folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ja folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\it folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\id folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hu folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fil folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\et folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\es_419 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\es folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\en_GB folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\en folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\el folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\de folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\da folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\cs folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ca folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\bg folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\html folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\css folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0 folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_metadata folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\zh_TW folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\zh_CN folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\vi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\uk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\tr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\th folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\sr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\sl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\sk folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\se folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ru folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ro folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\pt_PT folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\pt_BR folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\pl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\no folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\nl folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\lv folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\lt folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ko folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ja folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\it folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\id folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\hu folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\hr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\hi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\fr folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\fil folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\fi folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\es folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\en folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\el folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\de folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\da folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\cs folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ca folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\bg folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ar folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales folder moved successfully.
C:\Users\Jerzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0 folder moved successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}\ deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}\ not found.
Registry value HKEY_USERS\S-1-5-21-798018489-438667052-1584509140-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge deleted successfully.
Registry value HKEY_USERS\S-1-5-21-798018489-438667052-1584509140-1000\Software\Microsoft\Windows\CurrentVersion\Run\\EpicScale deleted successfully.
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\WikiKomentáře Google...\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\WikiKomentáře Google...\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SDWinLogon\ deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
========== FILES ==========
File\Folder C:\Program Files (x86)\Google\Google Toolbar not found.
C:\ProgramData\njnielgobepkaibndcgppicbjpcbajke folder moved successfully.
C:\ProgramData\920817166288748903 folder moved successfully.
C:\ProgramData\dldemlpenodfciiclidffebcijdpfpme folder moved successfully.
C:\ProgramData\{de03f338-ca16-cd66-de03-3f338ca1cce3} folder moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Jerzi
->Temp folder emptied: 87144196 bytes
->Temporary Internet Files folder emptied: 4294475 bytes
->Java cache emptied: 290268 bytes
->Google Chrome cache emptied: 140837826 bytes
->Flash cache emptied: 424 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 1564672 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 69648 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 46490621 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 268,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Jerzi
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb

Restore point Set: OTL Restore Point
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

OTL by OldTimer - Version 3.2.69.0 log created on 03312015_223135

Files\Folders moved on Reboot...
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

[Rudy]

Smazáno. Nastala nějaká změna?

[jhalamka]

Zdá se, že teď je vše v pořádku. Před tím jsem také odebral Chrome a znovu nainstaloval a virus v chrome.exe už se nevyskytoval, ale byl ještě v nějakých windows procesech...

[Rudy]

Tak to jsem rád!