prosím o kontrolu logu

[rudkr63]

Fix result of Farbar Recovery Scan Tool (x64) Version:25-10-2015 02
Ran by Ruda (2015-10-29 00:26:17) Run:3
Running from C:\PerfLogs\Desktop
Loaded Profiles: Ruda (Available Profiles: Ruda & verak & Guest)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:

File: C:\Program Files (x86)\Common Files\lpuninstall.exe
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2015-10-26] (LogMeIn Inc.)
HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
Startup: C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SystemExplorerDisabled [2015-08-03] ()
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-841361005-909514878-2309378359-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {EC66E139-DFB2-495A-BAE1-5DF684FC154D} URL =
SearchScopes: HKLM-x32 -> SuggestionsURL_JSON hxxp://api.widdit.com/suggestions/?form ... 1&command={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Task: {3BA38A96-8C57-4DFA-B37F-13BEE26FE5BC} - System32\Tasks\{5F50205B-81B7-4BE5-A556-CAF25610E21D} => pcalua.exe -a C:\Users\Ruda\Documents\FreeRapid-0.9u3\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Documents\FreeRapid-0.9u3\FreeRapid-0.9u3
Task: {5143E29B-11C6-49CD-AC53-2A8CC7A5635B} - System32\Tasks\{9FA5B99F-75D8-4FF1-9725-01FB48586EE6} => pcalua.exe -a C:\Users\Ruda\Downloads\msicuu2.exe -d C:\Users\Ruda\Downloads
Task: {532591BF-F6F0-430E-9EAA-061231AAF910} - System32\Tasks\{927A8016-7C84-4099-B4A9-7974F86116C3} => pcalua.exe -a C:\Users\Ruda\Downloads\wlsetup-all.exe -d C:\Users\Ruda\Downloads
Task: {62F478F3-81FF-4C11-93B5-0FFF846C66DB} - System32\Tasks\{C582AF60-6D3C-4318-91FB-FED9812D23A6} => pcalua.exe -a C:\Users\Ruda\Downloads\InstallPlus500(1).exe -d C:\Users\Ruda\Downloads
Task: {712B8D58-53FD-47AA-A47E-B77BEB389D27} - System32\Tasks\{47747F88-D939-441C-BA01-5980F3ACC2C1} => pcalua.exe -a C:\Users\Ruda\Downloads\AdobeAIRInstaller(1).exe -d C:\Users\Ruda\Downloads
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
FirewallRules: [{007D1DFE-3301-44A4-8CCC-CF055A80B02A}] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe
FirewallRules: [{9EA4D1FE-5945-4782-B1EA-7B0C35937587}] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{DF581E5F-592B-4B1A-938F-4D2259981200}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{01822DC9-7593-4607-A98E-D7B6B75BA1C1}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe
Hosts:
EmptyTemp:
End
*****************

Restore point was successfully created.

========================= File: C:\Program Files (x86)\Common Files\lpuninstall.exe ========================

File is digitally signed
MD5: 13B77CFA147D9DD7CDF00A66A885EF85
Creation and modification date: 2015-05-31 15:37 - 2015-08-13 15:16
Size: 10393600
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:

====== End of File: ======

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\LogMeIn Hamachi Ui => value not found.
HKU\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoLowDiskSpaceChecks => value not found.
"C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SystemExplorerDisabled" => Could not move.
HKLM\SOFTWARE\Policies\Google => key not found.
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => key not found.
HKU\S-1-5-21-841361005-909514878-2309378359-1002\SOFTWARE\Policies\Microsoft\Internet Explorer => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\SuggestionsURL_JSON hxxp://api.widdit.com/suggestions/?form ... => value not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value not found.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value not found.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3BA38A96-8C57-4DFA-B37F-13BEE26FE5BC} => key not found.
C:\Windows\System32\Tasks\{5F50205B-81B7-4BE5-A556-CAF25610E21D} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5F50205B-81B7-4BE5-A556-CAF25610E21D} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5143E29B-11C6-49CD-AC53-2A8CC7A5635B} => key not found.
C:\Windows\System32\Tasks\{9FA5B99F-75D8-4FF1-9725-01FB48586EE6} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{9FA5B99F-75D8-4FF1-9725-01FB48586EE6} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{532591BF-F6F0-430E-9EAA-061231AAF910} => key not found.
C:\Windows\System32\Tasks\{927A8016-7C84-4099-B4A9-7974F86116C3} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{927A8016-7C84-4099-B4A9-7974F86116C3} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{62F478F3-81FF-4C11-93B5-0FFF846C66DB} => key not found.
C:\Windows\System32\Tasks\{C582AF60-6D3C-4318-91FB-FED9812D23A6} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C582AF60-6D3C-4318-91FB-FED9812D23A6} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{712B8D58-53FD-47AA-A47E-B77BEB389D27} => key not found.
C:\Windows\System32\Tasks\{47747F88-D939-441C-BA01-5980F3ACC2C1} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{47747F88-D939-441C-BA01-5980F3ACC2C1} => key not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{007D1DFE-3301-44A4-8CCC-CF055A80B02A} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9EA4D1FE-5945-4782-B1EA-7B0C35937587} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DF581E5F-592B-4B1A-938F-4D2259981200}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{01822DC9-7593-4607-A98E-D7B6B75BA1C1}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe => value not found.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 29.3 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 00:28:51 ====

[altrok]

Ted jiz vse probehlo v poradku. Jak se chova PC?

[rudkr63]

PC se chová hodně divně.Po startu a kliku na libovolný prohlížeč se po nějaké době otevře průzkumník.Samotné prohlížeče se načítají dost dlouho, ale IE otevře jen prázdnou stránku a po cca. 3-5 minutách se zobrazí domovská (sezn..), ale odsud se už nedostanu nikam jinam.Nereaguje, tváří se, že načítá a nabídne mi nabídne restart, nebo zavření.
-nevím jak, ale IE už načítá normálně

[altrok]

Provedte obnovu systemu k bodu, ktery vytvoril FRST (prvni by mel byt vytvoren zhruba 2015-10-28 23:54:38). Dejte pak aktualni logy z FRST (i Addition.txt).

[rudkr63]

Nemůžu provést obnovení systému-viz. foto

[rudkr63]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:29-10-2015
Ran by Ruda (administrator) on RUDA-PC (30-10-2015 15:18:53)
Running from C:\PerfLogs\Desktop
Loaded Profiles: Ruda (Available Profiles: Ruda & verak & Guest)
Platform: Windows 10 Home (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\BCMWLTRY.EXE
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
() C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3350760 2015-08-03] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [361984 2011-05-26] (Alcor Micro Corp.)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1427648 2015-08-05] (COMODO)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.exe [7138816 2015-10-25] (Broadcom Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2000-01-01] (Intel Corporation)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-06-25] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174752 2012-06-19] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5564784 2015-07-20] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2015-08-13] (ArcSoft Inc.)
HKLM-x32\...\Run: [WD Drive Unlocker] => C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [1761120 2015-07-31] (Western Digital Technologies, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [134784 2015-10-11] (Qualcomm®Atheros®)
HKU\S-1-5-18\...\Run: [Copy] => "C:\Users\Ruda\AppData\Roaming\Copy\CopyAgent.exe"
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [185816 2015-10-03] (NVIDIA Corporation)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [185816 2015-10-03] (NVIDIA Corporation)
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [185816 2015-10-03] (NVIDIA Corporation)
AppInit_DLLs: , C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [185816 2015-10-03] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [164008 2015-10-03] (NVIDIA Corporation)
AppInit_DLLs-x32: , C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [164008 2015-10-03] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll [2014-04-17] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll [2014-04-17] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll [2014-04-17] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll [2014-04-17] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll [2014-04-17] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll [2014-04-17] (Microsoft Corporation)
Startup: C:\Users\Classic .NET AppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Uninstall LastPass RunOnce.lnk [2015-08-13]
ShortcutTarget: Uninstall LastPass RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
Startup: C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Uninstall LastPass RunOnce.lnk [2015-08-13]
ShortcutTarget: Uninstall LastPass RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
Startup: C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Uninstall LastPass RunOnce.lnk [2015-08-13]
ShortcutTarget: Uninstall LastPass RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
Startup: C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SystemExplorerDisabled [2015-10-28] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{e557249b-ec4d-4e00-9a90-d94fcb0f2c10}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{eb650a0a-9e1b-4002-8743-32fa3fd63317}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKLM-x32 -> SuggestionsURL_JSON hxxp://api.widdit.com/suggestions/?format=ffplugin&ua=ie&src=addon&si=71578&gid=71578-8195-1383444228385-7077C284AEBE65440D00D038ED049FA9&dbCode=1&command={searchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> 4B5EA646DF6531A15088C36557476C0C URL = hxxp://www.mapy.cz/?sourceid=quicksearch_6826& ... earchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> 4DC27B67ED0FA7A90115FB569A0CB241 URL = hxxp://www.zbozi.cz/?sourceid=quicksearch_6826&q={searchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> 93D5862C69DABE30EA665EDB907337B1 URL = hxxp://www.firmy.cz/phr/{searchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> FDF7979D990CE087B615003ED26C1913 URL = hxxp://videa.seznam.cz/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchterms}&c ... 3837783968
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {1E2C0E9F-5A57-404C-B006-0935D8B62540} URL = hxxp://www.alza.cz/SearchAdvanced.asp?EXPS={searchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {4B2BCD33-D984-4D8E-9C54-B803E34B1CA9} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12902
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {697A3350-6749-4A05-8E19-B8931A10DA0C} URL = hxxp://www.google.com/search?q={searchterms}&c ... 3837783968
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = hxxp://us.search.yahoo.com/search?p={searchTerms}&fr=chr-comodo
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {C7C7B0ED-D00A-4989-9D5A-29377FA141AF} URL = hxxp://cs.wikipedia.org/w/index.php?title=Speci%C3%A1ln%C3%AD:Search&search={searchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {D55EDDC6-DF84-4DE3-A258-8E0FC1DAE671} URL = hxxp://www.radirna.cz/search/{searchTerms}/
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {DCEBF011-A869-4BF6-AF25-376F5EE21962} URL = hxxp://cs.wikipedia.org/w/index.php?title=Speci%C3%A1ln%C3%AD:Hled%C3%A1n%C3%AD&search={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-08-04] (Microsoft Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-08-07] (SEIKO EPSON CORPORATION)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-08-12] (Microsoft Corporation)
BHO: DownloadHelper Class -> {FF2573AE-E1ED-40e1-83BA-F544CB2EE135} -> C:\Program Files\Common Files\Download Helper\DownloadHelperx64.dll [2011-01-07] (IE Download Helper)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22] (Eyeo GmbH)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO-x32: DownloadHelper Class -> {FF2573AE-E1ED-40e1-83BA-F544CB2EE135} -> C:\Program Files (x86)\Common Files\Download Helper\DownloadHelper.dll [2011-01-07] (IE Download Helper)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-08-07] (SEIKO EPSON CORPORATION)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Toolbar: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> No Name - {91397D20-1446-11D4-8AF4-0040CA1127B6} - No File
DPF: HKLM-x32 {0D41B8C5-2599-4893-8183-00195EC8D5F9} hxxp://www.asus.com/support/asusTek_sys_ctrl3.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\d929bzy3.default-1439143576991
FF Homepage: hxxps://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-16] ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2015-09-15] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2015-09-15] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-16] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1219159.dll [2015-06-26] (Adobe Systems, Inc.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-09-15] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-04-12] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @oberon-media.com/ONCAdapter -> C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.14\npapicomadapter.dll [2012-05-31] (Oberon-Media )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-09-15] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [No File]
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-09-15] (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @kb-ext.cz/PKIComponent -> C:\Users\Ruda\AppData\Roaming\KB-ext\lib\x86\npPKIComponentNPAPI-kbext.dll [2015-03-25] (Komerční banka, a.s.)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @tools.google.com/Google Update;version=3 -> C:\Users\Ruda\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2014-11-14] (Google Inc.)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @tools.google.com/Google Update;version=9 -> C:\Users\Ruda\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2014-11-14] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll [2015-09-15] (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Users\Ruda\AppData\Roaming\mozilla\plugins\nppdf32.dll [2014-12-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Ruda\AppData\Roaming\mozilla\plugins\npPDFXCviewNPPlugin.dll [2014-12-28] (Tracker Software Products (Canada) Ltd.)
FF Extension: LastPass - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\d929bzy3.default-1439143576991\Extensions\support@lastpass.com [2015-09-25]
FF Extension: S3.Google Translator - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\d929bzy3.default-1439143576991\Extensions\s3google@translator.xpi [2015-10-10]
FF Extension: uBlock Origin - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\d929bzy3.default-1439143576991\Extensions\uBlock0@raymondhill.net.xpi [2015-10-28]
FF Extension: Speed Dial - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\d929bzy3.default-1439143576991\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi [2015-09-13]
FF Extension: Tab Mix Plus - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\d929bzy3.default-1439143576991\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2015-09-02]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2015-08-06] [not signed]

Chrome:
=======
CHR HomePage: Profile 2 -> hxxp://www.google.cz/?gws_rd=ssl
CHR StartupUrls: Profile 2 -> "hxxp://www.google.cz/?gws_rd=ssl"
CHR Profile: C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Default
CHR Profile: C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Překladač Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-10-12]
CHR Extension: (Prezentace Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-25]
CHR Extension: (Dokumenty Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-25]
CHR Extension: (Disk Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-27]
CHR Extension: (Rapport) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2015-07-06]
CHR Extension: (YouTube) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-12]
CHR Extension: (Adblock Plus) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-10-12]
CHR Extension: (OneTab) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2015-07-17]
CHR Extension: (Vyhledávání Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Black Menu for Google™) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\eignhdfgaldabilaaegmdfbajngjmoke [2015-10-27]
CHR Extension: (Tabulky Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-11]
CHR Extension: (SearchPreview) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hcjdanpjacpeeppdjkppebobilhaglfo [2015-09-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-03]
CHR Extension: (Gmail) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-15]
CHR HKU\S-1-5-21-841361005-909514878-2309378359-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx

Opera:
=======
OPR StartupUrls: "hxxp://www.seznam.cz/?clid=6826"

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2015-02-25] (ABBYY)
R3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2015-08-07] (ArcSoft Inc.)
S3 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [319104 2015-10-11] (Windows (R) Win 7 DDK provider) [File not signed]
S3 ChromodoUpdater; C:\Program Files (x86)\Comodo\Chromodo\chromodo_updater.exe [1998520 2015-08-30] (Comodo)
S3 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2768472 2015-09-16] (Microsoft Corporation)
R3 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5542472 2015-09-03] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265792 2015-08-05] (COMODO)
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [216576 2015-02-11] () [File not signed]
R2 DokanMounter; C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe [11776 2015-10-27] () [File not signed]
S3 EpsonCustomerResearchParticipation; C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe [676336 2015-09-09] (SEIKO EPSON CORPORATION)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2015-08-05] (Seiko Epson Corporation)
S3 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-28] (NVIDIA Corporation)
S3 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2015-10-03] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2000-01-01] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-10-26] (LogMeIn, Inc.)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-28] (Malwarebytes)
U2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-28] (Malwarebytes)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-03] (Microsoft Corporation)
R2 MSSQL$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2015-02-21] (Microsoft Corporation)
R2 MSSQLSERVER; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe [29293408 2015-02-21] (Microsoft Corporation)
S3 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-28] (NVIDIA Corporation)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2255128 2015-10-18] (IBM Corp.)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2015-10-02] (Riverbed Technology, Inc.)
S3 SNMP; C:\Windows\System32\snmp.exe [51712 2015-08-03] (Microsoft Corporation)
S3 SNMP; C:\Windows\SysWOW64\snmp.exe [46080 2015-08-03] (Microsoft Corporation)
S3 ssinstall; C:\Windows\SysWOW64\ssins.exe [2324216 2013-11-01] (PS Media s.r.o.)
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Mister Group)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [36504 2015-08-03] (VIA Technologies, Inc.)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-03] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-03] (Microsoft Corporation)
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2015-07-20] (Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [307064 2015-07-31] (Western Digital Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe [5821952 2015-10-25] (Broadcom Corporation) [File not signed]
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2015-10-11] (Atheros) [File not signed]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiCharger; C:\Windows\SysWOW64\DRIVERS\AiCharger.sys [17152 2012-02-29] (ASUSTek Computer Inc.)
R3 anvsnddrv; C:\Windows\system32\drivers\anvsnddrv.sys [33872 2015-08-14] (AnvSoft Inc.)
S3 ASUSProcObsrv; C:\Games\eSupport\eDriver\I386\AsPrOb64.sys [12416 2010-05-26] ()
R3 athr; C:\Windows\System32\drivers\athw10x.sys [4325544 2015-08-03] (Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [100776 2015-08-06] (ASUS Corporation)
S3 avc3; C:\Windows\System32\DRIVERS\avc3.sys [727592 2015-06-18] (BitDefender)
S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [601360 2015-06-18] (BitDefender)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2015-10-11] (Qualcomm Atheros)
S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [165376 2015-07-10] (Microsoft Corporation)
S3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [36864 2015-07-10] (Microsoft Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2015-10-03] (Motorola Solutions, Inc.)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [21720 2015-08-05] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [827632 2015-08-05] (COMODO)
R1 cmdhlp; C:\Windows\system32\DRIVERS\cmdhlp.sys [35056 2015-08-05] (COMODO)
R2 Dokan; C:\Windows\system32\drivers\dokan.sys [106888 2012-05-19] (Windows (R) Win 7 DDK provider)
R3 ETDSMBus; C:\Windows\System32\drivers\ETDSMBus.sys [31320 2015-07-14] (ELAN Microelectronic Corp.)
R3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-04-03] (REALiX(tm))
R3 i8042HDR; C:\Windows\system32\DRIVERS\i8042HDR.sys [15920 2009-08-14] (Windows (R) Codename Longhorn DDK provider)
R1 inspect; C:\Windows\system32\DRIVERS\inspect.sys [127232 2015-08-05] (COMODO)
S3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [113280 2015-05-06] (ITE )
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-28] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-28] (Malwarebytes Corporation)
R1 MPCKpt; C:\Windows\System32\DRIVERS\MPCKpt.sys [55016 2015-09-20] (DotCash)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-03] (Microsoft Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-09-05] (NVIDIA Corporation)
S3 pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [82816 2014-12-11] (VSO Software) [File not signed]
S3 PCWinSoft; C:\Windows\System32\DRIVERS\scrcamhrdrv_x64.sys [241800 2012-10-11] (Windows (R) Server 2003 DDK provider)
R1 RapportCerberus_1507072; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1507072.sys [959416 2015-09-22] (IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [500184 2015-10-18] (IBM Corp.)
R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [139896 2015-10-18] (IBM Corp.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [394584 2015-10-18] (IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [489272 2015-10-18] (IBM Corp.)
S3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [410880 2015-08-23] (Realsil Semiconductor Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 VClone; C:\Windows\System32\DRIVERS\VClone.sys [34816 2014-12-28] (Elaborate Bytes AG) [File not signed]
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 XHCIdrv; C:\Windows\System32\DRIVERS\XHCIdrv.sys [119720 2013-08-08] (Windows (R) Win 7 DDK provider)
S3 cpuz134; \??\C:\Users\Ruda\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]
S3 cpuz137; \??\C:\Users\Ruda\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [X]
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-30 15:01 - 2015-10-30 15:01 - 00000000 ___RD C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-10-30 14:58 - 2015-10-30 14:58 - 00016148 _____ C:\Windows\system32\RUDA-PC_Ruda_HistoryPrediction.bin
2015-10-29 22:22 - 2015-10-29 22:22 - 00011778 _____ C:\Users\Ruda\Downloads\1801538.xlsx
2015-10-28 22:38 - 2015-10-30 14:46 - 00000022 _____ C:\Windows\S.dirmngr
2015-10-28 22:16 - 2015-10-28 22:16 - 00009798 _____ C:\Users\Ruda\Documents\MAMB.txt
2015-10-28 10:10 - 2015-10-30 14:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-10-28 10:10 - 2015-10-28 14:40 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-10-28 10:10 - 2015-10-28 14:40 - 00001173 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-10-28 10:09 - 2015-10-30 14:38 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-10-28 10:09 - 2015-10-28 14:39 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-10-28 10:09 - 2015-10-28 14:39 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-10-28 10:09 - 2015-10-28 14:39 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-10-28 10:04 - 2015-10-28 14:38 - 22908888 _____ (Malwarebytes ) C:\Users\Ruda\Downloads\mbam-setup-2.2.0.1024.exe
2015-10-27 22:42 - 2015-10-27 22:43 - 00000000 ____D C:\AVG_Remover
2015-10-27 22:41 - 2015-10-27 22:42 - 07814752 _____ ( ) C:\Users\Ruda\Downloads\AVG_Remover.exe
2015-10-27 12:06 - 2015-10-27 12:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-10-27 11:56 - 2015-10-27 11:56 - 00000000 ____D C:\Program Files (x86)\Dokan
2015-10-27 11:55 - 2015-10-27 11:56 - 00000000 ____D C:\ProgramData\Team MediaPortal
2015-10-26 22:42 - 2015-10-26 22:43 - 00000000 ____D C:\rsit
2015-10-26 21:29 - 2015-10-30 14:42 - 00000000 ____D C:\Windows\LastGood
2015-10-26 21:11 - 2015-10-29 13:24 - 00031520 _____ C:\Windows\PFRO.log
2015-10-26 20:48 - 2015-10-26 20:48 - 00000000 _____ C:\Windows\setuperr.log
2015-10-26 20:48 - 2015-10-26 20:48 - 00000000 _____ C:\Windows\setupact.log
2015-10-26 16:29 - 2015-10-30 14:46 - 00000275 _____ C:\Windows\WindowsUpdate.log
2015-10-26 02:19 - 2015-10-26 01:58 - 00314171 _____ C:\Users\Ruda\Documents\Krčková Jana.1964 .wav
2015-10-25 22:49 - 2015-10-25 22:50 - 00000000 ____D C:\Program Files (x86)\Cisco
2015-10-25 22:48 - 2015-10-25 22:48 - 01047552 _____ (Broadcom Corporation) C:\Windows\system32\BCMLogon.dll
2015-10-25 22:47 - 2015-10-25 22:47 - 04961800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcredist_x64.exe
2015-10-25 22:47 - 2015-10-25 22:47 - 04658688 _____ (Broadcom Corporation) C:\Windows\system32\bcmttls.dll
2015-10-25 22:47 - 2015-10-25 22:47 - 03161088 _____ (Microsoft Corporation) C:\Windows\system32\vcredist_x64.exe
2015-10-25 22:47 - 2015-10-25 22:47 - 00073728 _____ (Broadcom Corporation) C:\Windows\system32\wltrynt.dll
2015-10-25 22:47 - 2015-10-25 22:47 - 00022592 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\bcm42rly.sys
2015-10-25 22:47 - 2015-10-25 22:47 - 00006656 _____ C:\Windows\system32\bcmwlrc.dll
2015-10-25 22:47 - 2015-10-25 22:47 - 00000446 _____ C:\Windows\SysWOW64\vcredist_x64.bat
2015-10-25 22:47 - 2015-10-25 22:47 - 00000445 _____ C:\Windows\system32\vcredist_x64.bat
2015-10-25 22:47 - 2015-10-25 22:47 - 00000000 ____D C:\Program Files\Broadcom
2015-10-25 22:44 - 2015-10-25 22:44 - 00000000 ____D C:\Users\Ruda\Downloads\WIFI_XPVistaWin7_8_VER510082112_VER6305982
2015-10-25 17:50 - 2015-10-25 17:50 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\PDF Writer
2015-10-25 17:50 - 2015-10-25 17:50 - 00000000 ____D C:\Users\Ruda\AppData\Local\PDF Writer
2015-10-25 17:46 - 2015-10-25 17:46 - 00228352 _____ (Bullzip) C:\Windows\SysWOW64\bzFlRdr.dll
2015-10-25 17:46 - 2015-10-25 17:46 - 00103424 _____ (Bullzip) C:\Windows\SysWOW64\bzDCT.dll
2015-10-25 17:46 - 2015-10-25 17:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bullzip
2015-10-25 17:46 - 2015-10-25 17:46 - 00000000 ____D C:\Program Files\Common Files\Bullzip
2015-10-25 17:45 - 2015-10-25 17:48 - 00000000 ____D C:\ProgramData\PDF Writer
2015-10-25 17:45 - 2015-10-25 17:45 - 01103872 _____ C:\Windows\SysWOW64\CBLCtlsU.ocx
2015-10-25 17:45 - 2015-10-25 17:45 - 01061888 _____ C:\Windows\SysWOW64\ExLvwU.ocx
2015-10-25 17:45 - 2015-10-25 17:45 - 00805376 _____ C:\Windows\SysWOW64\EditCtlsU.ocx
2015-10-25 17:45 - 2015-10-25 17:45 - 00645632 _____ C:\Windows\SysWOW64\BtnCtlsU.ocx
2015-10-25 17:45 - 2015-10-25 17:45 - 00539648 _____ C:\Windows\SysWOW64\LblCtlsU.ocx
2015-10-25 17:45 - 2015-10-25 17:45 - 00476160 _____ C:\Windows\SysWOW64\TabStripCtlU.ocx
2015-10-25 17:45 - 2015-10-25 17:45 - 00000000 ____D C:\Program Files\Bullzip
2015-10-25 17:44 - 2015-10-25 17:45 - 11342496 _____ (Bullzip ) C:\Users\Ruda\Downloads\Setup_BullzipPDFPrinter_10_19_0_2457_FREE.exe
2015-10-25 15:32 - 2015-10-30 14:42 - 00000000 ____D C:\Windows\LastGood.Tmp
2015-10-25 00:22 - 2015-10-25 00:23 - 43688576 _____ (Skype Technologies S.A.) C:\Users\Ruda\Downloads\SkypeSetupFull.exe
2015-10-23 10:31 - 2015-10-28 22:36 - 00000000 ____D C:\Users\Ruda\AppData\Local\Seznam.cz
2015-10-23 10:30 - 2015-10-28 09:28 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Seznam Browser
2015-10-23 10:30 - 2015-10-23 10:30 - 00001947 _____ C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.lnk
2015-10-23 10:29 - 2015-10-23 10:30 - 44251016 _____ C:\Users\Ruda\Downloads\Seznam.cz.exe
2015-10-22 21:46 - 2015-10-22 21:46 - 04673608 _____ (Mgr. Radovan Kraus ) C:\Users\Ruda\Downloads\TiskObalek_CZ_3229.exe
2015-10-20 22:35 - 2015-10-20 22:37 - 00014567 _____ C:\Users\Ruda\Documents\Libre Office.odt
2015-10-20 20:48 - 2015-10-20 20:58 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2015-10-20 20:47 - 2015-10-20 21:04 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Copy
2015-10-20 20:17 - 2015-10-20 20:17 - 00001219 _____ C:\Users\Public\Desktop\LibreOffice 5.0.lnk
2015-10-20 20:17 - 2015-10-20 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.0
2015-10-20 20:14 - 2015-10-20 20:17 - 00000000 ____D C:\Program Files (x86)\LibreOffice 5
2015-10-20 20:02 - 2015-10-20 20:12 - 220336128 _____ C:\Users\Ruda\Downloads\LibreOffice_5.0.2_Win_x86.msi
2015-10-16 11:15 - 2015-10-16 20:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-16 09:05 - 2015-10-25 00:17 - 00001846 _____ C:\Users\Public\Desktop\Q-Dir.lnk
2015-10-14 10:04 - 2015-10-14 10:04 - 24595456 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 22322624 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 21875712 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 20858360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 19325952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 18806272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 16708608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 13027840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 12504064 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 11262976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 08020320 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-10-14 10:04 - 2015-10-14 10:04 - 07523840 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 05454848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 04792320 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 03586560 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2015-10-14 10:04 - 2015-10-14 10:04 - 03580416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 02573768 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 02178560 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 01997336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 01871360 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 01795072 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 01594368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 01423872 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 01382400 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2015-10-14 10:04 - 2015-10-14 10:04 - 01294352 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-10-14 10:04 - 2015-10-14 10:04 - 01276416 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 01205248 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 01123400 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-10-14 10:04 - 2015-10-14 10:04 - 01018568 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-10-14 10:04 - 2015-10-14 10:04 - 00980832 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2015-10-14 10:04 - 2015-10-14 10:04 - 00949248 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00928256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00858408 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-10-14 10:04 - 2015-10-14 10:04 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00796160 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00766976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00757760 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00650240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00625152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00613376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00579584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00579072 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-10-14 10:04 - 2015-10-14 10:04 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00574464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00525312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00498016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-10-14 10:04 - 2015-10-14 10:04 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00466432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MessagingDataModel2.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccountApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\PhoneCallHistoryApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneCallHistoryApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\CallHistoryClient.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallHistoryClient.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00078528 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-10-13 17:05 - 2015-10-13 17:07 - 39981240 _____ (ZONER software ) C:\Users\Ruda\Downloads\zps18_cz_templates.exe
2015-10-12 13:12 - 2015-10-12 13:30 - 00000000 ____D C:\Users\Ruda\Documents\EVA recepty
2015-10-11 23:26 - 2015-10-28 22:42 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Atheros
2015-10-11 23:26 - 2015-10-26 21:25 - 00000000 ____D C:\ProgramData\Atheros
2015-10-11 23:12 - 2015-10-11 23:20 - 00000000 ____D C:\Program Files\Common Files\QCA_Bluetooth
2015-10-11 23:12 - 2015-10-11 23:13 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program
2015-10-11 22:56 - 2015-10-11 22:56 - 00000000 ____D C:\Users\Ruda\Downloads\Bluetooth_QualcommAtheros_Win7_64_VER801318
2015-10-11 21:56 - 2015-10-11 21:56 - 03642530 _____ C:\Windows\SysWOW64\MSI43a51.LOG
2015-10-11 11:56 - 2015-10-11 12:10 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Foxit Software
2015-10-10 23:02 - 2015-10-10 23:02 - 00288932 _____ C:\Users\Ruda\Documents\AInfo.zip
2015-10-10 13:51 - 2015-10-10 13:52 - 18359976 _____ (ZONER software ) C:\Users\Ruda\Downloads\zps18_cz_aktualizace_02.exe
2015-10-07 20:55 - 2015-10-07 20:56 - 00000000 ____D C:\Users\Ruda\Documents\Export
2015-10-06 23:32 - 2015-10-07 17:19 - 00000000 ____D C:\Users\Ruda\.smplayer
2015-10-06 23:31 - 2015-10-06 23:32 - 00000000 ____D C:\Program Files (x86)\SMPlayer
2015-10-06 23:31 - 2015-10-06 23:31 - 00001078 _____ C:\Users\Public\Desktop\SMPlayer.lnk
2015-10-06 23:31 - 2015-10-06 23:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SMPlayer
2015-10-06 23:29 - 2015-10-06 23:30 - 24130337 _____ C:\Users\Ruda\Downloads\smplayer-15.9.0-win32.exe
2015-10-06 15:45 - 2015-10-06 15:45 - 00002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Zoner Photo Studio 18.lnk
2015-10-06 15:45 - 2015-10-06 15:45 - 00002027 _____ C:\Users\Public\Desktop\Zoner Photo Studio 18.lnk
2015-10-06 15:44 - 2015-10-06 15:44 - 00000000 ____D C:\Program Files\Zoner
2015-10-03 15:46 - 2015-10-03 15:46 - 00000000 ____D C:\Users\Ruda\Documents\Moje přijaté soubory
2015-10-03 15:39 - 2015-10-03 15:40 - 01898104 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435598.dll
2015-10-03 15:39 - 2015-10-03 15:39 - 01558832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435598.dll
2015-10-03 15:19 - 2015-10-20 10:29 - 00810488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-10-03 15:19 - 2015-10-20 10:29 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-03 14:01 - 2015-10-26 21:27 - 00031976 _____ C:\Windows\system32\nvinfo.pb
2015-10-03 14:01 - 2015-10-03 14:03 - 18523352 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 16168336 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 13283288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 11147952 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-10-03 14:01 - 2015-10-03 14:03 - 01173920 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 01069928 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 01061224 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 01000064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 00992104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 00985264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 00159560 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 00137240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 00040296 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2015-10-03 14:01 - 2015-10-03 14:02 - 30527664 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-10-03 14:01 - 2015-10-03 14:02 - 22981296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-10-03 14:01 - 2015-10-03 14:02 - 16018528 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-10-03 14:01 - 2015-10-03 14:02 - 15901632 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-10-03 14:01 - 2015-10-03 14:02 - 14519312 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-10-03 14:01 - 2015-10-03 14:02 - 12981064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-10-03 14:01 - 2015-10-03 14:02 - 11851416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-10-03 14:01 - 2015-10-03 14:02 - 02369712 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-10-03 14:01 - 2015-10-03 14:02 - 02172592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-10-03 14:00 - 2015-10-03 14:03 - 03353400 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-10-03 14:00 - 2015-10-03 14:03 - 02964560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-10-03 14:00 - 2015-10-03 14:01 - 37757616 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-10-03 14:00 - 2015-10-03 14:00 - 42738864 _____ C:\Windows\system32\nvcompiler.dll
2015-10-03 13:59 - 2015-10-03 13:59 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_btmaux_01009.Wdf
2015-10-02 23:46 - 2015-10-02 23:46 - 00003556 _____ C:\Windows\System32\Tasks\{3A295E5E-DC55-4A47-B309-877E9C1DD03D}
2015-10-02 23:32 - 2015-10-11 22:40 - 00000000 ____D C:\Program Files (x86)\Ralink Corporation
2015-10-01 09:17 - 2015-10-01 09:17 - 05120056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2015-10-01 09:16 - 2015-10-01 09:17 - 07055872 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 07569408 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 06487248 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 06101504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 05079552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 03781120 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 03248640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02987520 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02824248 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02740224 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02660864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02646528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02494712 _____ C:\Windows\system32\CoreUIComponents.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02464216 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02446648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02432336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-10-01 09:16 - 2015-10-01 09:16 - 02417664 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02236416 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02228736 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02226688 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02207232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02156400 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02154808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02093056 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01983824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-10-01 09:16 - 2015-10-01 09:16 - 01918464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01766952 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01601536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01563472 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01563392 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01397088 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01331200 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01295712 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01290240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\RemoteNaturalLanguage.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01203712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01181696 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01162240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01104384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01010176 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00966416 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00962400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00910848 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00899584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoteNaturalLanguage.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00894256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2015-10-01 09:16 - 2015-10-01 09:16 - 00869376 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00859136 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00809352 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00784136 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00781976 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00764416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00677888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00658528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00646672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00555768 _____ (Microsoft Corporation) C:\Windows\system32\directmanipulation.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00537080 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00513536 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 06572032 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 02639872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 01895568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 01844736 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 01812480 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 01357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 01171456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 01168736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00929280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00928256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00832512 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00780288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00701952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\CellularAPI.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00671232 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00621056 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00587264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00584656 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00553808 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2015-10-01 09:15 - 2015-10-01 09:15 - 00521728 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00516448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-10-01 09:15 - 2015-10-01 09:15 - 00508248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00505696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00501008 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00476760 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00473088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00464896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00454512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directmanipulation.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00441168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2015-10-01 09:15 - 2015-10-01 09:15 - 00439296 _____ (Microsoft Corporation) C:\Windows\system32\LocationWebproxy.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00434376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00428128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00407608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00406864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-10-01 09:15 - 2015-10-01 09:15 - 00403456 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00395088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\LocationGeofences.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00332624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00328704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00278352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\syncutil.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00253440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00243760 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeWiFi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\LocationCrowdsource.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeCell.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\accountaccessor.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeIP.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\SubscriptionMgr.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2015-10-01 09:15 - 2015-10-01 09:15 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\dmcsps.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2015-10-01 09:15 - 2015-10-01 09:15 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00102304 _____ (Microsoft Corporation) C:\Windows\system32\omadmapi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00099664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\LocationWiFiAdapter.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00088384 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\ngckeyenum.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2015-10-01 09:15 - 2015-10-01 09:15 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2015-10-01 09:15 - 2015-10-01 09:15 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\HttpsDataSource.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00074880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\wwancfg.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthmodem.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Speech.Pal.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Speech.Pal.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\buttonconverter.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\syncmlhook.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManagerShellext.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-30 15:19 - 2015-01-09 23:20 - 00000000 ____D C:\FRST
2015-10-30 15:17 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\AppReadiness
2015-10-30 15:15 - 2015-09-27 21:07 - 01474832 _____ C:\Windows\system32\Drivers\sfi.dat
2015-10-30 15:12 - 2015-08-14 16:28 - 00000000 ____D C:\Users\Ruda\AppData\LocalLow\LastPass
2015-10-30 15:11 - 2013-03-07 10:49 - 00000000 ____D C:\Users\Ruda\AppData\Local\CrashDumps
2015-10-30 14:55 - 2015-08-09 20:03 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2015-10-30 14:51 - 2015-08-03 03:50 - 00000000 ____D C:\Users\Ruda
2015-10-30 14:48 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\sru
2015-10-30 14:48 - 2015-06-04 10:11 - 00008192 _____ C:\Windows\SysWOW64\WDPABKP.dat
2015-10-30 14:46 - 2015-07-10 13:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-30 14:44 - 2015-08-03 03:50 - 00000000 ____D C:\Users\DefaultAppPool
2015-10-30 14:44 - 2015-08-03 03:49 - 00000000 ____D C:\Users\Guest
2015-10-30 14:44 - 2015-08-03 03:49 - 00000000 ____D C:\Users\Classic .NET AppPool
2015-10-30 14:43 - 2015-08-07 21:10 - 00000000 ____D C:\Users\verak
2015-10-30 14:43 - 2015-02-10 13:36 - 00000000 ____D C:\Program Files (x86)\Q-Dir
2015-10-30 14:43 - 2015-01-28 00:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Q-Dir
2015-10-30 14:43 - 2014-12-23 11:57 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Q-Dir
2015-10-30 14:43 - 2014-05-05 00:52 - 00000000 ____D C:\ProgramData\SystemExplorer
2015-10-30 14:43 - 2013-12-02 11:38 - 00000000 ____D C:\Program Files\CCleaner
2015-10-30 14:43 - 2013-11-23 00:33 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\vlc
2015-10-30 14:42 - 2015-08-04 17:49 - 00000000 ____D C:\Windows\System32\Tasks\COMODO
2015-10-30 14:42 - 2015-07-04 00:37 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\uTorrent
2015-10-30 14:42 - 2014-06-08 17:53 - 00000000 ____D C:\Users\Ruda\AppData\LocalLow\Adblock Plus for IE
2015-10-30 14:07 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\registration
2015-10-30 14:05 - 2015-01-21 00:52 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Opera Software
2015-10-30 14:05 - 2014-09-29 13:46 - 00000000 ____D C:\Users\Ruda\Downloads\Photos
2015-10-30 14:05 - 2013-08-23 16:09 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Skype
2015-10-30 14:00 - 2015-08-18 17:03 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-10-30 03:36 - 2015-07-10 11:55 - 00000000 ____D C:\Windows\CbsTemp
2015-10-29 14:23 - 2015-07-16 20:27 - 00000000 ____D C:\Users\Ruda\Downloads\Originals
2015-10-29 14:23 - 2014-11-29 21:11 - 00000000 ____D C:\Users\Ruda\Downloads\images
2015-10-28 23:46 - 2015-08-29 23:17 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-10-28 23:41 - 2013-10-09 15:55 - 00000000 ____D C:\Program Files (x86)\Java
2015-10-28 23:28 - 2015-07-10 10:05 - 00786432 ___SH C:\Windows\system32\config\BBI
2015-10-28 23:20 - 2013-03-26 02:11 - 00000000 ____D C:\Users\Ruda\AppData\LocalLow\Temp
2015-10-28 22:45 - 2013-07-15 19:59 - 00000000 ____D C:\Users\Ruda\AppData\Local\LogMeIn Hamachi
2015-10-28 22:03 - 2015-08-03 13:31 - 00004190 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{B9C26119-2806-4546-B247-5A5B1261D67E}
2015-10-28 01:17 - 2013-03-07 02:52 - 00000000 ____D C:\Users\Ruda\Documents\Bluetooth Folder
2015-10-28 00:39 - 2015-05-31 02:14 - 00000000 ____D C:\Windows\system32\log
2015-10-28 00:11 - 2015-05-13 12:30 - 00000000 ____D C:\Users\Ruda\AppData\Local\Avg
2015-10-28 00:09 - 2015-08-29 23:06 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Seznam.cz
2015-10-28 00:02 - 2013-03-14 00:58 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2015-10-27 23:56 - 2015-08-15 01:00 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-10-27 22:25 - 2015-08-03 03:46 - 02565488 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-27 22:25 - 2015-07-10 17:02 - 01098470 _____ C:\Windows\system32\perfh005.dat
2015-10-27 22:25 - 2015-07-10 17:02 - 00321232 _____ C:\Windows\system32\perfc005.dat
2015-10-27 12:19 - 2015-06-04 09:53 - 00000000 ____D C:\ProgramData\Package Cache
2015-10-27 12:06 - 2013-07-15 19:57 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2015-10-26 22:43 - 2013-10-12 22:46 - 00000000 ____D C:\Program Files\trend micro
2015-10-26 22:08 - 2015-08-17 20:14 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Kodi
2015-10-26 21:31 - 2015-08-03 03:41 - 00937616 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-10-26 21:31 - 2014-11-28 01:08 - 00000000 ___DC C:\Temp
2015-10-26 21:14 - 2015-06-16 15:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ochrana koncového bodu Trusteer
2015-10-26 21:10 - 2015-09-27 22:59 - 00662420 _____ C:\Windows\system32\Drivers\fvstore.dat
2015-10-26 16:21 - 2015-09-29 11:43 - 00000000 ____D C:\Windows\Minidump
2015-10-26 16:19 - 2014-11-28 01:50 - 00000000 ____D C:\Users\Ruda\Documents\čištění
2015-10-26 16:14 - 2014-06-08 17:53 - 00000000 ____D C:\Program Files\Adblock Plus for IE
2015-10-26 10:24 - 2014-06-19 14:40 - 00000000 ____D C:\Program Files (x86)\Recepty doma
2015-10-26 10:22 - 2015-06-09 09:18 - 10166280 _____ (Martin Roubec ) C:\Users\Ruda\Downloads\InstalRecepty.exe
2015-10-26 10:22 - 2014-06-19 14:40 - 00201216 _____ C:\Windows\SysWOW64\mediarcpt.dll
2015-10-26 10:22 - 2014-06-19 14:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recepty doma
2015-10-26 02:22 - 2015-08-10 23:47 - 00000000 ____D C:\Users\Ruda\Documents\Zvukové záznamy
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\zh-HK
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\tr-TR
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\th-TH
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\sl-SI
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\sk-SK
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\ro-RO
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\lv-LV
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\lt-LT
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\hr-HR
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\he-IL
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\et-EE
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\bg-BG
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\ar-SA
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Help
2015-10-25 16:48 - 2015-02-24 01:41 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\XnView
2015-10-25 01:42 - 2015-08-30 00:20 - 00000958 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-10-25 00:24 - 2013-08-23 15:45 - 00000000 ____D C:\ProgramData\Skype
2015-10-25 00:18 - 2013-09-03 09:22 - 00084612 _____ C:\Windows\Q-Dir.ini
2015-10-25 00:17 - 2015-01-28 00:36 - 00001852 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Q-Dir.lnk
2015-10-25 00:17 - 2015-01-28 00:36 - 00000000 ____D C:\Program Files\Q-Dir
2015-10-22 21:58 - 2015-04-03 02:48 - 00000000 ____D C:\ProgramData\firebird
2015-10-20 21:05 - 2015-09-14 08:52 - 04841864 _____ C:\Windows\system32\FNTCACHE.DAT
2015-10-20 20:19 - 2013-03-29 23:34 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\LibreOffice
2015-10-20 19:59 - 2015-06-28 14:13 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\OpenOffice
2015-10-19 22:42 - 2014-10-07 00:16 - 00022016 _____ C:\Users\Ruda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-10-19 15:38 - 2015-08-03 07:39 - 00000000 ____D C:\Users\Ruda\AppData\Local\Packages
2015-10-19 00:46 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\NDF
2015-10-18 22:37 - 2015-05-27 15:02 - 00000000 ____D C:\Users\Ruda\AppData\Local\Zoner
2015-10-18 15:06 - 2015-06-16 15:26 - 00394584 _____ (IBM Corp.) C:\Windows\system32\Drivers\RapportKE64.sys
2015-10-18 15:06 - 2015-06-16 15:26 - 00139896 _____ (IBM Corp.) C:\Windows\system32\Drivers\RapportHades64.sys
2015-10-17 20:53 - 2014-02-13 11:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-17 12:25 - 2013-03-12 14:25 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-10-16 20:46 - 2015-08-30 00:20 - 00004094 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2015-10-16 19:33 - 2013-03-13 23:20 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\dvdcss
2015-10-14 15:21 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\appraiser
2015-10-14 14:20 - 2013-07-10 13:25 - 00000000 ____D C:\Windows\system32\MRT
2015-10-14 13:55 - 2013-03-07 09:48 - 143481208 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-10-13 22:29 - 2014-03-14 20:54 - 00000000 ____D C:\Users\Ruda\Documents\Korejs,Havlán
2015-10-13 22:15 - 2014-12-24 18:03 - 00003972 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-10-12 21:31 - 2015-08-04 17:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2015-10-12 21:30 - 2015-08-04 18:43 - 00000082 _____ C:\Windows\wininit.ini
2015-10-12 21:30 - 2015-08-04 17:48 - 00000000 ____D C:\Program Files\COMODO
2015-10-11 23:20 - 2014-02-25 20:53 - 00179432 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_hcrp.sys
2015-10-11 23:20 - 2014-02-25 20:53 - 00137928 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_rcp.sys
2015-10-11 23:20 - 2014-02-25 20:53 - 00077464 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_lwflt.sys
2015-10-11 23:19 - 2014-02-25 20:53 - 00355528 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_a2dp.sys
2015-10-11 23:19 - 2014-02-25 20:53 - 00118984 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_avdt.sys
2015-10-11 23:19 - 2014-02-25 20:53 - 00089800 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_flt.sys
2015-10-11 23:19 - 2014-02-25 20:53 - 00035016 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_bus.sys
2015-10-11 23:13 - 2015-07-11 23:43 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite
2015-10-11 17:14 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\rescache
2015-10-11 02:18 - 2013-03-08 11:24 - 00002432 _____ C:\Windows\System32\Tasks\ASUS USB Charger Plus
2015-10-11 02:18 - 2013-03-07 11:21 - 00002384 _____ C:\Windows\System32\Tasks\AsusVibeSchedule
2015-10-11 02:18 - 2013-03-07 03:31 - 00002306 _____ C:\Windows\System32\Tasks\ATKOSD2
2015-10-08 20:55 - 2015-09-16 10:39 - 00011723 _____ C:\Users\Ruda\Documents\Městský úřad Chodov.odt
2015-10-07 12:52 - 2013-04-07 16:45 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\PhotoScape
2015-10-06 15:46 - 2015-05-27 15:02 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Zoner
2015-10-06 15:08 - 2013-10-18 00:03 - 00000000 ____D C:\Users\Ruda\Documents\MyHeritage
2015-10-06 13:39 - 2015-08-26 00:41 - 00000000 ____D C:\Program Files\ProgDVB
2015-10-05 10:07 - 2015-02-25 18:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2015-10-03 15:39 - 2015-08-03 03:41 - 00000000 ____D C:\ProgramData\NVIDIA
2015-10-03 14:13 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\F12
2015-10-03 14:13 - 2015-07-10 12:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-03 14:13 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2015-10-03 14:13 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2015-10-03 14:12 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\F12
2015-10-03 14:12 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\PurchaseDialog
2015-10-03 14:12 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Provisioning
2015-10-03 14:12 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\L2Schemas
2015-10-03 14:02 - 2015-07-13 19:45 - 00185816 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-10-03 14:01 - 2015-08-27 16:32 - 00164008 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-10-03 13:57 - 2013-07-22 17:56 - 00140600 _____ (Motorola Solutions, Inc.) C:\Windows\system32\Drivers\btmaux.sys
2015-10-03 13:57 - 2012-08-15 10:23 - 01721216 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2015-10-03 13:56 - 2013-03-08 11:01 - 00000000 ____D C:\Program Files (x86)\Intel
2015-10-02 22:32 - 2015-09-04 15:28 - 00000000 ____D C:\Program Files (x86)\WinPcap

==================== Files in the root of some directories =======

2013-03-16 11:33 - 2013-03-16 04:27 - 15271824 _____ (Google Inc.) C:\Program Files (x86)\picasa39-setup.exe
2015-05-31 15:37 - 2015-08-13 15:16 - 10393600 _____ () C:\Program Files (x86)\Common Files\lpuninstall.exe
2014-06-26 22:06 - 2014-06-26 22:19 - 0000096 _____ () C:\Users\Ruda\AppData\Roaming\Camdata.ini
2014-06-26 22:06 - 2014-06-26 22:19 - 0000408 _____ () C:\Users\Ruda\AppData\Roaming\CamLayout.ini
2014-06-26 22:06 - 2014-06-26 22:19 - 0000408 _____ () C:\Users\Ruda\AppData\Roaming\CamShapes.ini
2014-06-26 22:06 - 2014-06-26 22:19 - 0004509 _____ () C:\Users\Ruda\AppData\Roaming\CamStudio.cfg
2014-03-24 18:03 - 2015-01-01 14:05 - 0099384 _____ () C:\Users\Ruda\AppData\Roaming\inst.exe
2014-03-24 18:03 - 2015-01-01 14:05 - 0007859 _____ () C:\Users\Ruda\AppData\Roaming\pcouffin.cat
2014-03-24 18:03 - 2015-01-01 14:05 - 0001167 _____ () C:\Users\Ruda\AppData\Roaming\pcouffin.inf
2014-03-24 18:03 - 2015-01-01 14:05 - 0082816 _____ (VSO Software) C:\Users\Ruda\AppData\Roaming\pcouffin.sys
2014-01-18 18:31 - 2014-01-18 18:31 - 0022713 _____ () C:\Users\Ruda\AppData\Roaming\UserTile.png
2014-12-11 18:11 - 2015-01-01 13:54 - 0001057 _____ () C:\Users\Ruda\AppData\Roaming\vso_ts_preview.xml
2014-10-07 00:16 - 2015-10-19 22:42 - 0022016 _____ () C:\Users\Ruda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-11-28 16:12 - 2013-11-28 16:12 - 0001715 _____ () C:\Users\Ruda\AppData\Local\FastClean.20131128.161230.txt
2015-09-05 09:59 - 2015-09-05 09:59 - 0000218 _____ () C:\Users\Ruda\AppData\Local\recently-used.xbel
2013-03-27 21:44 - 2015-08-08 01:13 - 0007650 _____ () C:\Users\Ruda\AppData\Local\Resmon.ResmonCfg
2015-04-27 19:32 - 2015-04-27 19:32 - 0000000 _____ () C:\Users\Ruda\AppData\Local\{03E83CAC-05F7-418B-94BF-6DB4601107B2}
2015-04-15 00:35 - 2015-04-15 00:35 - 0000000 _____ () C:\Users\Ruda\AppData\Local\{36F635ED-91FF-464C-8865-271938C323E7}
2015-05-15 07:41 - 2015-05-15 07:41 - 0000000 _____ () C:\Users\Ruda\AppData\Local\{3E5CE45F-5149-45FE-9823-C190A8D490D1}
2015-05-15 09:56 - 2015-05-15 09:56 - 0000000 _____ () C:\Users\Ruda\AppData\Local\{46B461A5-CA78-4F7D-82DE-01B9DB6F713B}
2015-04-15 00:17 - 2015-04-15 00:17 - 0000000 _____ () C:\Users\Ruda\AppData\Local\{8E97867A-90E3-49AA-A208-442D6D79A711}
2015-04-06 13:30 - 2015-04-06 13:30 - 0000000 _____ () C:\Users\Ruda\AppData\Local\{97FF5CF1-E72E-448C-8B55-3A30758AE3D1}
2014-06-03 08:57 - 2015-08-26 02:05 - 0013825 _____ () C:\ProgramData\LmeUSB.log
2014-06-03 08:57 - 2015-08-26 02:05 - 0013844 _____ () C:\ProgramData\LSDmbTH.log
2015-02-06 21:20 - 2015-02-06 21:20 - 0005074 _____ () C:\ProgramData\mxnhytee.feu
2013-03-08 02:37 - 2013-03-08 02:38 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2013-03-08 02:36 - 2013-03-08 02:37 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2013-03-08 02:36 - 2013-03-08 02:36 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-10-21 09:44

==================== End of FRST.txt ============================

[rudkr63]

Additional scan result of Farbar Recovery Scan Tool (x64) Version:29-10-2015
Ran by Ruda (2015-10-30 15:22:56)
Running from C:\PerfLogs\Desktop
Windows 10 Home (X64) (2015-08-03 06:35:56)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-841361005-909514878-2309378359-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-841361005-909514878-2309378359-503 - Limited - Disabled)
Guest (S-1-5-21-841361005-909514878-2309378359-501 - Limited - Enabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-841361005-909514878-2309378359-1021 - Limited - Enabled)
Ruda (S-1-5-21-841361005-909514878-2309378359-1002 - Administrator - Enabled) => C:\Users\Ruda
verak (S-1-5-21-841361005-909514878-2309378359-1020 - Administrator - Enabled) => C:\Users\verak

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Enabled - Up to date) {F25D0092-CDBE-B303-ADB7-88DE8CDECCF5}
AS: Comodo Defense+ (Enabled - Up to date) {493CE176-EB84-BC8D-9707-B3ACF7598648}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: COMODO Firewall (Enabled) {CA6681B7-87D1-B25B-86E8-21EB720D8B8E}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

„Windows Live Essentials“ (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
„Windows Live Mail“ (x32 Version: 16.4.3528.0331 - „Microsoft Corporation“) Hidden
„Windows Live Messenger“ (x32 Version: 16.4.3528.0331 - „Microsoft Corporation“) Hidden
µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1.25534 - emc, uTorrent.CZ)
ABBYY FineReader 9.0 Sprint (x32 Version: 9.00.631.5823 - ABBYY) Hidden
Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{36381D51-CC5E-4698-A0CC-E939C75EC9D8}) (Version: 1.5 - Eyeo GmbH)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.180 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Flash Player 19 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.9.159 - Adobe Systems, Inc.)
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 1.4.42.69356 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 1.4.42.69356 - Alcor Micro Corp.) Hidden
Any Video Converter Ultimate 5.8.3 (HKLM-x32\...\Any Video Converter Ultimate_is1) (Version: - Any-Video-Converter.com)
ArcSoft MediaImpression 2 (HKLM-x32\...\{FB46F473-333E-4A06-A777-31C54188593E}) (Version: 2.0.14.672 - ArcSoft)
Ashampoo Photo Commander 11 (HKLM-x32\...\{C92AB6F1-0F9C-8526-5DF1-0A2FD0FB33D9}_is1) (Version: 11.1.9 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Optimizer FREE (HKLM-x32\...\Ashampoo Photo Optimizer FREE_is1) (Version: 1.2.0 - ashampoo GmbH & Co. KG)
ASUS AI Recovery (HKLM-x32\...\{D39F0676-163E-4595-A917-E28F99BBD4D2}) (Version: 1.0.24 - ASUS)
ASUS FaceLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0014 - ASUS)
ASUS Instant Connect (HKLM-x32\...\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}) (Version: 1.2.2 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.1 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.7 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.2.1 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.5 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.0.9 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.26 - ASUS)
ASUS Virtual Touch (HKLM-x32\...\{938CFBD4-0652-49E5-BB8B-153948865941}) (Version: 1.0.11 - ASUS)
ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 3.0.144.298 - ASUS Cloud Corporation)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.309 - ASUSTEK)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.12 - Atheros Communications Inc.)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0020 - ASUS)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 3.8.5187 - DsNET Corp)
aTube Catcher verze 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Balíček ovladače systému Windows - ASUS (ATP) Mouse (06/17/2015 1.0.0.262) (HKLM\...\14588A15B66655338DBCC021FFA81E31DC281859) (Version: 06/17/2015 1.0.0.262 - ASUS)
Bass Audio Decoder (remove only) (HKLM-x32\...\Bass Audio Decoder) (Version: - )
Broadcom Wireless Utility (HKLM\...\Broadcom Wireless Utility) (Version: 5.100.82.97 - Broadcom Corporation)
Bullzip PDF Printer 10.19.0.2457 (HKLM\...\Bullzip PDF Printer_is1) (Version: 10.19.0.2457 - Bullzip)
CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5844 - CDBurnerXP)
Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.) Hidden
COMODO Internet Security Premium (HKLM\...\{38F898C8-272F-455F-9BD6-71FEBA3E4AF5}) (Version: 8.2.0.4703 - COMODO Security Solutions Inc.)
CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2926 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform)
Document Capture Pro (HKLM-x32\...\{B4A3C072-87AF-4937-880D-3D7997111C0D}) (Version: 1.01.0000 - Seiko Epson Corporation)
Dokan Library 0.5.3 (HKLM-x32\...\DokanLibrary) (Version: - )
Dream Day First Home (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}) (Version: - Oberon Media)
Dream Vacation Solitaire (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111249233}) (Version: - Oberon Media)
ELAN Touchpad 15.8.4.3_X64_WHQL (HKLM\...\Elantech) (Version: 15.8.4.3 - ELAN Microelectronic Corp.)
Epson Connect Guide (HKLM-x32\...\Epson Connect Guide) (Version: - )
Epson Copy Utility 3.5 (HKLM-x32\...\{AA72FB28-73B4-49E5-B6B4-E78F44BBD0AD}) (Version: 3.5.0.0 - )
Epson Customer Research Participation (HKLM\...\{B26449A6-6007-4460-B4FE-C4776115BCEA}) (Version: 1.70.0000 - EPSON)
Epson Easy Photo Print 2 (HKLM-x32\...\{02A312B5-1542-47B6-BFE9-F51358C39E86}) (Version: 2.4.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION2)
Epson Event Manager (HKLM-x32\...\{148C8BF9-E1B4-445D-AC67-2CABAE63949A}) (Version: 3.01.0009 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION)
Epson Příručka pro síť L355 Series (HKLM-x32\...\L355 Series Netg) (Version: - )
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
Epson Uživatelská příručka EPSON Perfection V370 Photo (HKLM-x32\...\EPSON Perfection V370 Photo Useg) (Version: - )
Epson Uživatelská příručka L355 Series (HKLM-x32\...\L355 Series Useg) (Version: - )
Evidence LSoft 4.2.0.0 (HKLM-x32\...\{6B7574A7-ADE5-40CD-B4DE-3A72C483DB92}_is1) (Version: - Martin Lutonský)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
FFMPEG Core Files (remove only) (HKLM-x32\...\FFMPEG Core Files) (Version: - )
FormatFactory 3.7.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.7.0.0 - Format Factory)
Gabest MPEG Splitter (remove only) (HKLM-x32\...\Gabest MPEG Splitter) (Version: - )
Gadwin PrintScreen (64-Bit) (HKLM\...\{C4E9434D-9FA7-4D27-9805-D767A8A38904}) (Version: 5.4.0.0 - Gadwin Systems)
Galapago (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}) (Version: - Oberon Media)
Game Park Console (HKLM-x32\...\Game Park Console) (Version: 1.2.4.431 - Oberon Media Inc.)
Go Go Gourmet Chef of the Year (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115290153}) (Version: - Oberon Media)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.80 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Gpg4win (2.2.3) (HKLM-x32\...\GPG4Win) (Version: 2.2.3 - The Gpg4win Project)
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.16) (Version: 9.16 - Artifex Software Inc.)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
Chromodo (HKLM-x32\...\Chromodo) (Version: 44.5.7.268 - Comodo)
IE Download Helper (HKLM\...\{92A49BB2-0039-470F-82F8-A599BF5C4410}) (Version: 3.2 - IE Download Helper)
InstantOn for NB (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.3.3 - ASUS)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{302600C1-6BDF-4FD1-1309-148929CC1385}) (Version: 3.1.1309.0390 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.10.255 - Intel Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
LAV Filters 0.63.0 (HKLM-x32\...\lavfilters_is1) (Version: 0.63.0 - Hendrik Leppkes)
LibreOffice 5.0.2.2 (HKLM-x32\...\{71508AE2-346A-4E56-AE95-DBB8DE692258}) (Version: 5.0.2.2 - The Document Foundation)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.406 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.406 - LogMeIn, Inc.) Hidden
Mahjong Secrets (HKLM-x32\...\510008402) (Version: - Oberon Media)
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft OneNote 2013 - cs-cz (HKLM\...\OneNoteFreeRetail - cs-cz) (Version: 15.0.4753.1002 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0405-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM-x32\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 CSY (HKLM\...\{0A8A841B-29C4-4947-BF59-241216B4D904}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{9ACF3FDB-C8E6-444C-8C64-13A221F7BFFD}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM-x32\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{B636C9B9-A3F2-4DCE-ADCC-72E095018385}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Visual Basic PowerPacks 10.0 (HKLM-x32\...\{2D9F8079-7D50-3EFD-B3BD-ED642E4EE756}) (Version: 10.0.20911 - Microsoft)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Web Platform Installer 4.6 (HKLM\...\{16C7D2AD-20CA-491E-80BC-8607A9AACED9}) (Version: 4.0.40719.0 - Microsoft Corporation)
Mozilla Firefox 41.0.2 (x86 cs) (HKLM-x32\...\Mozilla Firefox 41.0.2 (x86 cs)) (Version: 41.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.2.5765 - Mozilla)
Mozilla Thunderbird 38.3.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 38.3.0 (x86 cs)) (Version: 38.3.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyHeritage Family Tree Builder (HKLM-x32\...\Family Tree Builder) (Version: 7.0.0.7128 - MyHeritage.com)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 353.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.54 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OCCT 4.4.1 (HKLM-x32\...\OCCT) (Version: 4.4.1 - Ocbase.com)
Odinstalace tiskárny EPSON L355 Series (HKLM\...\EPSON L355 Series) (Version: - SEIKO EPSON Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4753.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4753.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4753.1002 - Microsoft Corporation) Hidden
Ochrana koncového bodu Trusteer (HKLM-x32\...\Rapport_msi) (Version: 3.5.1507.83 - Trusteer)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenSource AVI Splitter (remove only) (HKLM-x32\...\OpenSource AVI Splitter) (Version: - )
OpenSource DTS/AC3/DD+ Source Filter (remove only) (HKLM-x32\...\OpenSource DTS/AC3/DD+ Source Filter) (Version: - )
OpenSource Flash Video Splitter (remove only) (HKLM-x32\...\OpenSource Flash Video Splitter) (Version: - )
Organizér (HKLM-x32\...\{4154BF17-EE1F-4F25-9696-2FF191FE0787}) (Version: 4.7.2 - Fireluke Software)
Ovládací panel NVIDIA 353.54 (Version: 353.54 - NVIDIA Corporation) Hidden
Ovladač klávesnice a myši Rapoo v1.6 (HKLM-x32\...\{2E569492-CB19-4510-AB49-1C6A36C6F525}_is1) (Version: - Rapoo Inc.)
PDF Architect 2 OCR Module (x32 Version: 2.0.17.17583 - pdfforge GmbH) Hidden
PDF24 Creator 7.2.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.315.0 - Tracker Software Products Ltd)
PeaZip 5.7.0 (WIN64) (HKLM\...\{5A2BC38A-406C-4A5B-BF45-6991F9A05325}_is1) (Version: - Giorgio Tani)
PeaZip 5.7.2 (HKLM-x32\...\{5A2BC38A-406C-4A5B-BF45-6991F9A05325}_is1) (Version: - Giorgio Tani)
PeaZip configuration (WIN64) (HKLM\...\{4F8D60A8-C53D-47BD-AE5C-31AE6566D638}_is1) (Version: - Giorgio Tani)
PicosmosTools 1.0.0.0 (HKLM-x32\...\PicosmosTools) (Version: 1.0.0.0 - Format Factory)
Plants vs Zombies (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-117080787}) (Version: - Oberon Media)
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Plus500 (HKLM-x32\...\Plus500) (Version: - )
Poczta usługi Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Pošta Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Prohlížeč Seznam.cz (HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\Seznam Browser) (Version: - Seznam.cz a.s.)
Q-Dir (HKLM\...\Q-Dir) (Version: - )
Q-Dir (HKLM-x32\...\Q-Dir) (Version: - )
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.318 - Qualcomm Atheros Communications)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 3.0 - Qualcomm Atheros)
Rapport (x32 Version: 3.5.1507.83 - Trusteer) Hidden
Recepty doma (HKLM-x32\...\Recepty doma_is1) (Version: - Martin Roubec)
Recuva (HKLM\...\Recuva) (Version: 1.48 - Piriform)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Sada Compatibility Pack pro systém Office 2007 (HKLM-x32\...\{90120000-0020-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
SceneSwitch (HKLM-x32\...\{5172E572-C175-4F80-A6D5-5CB45826AD61}) (Version: 1.0.12 - ASUS)
Simple Adblock (HKLM-x32\...\{B4920103-09F6-4AD2-B150-CFC4474D2DDC}) (Version: 1.1.5 - Simple Adblock)
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
SMPlayer 15.9.0 (HKLM-x32\...\SMPlayer) (Version: 15.9.0 - Ricardo Villalba)
Software Updater (HKLM-x32\...\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87}) (Version: 4.3.7 - SEIKO EPSON CORPORATION) <==== ATTENTION
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Explorer 7.0.0 (HKLM-x32\...\{40F485F7-6478-4896-B0D5-F94BE677EB78}_is1) (Version: - Mister Group)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
Tisk Obalek 3.2.2.8 (HKLM-x32\...\Tisk Obalek_is1) (Version: 3.2.2.8 - Mgr. Radovan Kraus)
Uschovna.cz 1.1.0 (HKLM-x32\...\{8531A154-5045-4E32-885A-391F750C5DE2}_is1) (Version: 1.1.0 - Capsa.cz)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VIA Platform Device Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WD Drive Utilities (HKLM-x32\...\{c77bad57-f913-4ac3-9061-6dfd6c0aa40a}) (Version: 1.3.0.16 - Western Digital Technologies, Inc.)
WD Drive Utilities (x32 Version: 1.3.0.16 - Western Digital Technologies, Inc.) Hidden
WD Quick View (HKLM-x32\...\{10E4655D-047D-472A-AE5C-CCEF665B47E8}) (Version: 2.4.12.1 - Western Digital Technologies, Inc.)
WD Security (HKLM-x32\...\{429a42d7-4c55-44d4-b38a-5872a0d70495}) (Version: 1.3.0.18 - Western Digital Technologies, Inc.)
WD Security (x32 Version: 1.3.0.18 - Western Digital Technologies, Inc.) Hidden
WD SmartWare (HKLM\...\{17A76C9D-91D4-4E01-922D-1B3000DEB9F1}) (Version: 2.4.12.1 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM-x32\...\{979a4332-3eb0-4561-9f74-a4fb871cf2bd}) (Version: 2.4.12.1 - Western Digital Technologies, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
Wireless Console 3 (HKLM-x32\...\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}) (Version: 3.0.27 - ASUS)
World of Goo (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-116672750}) (Version: - Oberon Media)
XnView 2.34 (HKLM-x32\...\XnView_is1) (Version: 2.34 - Gougelet Pierre-e)
Zoner Photo Studio 18 - Obálky a šablony (HKLM\...\ZonerPhotoStudio18_Templates_CZ_is1) (Version: 18.0.1.1 - ZONER software)
Zoner Photo Studio 18 (HKLM\...\ZonerPhotoStudio18_CZ_is1) (Version: 18.0.1.4 - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-841361005-909514878-2309378359-1002_Classes\CLSID\{BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B}\InprocServer32 -> C:\Program Files\Zoner\Photo Studio 18\Program64\SHELLEXT.DLL (ZONER software)

==================== Restore Points =========================

27-10-2015 23:53:14 Revo Uninstaller's restore point - Skype Click to Call
27-10-2015 23:54:51 Removed Skype Click to Call
28-10-2015 23:17:02 Restore Point Created by FRST
28-10-2015 23:38:44 Removed Java 8 Update 60
28-10-2015 23:49:25 Removed Java 8 Update 51 (64-bit)
28-10-2015 23:54:53 Restore Point Created by FRST
29-10-2015 00:26:37 Restore Point Created by FRST
30-10-2015 13:31:52 28.10.2015 23:54:00
30-10-2015 13:49:49 Operace obnovení

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2015-10-28 23:20 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00B4C1D0-87B9-446F-9BD5-3FC8C2467514} - System32\Tasks\{18940542-76C0-4F13-9BE4-8A66F0476E6A} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {01C995FF-D178-4E7B-AC4A-9E950006A207} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {0837D897-84CB-4E30-A8DD-807937A81DFC} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {0AD8A73C-27DA-4B5F-BC3F-96C50ADC26D3} - System32\Tasks\{A1F61B27-141C-4120-96A2-84789B412077} => pcalua.exe -a C:\VTRoot\HarddiskVolume3\Users\Ruda\AppData\Local\Temp\setup_kalender\Uninstall_tkexe.exe
Task: {0EA9B830-5DC4-4E1B-A3F2-5A1794F8501C} - System32\Tasks\{9166EEE1-665A-47B7-9AA3-F28205031DCF} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Galapago\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Galapago\install.log"
Task: {0F1FC558-90E6-41AA-8D37-4FBE69053762} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {1109A2DB-F4A2-471B-89B9-C51DA1DCC4CA} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-08-05] (COMODO)
Task: {11FA246D-C1FB-4763-82E6-F9EB4F15CCF0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-04-25] (Piriform Ltd)
Task: {11FB9A9F-DE45-4625-A68C-FFC2E0940A67} - System32\Tasks\{3C9D2E01-D7E9-4342-BDC9-2776D4B876E9} => pcalua.exe -a C:\Users\Ruda\Downloads\Windows-Live-Mail-_16.4.3505.0912.exe -d C:\Users\Ruda\Downloads
Task: {148318FC-5974-4508-A415-B3AFD16E5DDB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {16B650C0-89C9-454D-97D5-6C2102834D84} - System32\Tasks\{6B5CC6B3-B792-45FF-9E34-6A890BAA3CBF} => pcalua.exe -a C:\Users\Ruda\Downloads\Android.Manager.WiFi.v2010.10.01.exe -d C:\Users\Ruda\Downloads
Task: {16EC238F-8D7D-4C90-A41B-F10D5F8B95E3} - System32\Tasks\{BFFDA647-C68E-454A-B685-C181E1C9EEF0} => Chrome.exe hxxp://ui.skype.com/ui/0/6.7.0.102/cs/go/help.faq.installer?LastError=1603
Task: {18A2D9C9-AE6F-47CF-93C1-DD37DF2F50FC} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO)
Task: {1AB0F5BC-6361-4DFA-82E6-E03EF58F9B29} - System32\Tasks\{17B8EBB4-ACC4-40FC-9E86-5E55A576447D} => pcalua.exe -a c:\vallen\jpegger\jpegger.exe -c -ui -q
Task: {1B030A60-CD3C-46E5-9D8D-09ECFB600B57} - System32\Tasks\C__Users_Ruda_Downloads_tvonline.exe => C:\Users\Ruda\Downloads\tvonline.exe
Task: {1C102DC1-8A62-47A3-9274-A435B620AD80} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO)
Task: {1C7ADF47-081E-47FE-B9EC-9E2096804F5D} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_19_0_0_226_pepper.exe [2015-10-16] (Adobe Systems Incorporated)
Task: {21F63DC7-40DC-4AFB-9776-A61419648025} - System32\Tasks\{D6893A38-300B-4034-AEEE-3EA1D9C1E11C} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {24C15B2A-A116-4C70-A288-C18B9E75ACAD} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {2547CE60-04D2-4E81-A72C-7D14A59FAE45} - System32\Tasks\{83EAA0A7-58FB-4FB5-8FF1-0142CB60BC2D} => Chrome.exe hxxp://ui.skype.com/ui/0/6.7.0.102/cs/go/help.faq.installer?LastError=1603
Task: {2578146D-2DC2-44CB-91CA-3AA5CB3B568F} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {29308477-8F7E-4D4F-92D5-F1534E61B6F5} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {29B6765C-3E5D-4669-B996-06AC5DF531B4} - System32\Tasks\{A1CF3082-39CC-4078-AEC3-25C007D9ED63} => Chrome.exe hxxp://ui.skype.com/ui/0/6.3.0.105/cs/go/help.faq.installer?LastError=1603
Task: {2E5A5DFF-2F52-4207-90F7-00A0E73FE0E2} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\Explorer.EXE [2015-08-19] (Microsoft Corporation)
Task: {2F8B20C9-A499-4C3C-A308-C6734868B719} - System32\Tasks\{71BFF601-8F49-4643-AC08-7CD109E89297} => pcalua.exe -a C:\PerfLogs\Desktop\wlsetup-web.exe -d C:\PerfLogs\Desktop
Task: {35CC0135-68CE-4901-9C72-2574184BFC15} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {37087F67-6F6B-497C-8243-910F7194E560} - System32\Tasks\{BF848EB0-7806-4688-96BF-34413190A1F6} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {37C1B75B-A500-45B3-B1AE-90E1EFD6C201} - System32\Tasks\{6BBE8BB2-5C12-4A6E-92BE-36A91ADE43FD} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Bubbletown\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Bubbletown\install.log"
Task: {380EF2F5-1933-45D0-84A2-E73992A28DD5} - \GoogleUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002Core -> No File <==== ATTENTION
Task: {390CE497-C596-49E5-BCD6-0C54731FB706} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-04] (Google Inc.)
Task: {3C9616B2-742C-4820-AFAE-F3D2459E9677} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {3D966D87-5FE5-4FBC-8E90-DB0F48E454DB} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {3D98428B-0114-49A0-B54A-04EA96571626} - System32\Tasks\{A6F96F0C-EB4C-4E2F-AAFA-EDD1BC516833} => pcalua.exe -a C:\Users\Ruda\Downloads\StudioLine_PB4_Setup2015.exe -d C:\Users\Ruda\Downloads
Task: {3DB4F540-0DA0-4B85-B5BC-69EB92075629} - System32\Tasks\{1A9D60BE-8A7F-4668-8FC6-3784F8E88970} => pcalua.exe -a "C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\SetupTv.exe" -d "C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server"
Task: {3E3E65EA-6693-4ACC-947D-206853F50D65} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {3FAFCF43-3B51-4FC9-AEEF-12C98082BEFE} - System32\Tasks\{8B1919D7-7714-4D33-96FD-34DF36DC72E6} => C:\Users\Ruda\Downloads\Luminance-HDR-Win32-SETUP-v2.3.1-2.exe
Task: {42145BE5-4059-431F-919A-1A381C5966DE} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {4218984F-6740-45DF-9257-BEC2967174D6} - System32\Tasks\{2F0CBDFA-5117-4D5A-B7D9-EF2A2ADD726D} => pcalua.exe -a C:\Users\Ruda\Downloads\Install-winMd5Sum.exe -d C:\Users\Ruda\Downloads
Task: {46334A36-2A94-45FE-91AD-21E678AE8106} - System32\Tasks\{A002E75E-1495-4BA8-9A86-F4D44AD135DA} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Plants vs Zombies\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Plants vs Zombies\install.log"
Task: {47EC207C-CE57-4A35-B971-2C576D05595A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {4A1E6D7E-D213-44F7-80C9-08B4ABDA0F84} - System32\Tasks\{6FBB8A7D-5EE5-43AA-94E5-BE60D121BDD9} => C:\Program Files (x86)\WinThruster\WinThruster.exe
Task: {4D42D988-220F-4BC7-B7DC-B8E44055D893} - System32\Tasks\{2181C5A6-223E-4525-BB57-559A0BC59D43} => pcalua.exe -a E:\obsah\Programy\Ostatní\OpenOffice\OOo_3.2.0rc3_20100118_Win32Intel_install_cs.exe -d E:\obsah\Programy\Ostatní\OpenOffice
Task: {4D9E51FB-E864-44E3-877D-F041B107AFF8} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {4F30031C-762F-4B46-AE4E-CAA3B824446F} - System32\Tasks\Driver Booster SkipUAC (Ruda) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: {4FD437B7-9854-48BB-B791-B77A1FA57D9A} - System32\Tasks\_UPDATES => C:\Program Files (x86)\WinThruster\WinThruster.exe
Task: {51E1D65D-5519-4B6D-A39C-EE256A2936C7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-09-16] (Microsoft Corporation)
Task: {5419CF44-CE88-48A6-B039-9189BA32D732} - System32\Tasks\Western Digital\SmartWare\____Volume_6e381354_dc9f_4198_8755_bfb76c084475______Volume_3b72894c_0a4f_11e5_b6c2_94dbc999140f__ => C:\Program Files (x86)\Western Digital\WD SmartWare\BackupTask.exe [2015-07-20] (Western Digital Technologies, Inc.)
Task: {5702B3D4-BC81-45E2-9ABA-68BC3D512AEA} - System32\Tasks\{7F5B67FF-7FC5-433A-B43F-7C97030550DC} => C:\Users\Ruda\Downloads\Luminance-HDR-Win32-SETUP-v2.3.1-2.exe
Task: {596F0B48-FC9F-43E7-B75F-37DBD67176A3} - System32\Tasks\{3CA36EE5-E256-4568-B0D0-D654007BFB6E} => pcalua.exe -a E:\software\oem\oemsetup.exe -d E:\software\oem
Task: {5A08588B-9980-4FAE-A675-B8BE597CE218} - System32\Tasks\{7064E0ED-D387-4527-B3FB-D3E603B18F21} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u3
Task: {5DBF41C4-05C3-44C4-8A5A-9F8C01F8D2B4} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [2015-08-16] ()
Task: {5FAE1F37-D79B-48A7-A5D4-B4D2FC852F0F} - System32\Tasks\{638DA9E3-5093-48A0-A3A5-F81670454AC0} => pcalua.exe -a C:\PerfLogs\Desktop\wlsetup-all.exe -d C:\PerfLogs\Desktop
Task: {60C99AB4-F669-44B2-8138-1C54E3C0CC62} - System32\Tasks\{F2016396-B017-48F7-A855-8A17138D566C} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Turbo Fiesta\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Turbo Fiesta\install.log"
Task: {6767C748-1155-4DC7-950E-C83CEB286E71} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {67719D8C-DAB4-49E6-8582-1193B1A78A76} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {6EEE09B4-B95B-4D87-A249-CD376866AE18} - System32\Tasks\{E75DA550-6B86-4D12-A09B-086339995678} => pcalua.exe -a C:\Games\eSupport\eDriver\InstAll.exe -d C:\Games\eSupport\eDriver
Task: {6F59593C-44D4-46DF-A8A1-E7E6825ABE57} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {6FECF9BE-AED8-4627-80ED-91FF5361960F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {70CF69D2-989B-4CDF-AD9E-7F59AFD5BBE2} - System32\Tasks\{6735FC5D-B0D4-41FB-983F-D6A0632CB305} => C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe
Task: {710D3089-545A-4A96-8E0E-9E9CE192DFC6} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {733E75A1-36DE-49D1-8213-6A98BF18C630} - System32\Tasks\{48FF464B-754B-466F-B402-74777B4B1EBA} => pcalua.exe -a "C:\Program Files (x86)\BlazeVideo\BlazeDTV 6.0\oemsetup.exe" -d "C:\Program Files (x86)\BlazeVideo\BlazeDTV 6.0"
Task: {73598455-55F6-457F-A91D-18E3C7C42BAC} - System32\Tasks\{B4C4EABB-5B0D-4EF7-8449-BFA20337AEEC} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Dream Day First Home\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Dream Day First Home\install.log"
Task: {73D09C75-C9E8-4D7E-9A05-54315B7E0A74} - System32\Tasks\{17A30D0C-9F9A-42D2-ADD6-E6C2A6087AAA} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3\
Task: {73F4FA2A-59E5-4814-A2A9-1130AFCBD7A4} - System32\Tasks\{F4502145-42AF-418D-82E5-00CC641E2BB3} => pcalua.exe -a "C:\Users\Ruda\Downloads\wlsetup-web .exe" -d C:\Users\Ruda\Downloads
Task: {75977CC3-1E01-4AD2-A0BC-DE752D94BE37} - System32\Tasks\{86B6FF6A-565B-4AE2-A512-561E454D84F8} => C:\Program Files (x86)\ASUS\FaceLogon\logonmgr.exe [2012-02-21] (ASUSTek Computer Inc.)
Task: {75BC207C-E3E0-4806-8348-2B5081C91981} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-04] (Google Inc.)
Task: {773492A6-4F08-4DAF-9C1B-778BC17ACAED} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {782AF7B1-93C4-46BB-9331-671A3DEA7473} - System32\Tasks\ASUS Quick Gesture (x64) => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe [2012-04-11] (ASUSTeK Computer Inc.)
Task: {78588675-6CF3-4E50-B5B1-1EC34EAA2F6B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {796FB41F-561A-4CDB-A13E-DA8677AD52B3} - System32\Tasks\{3B64BBF6-C46E-482D-934F-2F09EA63E528} => Chrome.exe hxxp://ui.skype.com/ui/0/6.7.0.102/cs/go/help.faq.installer?LastError=1603
Task: {7AB9DA8D-80DE-46E8-B6EE-740D1548BEA2} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-06-20] (ASUSTeK Computer Inc.)
Task: {7B71E046-5E6D-490D-88C0-52032FCFBB27} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-10-14] (Microsoft Corporation)
Task: {7DDF9673-8D0B-4652-B795-1BEAD1206B65} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {7EFAFBEE-4A0E-4258-8F22-B56A074FC1EE} - System32\Tasks\{CE160BED-AA6C-4B07-B819-15E1D2ED4F96} => pcalua.exe -a "C:\Program Files (x86)\OpenAL\oalinst.exe"
Task: {7F061C75-D6FC-4936-98CD-A81BADAAA50E} - System32\Tasks\{E70DE9C2-B021-460F-B37F-A045C1BD318B} => pcalua.exe -a C:\Users\Ruda\Downloads\Install-winMd5Sum.exe -d C:\Users\Ruda\Downloads
Task: {81169D4E-22EB-4B20-B641-AFCE30989E53} - System32\Tasks\{E9107696-4A75-4598-8970-BB83E8189B72} => pcalua.exe -a "c:\program files (x86)\kingsoft\kingsoft antivirus\uni0nst.exe"
Task: {855C2966-0F57-492E-9289-49D291F7077F} - System32\Tasks\{EA700A6E-4619-4175-87F5-4DD8516627A9} => pcalua.exe -a E:\EasySetupAssistant\TL-WDR3600\EasySetupAssistant.exe -d E:\EasySetupAssistant\TL-WDR3600
Task: {8587508C-1D71-431F-8B0E-7E13D91C7A9A} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO)
Task: {85EC1DB6-DF1D-4F4F-84A8-8BF3C48D845E} - System32\Tasks\{DF50BD1D-B297-4274-95D1-9537FECDF4FD} => C:\Users\Ruda\Downloads\flock-2.6.0.en-US.win32.exe
Task: {87F70169-16E2-4A1D-BBBE-F5A3BE9BC361} - System32\Tasks\{3C018CAC-80C2-4550-ADE7-06563FDA0C82} => pcalua.exe -a C:\Users\Ruda\Downloads\wlsetup-web(1).exe -d C:\Users\Ruda\Downloads
Task: {88D198CE-E437-4254-AE25-9676A0237478} - System32\Tasks\{A26804D1-0BDE-418F-A76D-3BB43B98BE7A} => pcalua.exe -a "C:\VTRoot\HarddiskVolume3\Program Files\RegToy\Uninstall.exe" -d "C:\VTRoot\HarddiskVolume3\Program Files\RegToy"
Task: {8A6064C4-E61B-4442-A531-779DA76F62A6} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe [2012-02-17] (ASUSTek Computer Inc.)
Task: {8B8F3C55-A04A-4C63-93FA-25E3BA0E2AE0} - System32\Tasks\UnHackMe Task Scheduler => C:\Program Files (x86)\UnHackMe\hackmon.exe
Task: {8E1EF39C-C9C4-4604-B02C-5777F2E1D975} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {8E2AF1B8-A070-413C-AE43-A67FB379C16B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {8F6A888A-91DF-44B3-A669-E86ED83FE6AA} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe
Task: {90FAEF35-3C1F-472B-99EE-577638B37680} - System32\Tasks\{009319D0-F3BB-4BA5-A79C-64A982F5295A} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9
Task: {939124DF-2DA4-4E4E-A6A0-8CD1CCBA8F29} - System32\Tasks\{7BABCF0A-01CA-4261-8BB9-DABA1685EE01} => pcalua.exe -a "C:\VTRoot\HarddiskVolume3\Program Files\RegToy\UninstallManager.exe" -d "C:\VTRoot\HarddiskVolume3\Program Files\RegToy"
Task: {95BA0704-4383-4360-8A79-C648AC6657CC} - System32\Tasks\{767F9478-3C3D-4EAA-AB9E-61FD8DC323EC} => C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [2014-04-17] (Microsoft Corporation)
Task: {97D20EA0-DB4F-4839-B6D2-13C30F34706F} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-08-05] (COMODO)
Task: {9B604BA7-4990-4066-ADEE-F3E1E3AB2077} - System32\Tasks\{EF25F101-B955-42F5-9878-F24186A0A763} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {9C253EF1-E933-4C60-9C9C-2020699D01F1} - System32\Tasks\{4428E1A8-8A3F-43FB-A889-1A0C6ED40E8E} => C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe
Task: {9FAC172D-4CA5-4419-B661-B5C427F70794} - System32\Tasks\{F3796B24-9A0C-4930-A356-6EB166310D6C} => pcalua.exe -a "C:\Program Files (x86)\FlashGet Network\FlashGet 3\uninst.exe"
Task: {A0E4045A-A82E-40C0-8251-CCF2EF9C4DB5} - System32\Tasks\{4CAE5787-73F8-42AA-820D-13DFD7C1BC04} => pcalua.exe -a C:\Users\Ruda\Downloads\RegCleaner.exe -d C:\Users\Ruda\Downloads
Task: {A531A161-339D-4362-A29F-B71B712BCA8E} - System32\Tasks\{E28F3532-125E-4BE3-BC6B-C39100C0C74C} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Farm Frenzy 3 - Madagascar\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Farm Frenzy 3 - Madagascar\install.log"
Task: {A70A2388-E6AE-4C8A-BAC7-72241A828F77} - System32\Tasks\{91E9A25E-61BF-4194-9114-A965A07543E7} => pcalua.exe -a C:\Users\Ruda\Downloads\ytd-1.25.exe -d C:\Users\Ruda\Downloads
Task: {A7B080BD-8455-423E-BD5F-8964591CFCA3} - System32\Tasks\{37307FD2-BAB0-4627-B352-FDAEC564DE7C} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3
Task: {AA921623-B84A-4EC8-A6DA-5D46323FC6D9} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {AB77E151-016F-467E-9AF4-684115D7EC89} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {AC67AD99-D766-42BD-AA3C-E54A8AF5877A} - System32\Tasks\{73B9D479-0A88-4EEB-B984-43AF638557B4} => pcalua.exe -a E:\Driver\DrvInstall.exe -d E:\Driver
Task: {ACC1D449-0B5C-4147-9276-7881F1A0CEDF} - System32\Tasks\{F230008E-22AA-45DB-BC33-0AD646C51DAA} => Chrome.exe hxxp://ui.skype.com/ui/0/6.3.0.105/cs/go/help.faq.installer?LastError=1603
Task: {AE595AEE-C073-4DDA-968A-65FD87657463} - System32\Tasks\ASUS Quick Gesture => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe [2012-04-11] (ASUSTeK Computer Inc.)
Task: {B037B310-9877-4270-A541-A2A4D10B4928} - System32\Tasks\{12F3F5D9-2FE5-4D60-A69F-D350813ABF07} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {B0F0ECDF-4A10-4ECC-8763-D23D9CE7BC36} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {B4C8F661-6858-4DC2-BB54-79DCE70C2595} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-08-09] (AsusTek)
Task: {B55A9C0D-28C1-4861-A44E-13C84CF91CF0} - System32\Tasks\{2F1A52BF-5DBC-4050-AABA-981765D1D0C1} => pcalua.exe -a C:\Temp\582_32_ABBYY_FineReader_Sprint_9.0_OEM_for_Epson\INSTMSIW.EXE -d C:\Temp\582_32_ABBYY_FineReader_Sprint_9.0_OEM_for_Epson
Task: {B5DA53CF-30AF-41A6-BB33-58D9018F6487} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {B6D3F62D-EA60-47E6-94B5-0951D8F8A948} - System32\Tasks\{DAB592B0-49D5-4393-87F5-F69B1E2418A6} => pcalua.exe -a C:\Users\Ruda\Downloads\InstallPlus500(1).exe -d C:\Users\Ruda\Downloads
Task: {B8BE7DB0-DC02-4869-B796-E63BC5CF80BA} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-09-16] (Microsoft Corporation)
Task: {B9377CF7-D996-4021-B03C-C2B772A125D0} - System32\Tasks\{DC882E5B-1A06-4E48-B21B-3D82B17243FD} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {B94B272D-07CA-4149-81EB-3B18D11F3FC3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-13] (Adobe Systems Incorporated)
Task: {BBDDDB77-53CE-4C7E-B2E4-460D1F5A80CB} - System32\Tasks\{FDD2165D-A239-4B97-935E-B3539B673288} => pcalua.exe -a D:\install.exe -d D:\
Task: {BCFAAA81-E865-4CC4-B387-1D54FCB965F5} - System32\Tasks\{3FDD096B-4477-4116-9577-8D01A2A457C0} => pcalua.exe -a C:\Users\Ruda\Downloads\IrfanView-4.32-cestina.exe -d C:\Users\Ruda\Downloads
Task: {C31E0E22-2242-4B96-8DD5-6399CBED420F} - System32\Tasks\{C841434A-58F6-4B51-A900-FDB75DD8C7C6} => pcalua.exe -a C:\Users\Ruda\FreeRapid-0.9u4\frd.exe -d C:\Users\Ruda\FreeRapid-0.9u4
Task: {C5C4A596-5FA3-49F5-97F4-625300DEED40} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {C71C5F8F-8CBE-41D5-A71A-DD9A34B238C1} - System32\Tasks\{75D8443C-5E6E-4EEC-9CA2-1CD4A83155EF} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Deadtime Stories\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Deadtime Stories\install.log"
Task: {C778374C-94FE-41B0-B705-5FC952201AC0} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {C787445F-7F00-4E87-854D-E25060E58B1F} - System32\Tasks\{EDE012CB-828B-43A7-B05D-799D50643F98} => pcalua.exe -a C:\Users\Ruda\Downloads\Q-Dir_Installer\Q-Dir_Installer.exe -d C:\Users\Ruda\Downloads\Q-Dir_Installer
Task: {C795DFDD-E73F-4421-AF65-2DAA23DCD7D5} - System32\Tasks\_DEFAULT => C:\Program Files (x86)\WinThruster\WinThruster.exe
Task: {C8924CBA-B328-40A6-A9A4-BF6EF0996B3B} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO)
Task: {C8C1F110-C824-438D-A675-90B8ED30FDCF} - System32\Tasks\{69E4AD2B-0444-4F0F-938E-E25216565717} => pcalua.exe -a C:\Users\Ruda\Downloads\irfanviewcestina.exe -d C:\Users\Ruda\Downloads
Task: {C9B0E551-C092-4A34-A052-48938833C4AE} - System32\Tasks\{A6A6EE80-91BB-4C25-B7AE-007E7827504E} => pcalua.exe -a C:\Users\Ruda\Downloads\PuranDefragFree73cz.exe -d C:\Users\Ruda\Downloads
Task: {CC12428E-D56B-4AD1-B482-958669ACE552} - System32\Tasks\{497236D4-2B86-47EE-B2DC-494DE0F459E0} => Chrome.exe hxxp://ui.skype.com/ui/0/6.7.0.102/cs/go/help.faq.installer?LastError=1603
Task: {CEC9A8BD-5C61-49CD-A500-1618F447A6D5} - System32\Tasks\{3A295E5E-DC55-4A47-B309-877E9C1DD03D} => pcalua.exe -a "C:\Users\Ruda\Downloads\x86\program files\Ralink Corporation\Ralink Bluetooth Stack\driver\usb\devcon.exe" -d "C:\Users\Ruda\Downloads\x86\program files\Ralink Corporation\Ralink Bluetooth Stack\driver\usb"
Task: {CF9D4545-F641-4ACF-B816-830CB54758B4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {CFFF0114-748E-4136-952C-9885E6DFD2BB} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [2015-07-10] (Microsoft Corporation)
Task: {D03F2332-EE2B-4B19-9FCE-81837046DBA9} - System32\Tasks\{B537248A-7A51-4F21-9537-1F4656D35C43} => pcalua.exe -a "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe" -d "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller"
Task: {D6B185A9-F7F8-4C0A-AD93-8228CEBA629D} - System32\Tasks\Western Digital\SmartWare\____Volume_6e381354_dc9f_4198_8755_bfb76c084475______Volume_fbdf3a95_23ae_11e5_9950_94dbc999140f__ => C:\Program Files (x86)\Western Digital\WD SmartWare\BackupTask.exe [2015-07-20] (Western Digital Technologies, Inc.)
Task: {DC3B6C01-BB96-4CC8-A94A-12D5DADC8CB2} - System32\Tasks\{F1C323FF-2AE3-4EE4-B2A7-664C45CF8786} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3
Task: {DCFE36AD-5A4B-4737-8371-E3AECD3D28F2} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-06-25] (ASUSTek Computer Inc.)
Task: {DD548504-31EE-43FF-A573-1E9BCB56DC76} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {E1CC17F3-46BC-4C83-9AB4-2D5301740B16} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-841361005-909514878-2309378359-1002 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {E21340CD-86AA-4ABB-B189-29E74BCD3B4B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-16] (Adobe Systems Incorporated)
Task: {E39B3F81-57A4-4C48-A27C-B7BB6641F6D9} - System32\Tasks\{6093F58B-05B8-4885-AC3E-5CBADB3B9EE8} => pcalua.exe -a "C:\Program Files (x86)\Q-Dir\Q-Dir.exe" -c -uninstall
Task: {E3A4C2E2-F09C-4FB8-AB3B-A5C57EA40DB8} - System32\Tasks\{F54D05B9-8665-451C-B33E-50DBCEE2C466} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u4\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u4
Task: {E86C242E-58BE-4D9E-9CD7-377E682ABDA1} - System32\Tasks\{46D68E75-36A5-415B-870B-2044C36BB17D} => Chrome.exe hxxp://ui.skype.com/ui/0/6.3.0.105/cs/go/help.faq.installer?LastError=1603
Task: {E959E007-A71C-4952-8EA8-22DE146D6227} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {EAC240FD-628B-421C-B9D9-F9A6699C5447} - System32\Tasks\{8934D43F-07E3-4AC9-8B51-EE69159070D9} => pcalua.exe -a C:\Users\Ruda\Downloads\InstallPlus500.exe -d C:\PerfLogs\Desktop
Task: {EE121801-62E4-413E-90B1-35D247602CDC} - System32\Tasks\{565C191B-0775-4FC9-9A45-B4693D41137F} => pcalua.exe -a "C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe" -d "C:\Program Files (x86)\Maxthon\Bin"
Task: {F0496437-71B1-4E96-9E9C-3BC2F52CDE46} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F1F971D1-C6AC-4C78-BDA2-617D7F2B1D2B} - System32\Tasks\{9153B0BA-90A9-4180-9C9C-7732DF80A851} => pcalua.exe -a C:\Users\Ruda\Downloads\wlsetup-web.exe -d C:\Users\Ruda\Downloads
Task: {F22C2E35-F41F-4796-A405-B7B0FC0004FF} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-02-29] (ASUSTek Computer Inc.)
Task: {F68F5127-7E5C-43A9-B13E-6B79E1600FF9} - System32\Tasks\Wise Disk Cleaner Schedule Task => C:\Program Files (x86)\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe
Task: {F8762AE5-8D0F-4553-964B-38F1CB6524F3} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {F9CEAC5E-8BD9-4E8D-A9DD-72585A11D274} - System32\Tasks\{D0A82C02-D5B6-40F3-A6FE-5C6222ECAC6A} => Chrome.exe hxxp://ui.skype.com/ui/0/6.3.0.105/cs/go/help.faq.installer?LastError=1603
Task: {FACB8164-0888-403B-B4E6-7F59329EA90F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {FBB56E48-46C1-4174-A6F9-1E58A55FC723} - System32\Tasks\{974A3388-1B51-49AC-ADC4-7C199260FE17} => pcalua.exe -a C:\Users\Ruda\Downloads\iview436_setup.exe
Task: {FBC8485F-A585-489F-8E2C-C65FEABC1BEF} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {FFEE4F98-789F-4BC5-9EBF-91D4AC658C46} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_19_0_0_226_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (Whitelisted) ==============

2015-08-03 04:22 - 2015-08-03 04:22 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll
2014-11-25 20:25 - 2015-02-11 17:25 - 00216576 _____ () C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
2015-08-19 21:38 - 2015-08-19 21:38 - 00404480 _____ () C:\Windows\System32\diagtrack_wininternal.dll
2012-05-19 01:03 - 2015-10-27 11:56 - 00011776 _____ () C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
2015-10-01 09:16 - 2015-10-01 09:16 - 02494712 _____ () C:\Windows\system32\CoreUIComponents.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02494712 _____ () C:\Windows\System32\CoreUIComponents.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-10 11:59 - 2015-07-10 11:59 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll
2014-02-25 21:14 - 2014-02-25 21:14 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2014-02-25 21:11 - 2014-02-25 21:11 - 00086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2014-02-25 21:17 - 2015-10-11 23:12 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
2015-10-01 09:17 - 2015-10-01 09:17 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 12:00 - 2015-07-10 17:05 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-01-08 22:02 - 2015-01-08 22:02 - 00067808 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
2014-11-25 20:11 - 2014-11-25 20:11 - 00221184 _____ () C:\Program Files (x86)\GNU\GnuPG\libksba-8.dll
2014-11-25 19:57 - 2014-11-25 19:57 - 00050176 _____ () C:\Program Files (x86)\GNU\GnuPG\libw32pth-0.dll
2014-11-25 20:10 - 2014-11-25 20:10 - 00070144 _____ () C:\Program Files (x86)\GNU\GnuPG\libassuan-0.dll
2014-11-25 20:13 - 2014-11-25 20:13 - 00742912 _____ () C:\Program Files (x86)\GNU\GnuPG\libgcrypt-20.dll
2014-11-25 20:05 - 2014-11-25 20:05 - 00038400 _____ () C:\Program Files (x86)\GNU\GnuPG\libgpg-error-0.dll
2015-07-21 17:02 - 2015-07-21 17:02 - 00557056 _____ () C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll
2014-11-17 11:01 - 2000-01-01 01:00 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-09-25 09:09 - 2015-09-25 09:09 - 01020928 _____ () C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\d929bzy3.default-1439143576991\extensions\support@lastpass.com\platform\WINNT_x86-msvc\components\lpxpcom.dll

==================== Alternate Data Streams (Whitelisted) =========

[rudkr63]

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows\cadkasdeinst01cz.exe:$CmdTcID
AlternateDataStreams: C:\Windows\explorer.exe:$CmdTcID
AlternateDataStreams: C:\Windows\notepad.exe:$CmdTcID
AlternateDataStreams: C:\Windows\unins000.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\accountaccessor.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\acmigration.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ACPBackgroundManagerPolicy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ActionCenter.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aitstatic.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AppointmentApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AppXDeploymentClient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AppXDeploymentExtensions.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AppXDeploymentServer.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AppxSysprep.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ASGCoInstaller_x64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\atmlib.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AudioEndpointBuilder.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\audiosrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\authui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\BCMLogon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\bcmttls.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\bcmwlrc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\BingMaps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\bisrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\btcoinst.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\BtContextMenu.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\BthRadioMedia.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\CallHistoryClient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\CellularAPI.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Chakra.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Chakradiag.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ChatApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ci.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cloudAP.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\configmanager2.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ContactApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ContentDeliveryManager.Utilities.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\coredpus.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\CoreMessaging.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\CoreUIComponents.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\CredProvDataModel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\d3d9.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dafWCN.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\DataSenseHandlers.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\DeviceEnroller.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\diagtrack.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\diagtrack_win.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\diagtrack_wininternal.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\difx64.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\directmanipulation.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dmcertinst.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dmcsps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dmenrollengine.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dwmcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\DWrite.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dxgi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\edgehtml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\EmailApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enppmon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enppui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enpres.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enrollmentapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ensppmon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ensppui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enspres.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enterprisecsps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\escsvc64.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\esdevapp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\esent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\facecredentialprovider.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\fdWCN.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\FntCache.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\fontdrvhost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\fveapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\fwpolicyiomgr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\GamePanel.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\GfxUI.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\hevcdecoder.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\hkcmd.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\HttpsDataSource.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iertutil.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\igfxext.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\igfxpers.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\igfxsrvc.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\igfxtray.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\InputService.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\InstallAgent.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\JpMapControl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\jscript.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\jscript9.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\kerberos.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\KeywordDetectorMsftSidAdapter.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\KnobsCore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\KnobsCsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LicenseManager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LicenseManagerShellext.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationCrowdsource.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationFramework.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationFrameworkInternalPS.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationGeofences.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationPeCell.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationPeIP.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationPermissions.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationPeWiFi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationWebproxy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationWiFiAdapter.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LockAppBroker.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LockAppHost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LogonController.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MapConfiguration.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MapControlCore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MapsStore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MbaeApi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MbaeApiPublic.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MbaeParserTask.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MBMediaManager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MDMAppInstaller.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mdmmigrator.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mdmregistration.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MessagingDataModel2.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MFCaptureEngine.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfds.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MFMediaEngine.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfmkvsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfmp4srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfmpeg2srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfplat.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MFPlay.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfsvr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\modernexecserver.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mos.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MPSSVC.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MRT.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msctfuimanager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mshtmlmedia.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msmpeg2vdec.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MsSpellCheckingFacility.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mssprxy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mssrch.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msxml3.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msxml6.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MusNotificationUx.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ncryptprov.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ncsi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\netcenter.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NetSetupShim.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NetSetupSvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NetworkMobileSettings.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NetworkStatus.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ngccredprov.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ngckeyenum.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ngcsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nlasvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NlsData0009.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NlsLexicons0009.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\notepad.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NotificationController.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NotificationControllerPS.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NotificationObjFactory.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ntdll.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvapi64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvaudcap64v.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvd3dumx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispco6433788.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispco6434725.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispco6435354.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispco6435560.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispco6435582.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispco6435598.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispgenco6433788.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispgenco6434725.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispgenco6435354.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispgenco6435560.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispgenco6435582.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispgenco6435598.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NvFBC64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NvIFR64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvinitx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvoglshim64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvoglv64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvopencl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvumdshimx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvvsvc.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvwgf2umx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\omadmapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\omadmclient.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\OneDriveSettingSyncProvider.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\PackageStateRoaming.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\PhoneCallHistoryApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\PimIndexMaintenance.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\PlayToManager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pnidui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\powertracker.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\prm0009.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\provengine.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\provhandlers.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\provisioningcsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\provops.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\PsmServiceExtHost.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\psmsrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rdbui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RdpGroupPolicyExtension.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RDXService.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ReAgent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\remoteaudioendpoint.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RemoteNaturalLanguage.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\reseteng.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rpcrt4.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RtCRX64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\schedsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SearchProtocolHost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SecConfig.efi:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SensorsApi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SensorService.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SensorsNativeApi.V2.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SettingsHandlers_Notifications.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SettingsHandlers_nt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SettingsHandlers_UserAccount.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SettingSync.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SettingSyncHost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\shacct.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SharedStartModel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SharedStartModelShim.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\shell32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\StoreAgent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SubscriptionMgr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\syncmlhook.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\syncutil.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\sysmain.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SystemEventsBrokerServer.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\tetheringclient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\tetheringservice.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\TextInputFramework.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\tileobjserver.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\TokenBroker.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\tquery.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\twinapi.appcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\twinui.appcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\twinui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\UIAutomationCore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Unistore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\UserDataAccountApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\UserDataService.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\UserMgrProxy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\vaultsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\vcredist_x64.bat:$CmdTcID
AlternateDataStreams: C:\Windows\system32\vcredist_x64.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\VEDataLayerHelpers.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\VEEventDispatcher.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\VEStoreEventHandlers.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ViakaraokeSrv.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\VoiceActivationManager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\VPNv2CSP.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wcmcsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wcmsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WcnApi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WcnNetsh.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wcnwiz.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WdfCoInstaller01009.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wfdprov.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wifinetworkmanager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\win32kbase.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\win32kfull.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WinBioDataModel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.ApplicationModel.Store.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Cortana.Desktop.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Devices.Bluetooth.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Internal.Bluetooth.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Internal.Management.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Internal.Shell.Broker.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Media.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Media.Protection.PlayReady.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Media.Speech.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Speech.Pal.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\windows.storage.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.UI.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.UI.Immersive.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.UI.Logon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.UI.PicturePassword.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.UI.Shell.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.UI.Xaml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wininet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winload.efi:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winload.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winlogon.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winmde.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winresume.efi:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winresume.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WlanMediaManager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wlansvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wlidsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wltrynt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wmpmde.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\workfolderssvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wpnapps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wpncore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wpx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wu.upgrade.ps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wuaueng.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wuautoappupdate.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WUDFx02000.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wuuhext.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WWAHost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WWanAPI.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wwancfg.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wwanconn.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wwanmm.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wwansvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ActionCenter.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AppointmentApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AppXDeploymentClient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\atmlib.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\authui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\BingMaps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\BtnCtlsU.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\bzDCT.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\bzFlRdr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\CallHistoryClient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\CBLCtlsU.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Chakra.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Chakradiag.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ChatApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ContactApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\CoreMessaging.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\CoreUIComponents.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\CredProvDataModel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\d3d9.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\D3DX9_42.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\directmanipulation.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dwmcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\DWrite.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dxgi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\edgehtml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\EditCtlsU.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\EmailApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\esent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ExLvwU.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\explorer.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\fdWCN.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\FlashPlayerApp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\fmcodec.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\fontdrvhost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\fwpolicyiomgr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\GamePanel.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\GPhotos.scr:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\hevcdecoder.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iertutil.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\InputService.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\IntelCpHeciSvc.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\JpMapControl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\jscript.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\jscript9.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\kerberos.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LblCtlsU.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LicenseManager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LockAppBroker.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LockAppHost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LogonController.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MapConfiguration.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MapControlCore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MbaeApi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MbaeApiPublic.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mdmregistration.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mediarcpt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MessagingDataModel2.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MFCaptureEngine.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfds.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MFMediaEngine.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfmkvsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfmp4srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfmpeg2srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfplat.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MFPlay.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfsvr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mos.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msctfuimanager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mshtmlmedia.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msmpeg2vdec.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mssrch.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msvcr71.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msxml3.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msxml6.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ncryptprov.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\netcenter.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NetSetupShim.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NlsData0009.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NlsLexicons0009.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\notepad.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NotificationObjFactory.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ntdll.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvaudcap32v.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcompiler.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvd3dum.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NvFBC.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NvIFR.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvinit.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvoglshim32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvoglv32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvopencl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvumdshim.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvwgf2um.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\PackageStateRoaming.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\PhoneCallHistoryApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\PlayToManager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ReAgent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ReInfo.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\remoteaudioendpoint.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\RemoteNaturalLanguage.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\rpcrt4.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\RsCRIcon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\SearchProtocolHost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\SensorsApi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\SensorsNativeApi.V2.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\SettingSync.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\SettingSyncHost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\shacct.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\shell32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\TabStripCtlU.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\tetheringclient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\TextInputFramework.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\TokenBroker.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\tquery.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\twinapi.appcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\twinui.appcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\twinui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\UIAutomationCore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Unistore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\UserDataAccountApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\UserMgrProxy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\usoapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\vcredist_x64.bat:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\vcredist_x64.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\VEDataLayerHelpers.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\VEEventDispatcher.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\VoiceActivationManager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WcnApi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wcnwiz.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wfdprov.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.Internal.Management.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.Media.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.Media.Speech.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.Speech.Pal.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\windows.storage.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.UI.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.UI.Immersive.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.UI.Logon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.UI.Xaml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wininet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\winmde.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wpnapps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WWAHost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WWanAPI.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\anvsnddrv.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\AsusTP.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\athw10x.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\avc3.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\avckf.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\bcm42rly.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\BdaSup.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btath_a2dp.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btath_avdt.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btath_bus.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btath_flt.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btath_hcrp.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btath_lwflt.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btath_rcp.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btfilter.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\bthhfenum.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\bthmodem.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\bthport.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btmaux.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\buttonconverter.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\CFRMD.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\dxgkrnl.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\dxgmms1.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\dxgmms2.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\fastfat.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\FWPKCLNT.SYS:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\iaStor.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\IT9135BDA.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mbam.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mbamchameleon.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mountmgr.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\msgpiowin32.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mwac.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\ndis.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\ntfs.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\nvlddmkm.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\nvpciflt.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\nvvad64v.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\pdc.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\portcls.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\rdyboost.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\RtsUer.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\sdbus.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\stornvme.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\storport.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\tcpip.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\tunnel.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\usbhub.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\USBHUB3.SYS:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\usbscan.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\USBXHCI.SYS:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\VClone.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\wdcsam64.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\Wdf01000.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\WdiWiFi.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\wof.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\wpcfltr.sys:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Drivers\afc.sys:$CmdTcID
AlternateDataStreams: C:\ProgramData\Temp:4D066AD2
AlternateDataStreams: C:\ProgramData\Temp:8AD1F2E0
AlternateDataStreams: C:\ProgramData\Temp:DBC416F8
AlternateDataStreams: C:\ProgramData\Temp:F169C698
AlternateDataStreams: C:\ProgramData\Temp:FAB80532
AlternateDataStreams: C:\Users\Public\Documents\Bluetooth_QualcommAtheros_Win7_64_VER801318.zip:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\1801538.xlsx:$CmdZnID

[rudkr63]

AlternateDataStreams: C:\Users\Ruda\Downloads\1801538.xlsx:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\334.89-notebook-win8-win7-64bit-international-whql.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\337.88-notebook-win8-win7-64bit-international-whql.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\355.60-notebook-win10-64bit-international-whql.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\355.60-notebook-win10-64bit-international-whql.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\AdobeAIRInstaller.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\adobereader-setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\adobereader-setup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\Apache_OpenOffice_4.1.1_Win_x86_install_cs.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\aTube_Catcher_ATU3_8001(1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\aTube_Catcher_ATU3_8001(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\avc-ultimate.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\AVG_Remover.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\AVG_Remover.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\cbsidlm-cbsi188-Ashampoo_Internet_Accelerator-ORG-10699423.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\cc-setup(1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\cc-setup(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\cdbxp_setup_4.5.6.5844.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\cdbxp_setup_4.5.6.5844.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\ChromeSetup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\cispremium_installer(1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\cispremium_installer(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\dfsetup219.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\epson374608eu.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\EpsonConnect130.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\FFSetup3.7.0.0.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\FFSetup3.7.0.0.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\FirefoxSetup36.0cz.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\flashplayer18ppau_ha_install.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\GeForce_Experience_v2.5.12.11.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\GeForce_Experience_v2.5.12.11.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\GPU-Z_ASUS_ROG_0.8.5.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\GPU-Z_ASUS_ROG_0.8.5.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\gs916w64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\gs916w64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\InstallPlus500.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\Install_1.bat:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\InstalRecepty.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\InstalRecepty.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\JavaSetup8u60.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\jre-8u31-windows-x64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\kodi-15.1-Isengard.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\kodi-15.1-Isengard.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\lastpass_x64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\LibreOffice_5.0.2_Win_x86.msi:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\LibreOffice_5.0.2_Win_x86.msi:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\mbam-setup-2.2.0.1024.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\mbam-setup-2.2.0.1024.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\MediaCreationToolx64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\MediaCreationToolx64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\nppInstaller.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\OCCTPT4.4.1.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\OCCTPT4.4.1.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\pdf24-creator-7.2.0.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\pdf24-creator-7.2.0.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\PDFXVwer(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\peazip-5.7.2.WINDOWS.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\peazip-5.7.2.WINDOWS.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\PrintScreen540_Setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\RapportSetup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\RapportSetup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\rcsetup148.exe RECUVA.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\Setup_BullzipPDFPrinter_10_19_0_2457_FREE.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\Seznam.cz.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\Seznam.cz.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\Shockwave_Installer_Slim(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\SkypeSetupFull.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\SkypeSetupFull.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\smplayer-15.9.0-win32.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\smplayer-15.9.0-win32.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\spsetup128.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\SystemExplorerSetup_700.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\ThunderbirdSetup31.7.0.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\ThunderbirdSetup31.7.0.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\TiskObalek_CZ_3229.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\TiskObalek_CZ_3229.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\Uninstall_2.bat:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\uschovna_cz_1_1_0.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\uschovna_cz_1_1_0.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\uTorrent221.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\vlc-2.2.1-win32.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\vlc-2.2.1-win32.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\WinPcap_4_1_3.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\WinPcap_4_1_3.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\XnView-win-full.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\XnView-win-full.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\zps18_cz_aktualizace_02.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\zps18_cz_aktualizace_02.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\zps18_cz_templates.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\zps18_cz_templates.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\AppData\Roaming\inst.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Documents\Krčková Jana.1964 .wav:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Documents\PayPal.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Documents\PayPal.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Documents\Prasek_do_peciva.pdf:$CmdZnID

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\mojebanka.cz -> hxxps://etrading.mojebanka.cz
IE trusted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\mojeplatba.cz -> hxxps://www.mojeplatba.cz
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\1-se.com -> 1-se.com

There are 11402 more sites.


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-841361005-909514878-2309378359-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Ruda\AppData\Roaming\Zoner\ZPS 18\ZPSWallPaper.bmp
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: Bluetooth Device Monitor => 2
MSCONFIG\Services: Bluetooth OBEX Service => 2
MSCONFIG\Services: NAUpdate => 2
MSCONFIG\Services: VideoAcceleratorService => 2
MSCONFIG\Services: WinDefend => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Skype.lnk => C:\Windows\pss\Skype.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Ruda^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Odeslat do OneNote.lnk => C:\Windows\pss\Odeslat do OneNote.lnk.Startup
MSCONFIG\startupreg: ArcSoft Connection Service => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
MSCONFIG\startupreg: ASUSWebStorage => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.144.298\AsusWSPanel.exe /S
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: DriveUtilitiesHelper => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe
MSCONFIG\startupreg: EPLTarget =>
MSCONFIG\startupreg: Family Tree Builder Update => C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
MSCONFIG\startupreg: iSkysoft Helper Compact.exe => C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
MSCONFIG\startupreg: LedStatus => C:\Program Files (x86)\Rapoo\RpWireless\LedStatus.exe
MSCONFIG\startupreg: PDFPrint => C:\Program Files (x86)\PDF24\pdf24.exe
MSCONFIG\startupreg: WD Quick View => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
HKLM\...\StartupApproved\Run32: => "EEventManager"
HKLM\...\StartupApproved\Run32: => "tvncontrol"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "WD Quick View"
HKLM\...\StartupApproved\Run32: => "WD Drive Unlocker"
HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKLM\...\StartupApproved\Run32: => "PDFPrint"
HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\StartupApproved\Run: => "OneDriveSetup"
HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\StartupApproved\Run: => "ABBYY Screenshot Reader Bonus"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SNMP-In-UDP] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [SNMP-Out-UDP] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [SNMP-In-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [SNMP-Out-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{1C28C34E-DFF7-41F6-B204-775DF334E933}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{AE9EDCD2-1E31-4F05-97FE-319CD37FB5EB}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{F0D00006-B2F1-4727-AC73-DED2801CA13D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2560A362-F09E-49FA-9000-4FCAC3152D24}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{54B5FEB9-2581-44F5-97A5-4A3358DB2E86}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{6C4DBC42-0E8D-4251-9F30-2D35EF723F29}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{4DCAB2E5-2D27-45E4-B568-E3654260DC25}] => (Allow) C:\Program Files (x86)\iplay_en\dtuser.exe
FirewallRules: [{D8A039FC-0566-4E8F-93EF-23E06DCFCDCC}] => (Allow) C:\Program Files (x86)\iplay_en\dtuser.exe
FirewallRules: [{E188933D-843E-4EAF-BC78-640CD0DBCF97}] => (Allow) LPort=3306
FirewallRules: [{A2833CD8-E408-4E2C-8002-42C676B0BA56}] => (Allow) C:\windows\system32\mmc.exe
FirewallRules: [{3B1D4050-2E48-4760-A15B-9B86D6EADF01}] => (Allow) C:\windows\system32\mmc.exe
FirewallRules: [UDP Query User{F4F13C9C-F3D1-483B-B7FC-4A9CB9ABFD3C}C:\windows\system32\mmc.exe] => (Allow) C:\windows\system32\mmc.exe
FirewallRules: [TCP Query User{8BE7E96A-CBA3-43EE-8329-34ADA9A880B2}C:\windows\system32\mmc.exe] => (Allow) C:\windows\system32\mmc.exe
FirewallRules: [UDP Query User{D228D849-5376-4E45-9653-B356CE78073D}C:\program files (x86)\flashget network\flashget 3\flashget3.exe] => (Allow) C:\program files (x86)\flashget network\flashget 3\flashget3.exe
FirewallRules: [TCP Query User{6FE57AF2-BCE0-4D62-A728-DD08A66E25FC}C:\program files (x86)\flashget network\flashget 3\flashget3.exe] => (Allow) C:\program files (x86)\flashget network\flashget 3\flashget3.exe
FirewallRules: [{BED6ADC2-FB6F-47C3-96CF-8A528921EC22}] => (Allow) LPort=1900
FirewallRules: [{B1207B55-0ED4-4822-869F-7A59B8FBA925}] => (Allow) LPort=2869
FirewallRules: [{7CD40FA6-9304-489E-B4C4-254968D80E02}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{25781D61-0AB3-4F6F-86FC-F630F62A6836}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6BF46CD3-1148-4748-89FC-8564626156D7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{4D4918B6-28FD-4E0A-AC66-A7741C06AE9C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A1BF1D34-DA61-471D-B244-CD487783F9CE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{0642ADDC-6536-4111-A160-EC7E3C947527}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D141B2DC-6C01-416E-8B21-4A070821D9A2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{908DA1C5-4EEF-4B5F-BD9C-2CA23F09C9E5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{6E692C09-0409-4332-8D9D-0F9A8477A533}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{050F83A9-321B-4CD5-82DA-EFEAF9B08588}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{1E2A564C-59D1-431D-9C6A-9DF54FDE0D49}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{F7B89C45-1502-483F-82BD-06364B5B4F96}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [UDP Query User{85B00424-1AF6-4568-B96F-7F1E1D43DBA6}C:\program files (x86)\asus\asusvibe\asusvibe2.0.exe] => (Allow) C:\program files (x86)\asus\asusvibe\asusvibe2.0.exe
FirewallRules: [TCP Query User{C0E59EC1-571E-41F4-82DE-4811EF5D1FE1}C:\program files (x86)\asus\asusvibe\asusvibe2.0.exe] => (Allow) C:\program files (x86)\asus\asusvibe\asusvibe2.0.exe
FirewallRules: [UDP Query User{71109C3F-567D-4C66-8613-DA9907DB21C5}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [TCP Query User{BCC8A6B1-02AF-4ECC-99E7-A4AD98316C82}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{EFB3F90C-ABB2-4B5E-BB6A-4F5BEB02800B}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{AB3BFDD5-BDA9-4669-B171-04867DD5E02B}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [{5BB1574F-6C90-4CCE-B0C0-C4CA1EFAB72F}] => (Allow) C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{90F4BCA1-1ED3-473F-B678-77774EEE86C7}] => (Allow) C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{B92FEFE8-0057-49E4-83D7-6E4566265882}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{42EB7884-1B5C-42EF-923C-083BEF0B4F84}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{6936E7E7-8FB4-4D5F-9911-66E2739EBC44}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{A1B10BFC-8424-4E4C-9665-9A0653BEA60D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{65E3C7E4-538A-4333-B507-4C3D4B721F3D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{1336615E-9319-44AD-85F2-11E6DC19E297}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{6592E9D3-5605-45BD-AAC3-B2BD8D3DD1AC}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [TCP Query User{8E74D2D2-7099-40D3-9E1A-9B92E70F0A06}C:\users\ruda\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ruda\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{313E271E-6FF0-42B6-ACEB-58907BC9AA52}C:\users\ruda\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ruda\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{4154AC76-35F7-4DB3-81D3-3EBACDA0FAD6}] => (Block) C:\users\ruda\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{EC673AA5-B622-483E-91F6-53A82F7F3552}] => (Block) C:\users\ruda\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{EEC1DCCE-DF05-4925-8512-E1BAB834E628}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{262F9E55-C16E-4793-BB1B-D27AC3274BAC}] => (Allow) C:\Program Files\Zoner\Photo Studio 18\Program32\MediaServer.exe
FirewallRules: [{602E097D-8D94-4B2A-8D4F-3F0DB0F9E85D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: Řadič Intel sběrnice PCMCIA kompatibilní s PCIC
Description: Řadič Intel sběrnice PCMCIA kompatibilní s PCIC
Class Guid: {4d36e977-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pcmcia
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Základní grafický adaptér Microsoft
Description: Základní grafický adaptér Microsoft
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardní typy zobrazovacích jednotek)
Service: BasicDisplay
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Bluetooth Server
Description: Bluetooth Server
Class Guid: {34446e8e-37b4-4b16-9da6-bea2db33465a}
Manufacturer: Intel Corporation
Service: btmaux
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/30/2015 03:11:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: IEXPLORE.EXE, verze: 11.0.10240.16412, časové razítko: 0x55b99447
Název chybujícího modulu: QuickGesture.dll_unloaded, verze: 1.0.24.0, časové razítko: 0x4f853619
Kód výjimky: 0xc000041d
Posun chyby: 0x000064a0
ID chybujícího procesu: 0x7ac
Čas spuštění chybující aplikace: 0xIEXPLORE.EXE0
Cesta k chybující aplikaci: IEXPLORE.EXE1
Cesta k chybujícímu modulu: IEXPLORE.EXE2
ID zprávy: IEXPLORE.EXE3
Úplný název chybujícího balíčku: IEXPLORE.EXE4
ID aplikace související s chybujícím balíčkem: IEXPLORE.EXE5

Error: (10/30/2015 03:10:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: IEXPLORE.EXE, verze: 11.0.10240.16412, časové razítko: 0x55b99447
Název chybujícího modulu: QuickGesture.dll_unloaded, verze: 1.0.24.0, časové razítko: 0x4f853619
Kód výjimky: 0xc0000005
Posun chyby: 0x000064a0
ID chybujícího procesu: 0x7ac
Čas spuštění chybující aplikace: 0xIEXPLORE.EXE0
Cesta k chybující aplikaci: IEXPLORE.EXE1
Cesta k chybujícímu modulu: IEXPLORE.EXE2
ID zprávy: IEXPLORE.EXE3
Úplný název chybujícího balíčku: IEXPLORE.EXE4
ID aplikace související s chybujícím balíčkem: IEXPLORE.EXE5

Error: (10/30/2015 03:04:37 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchUI.exe verze 10.0.10240.16515 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.

ID procesu: 1538

Čas spuštění: 01d1131b659a4e47

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe

ID hlášení: 24a84554-7f0f-11e5-9c75-94dbc999140f

Úplný název balíčku s chybou: Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy

ID aplikace související s balíčkem s chybou: CortanaUI

Error: (10/30/2015 03:04:31 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: RUDA-PC)
Description: Balíček Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI se ukončil, protože jeho pozastavování trvalo moc dlouho.

Error: (10/30/2015 03:00:32 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: RUDA-PC)
Description: Aplikaci Facebook.Facebook_8xx8rvfyw5nnt!App se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (10/30/2015 02:56:20 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: RUDA-PC)
Description: Aplikaci Microsoft.WindowsAlarms_8wekyb3d8bbwe!App se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (10/30/2015 02:56:01 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: RUDA-PC)
Description: Aplikaci Facebook.Facebook_8xx8rvfyw5nnt!App se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (10/30/2015 02:51:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_MapsBroker, verze: 10.0.10240.16384, časové razítko: 0x559f38cb
Název chybujícího modulu: MosHostCore.dll, verze: 10.0.10240.16384, časové razítko: 0x559f3908
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000096f2
ID chybujícího procesu: 0x111c
Čas spuštění chybující aplikace: 0xsvchost.exe_MapsBroker0
Cesta k chybující aplikaci: svchost.exe_MapsBroker1
Cesta k chybujícímu modulu: svchost.exe_MapsBroker2
ID zprávy: svchost.exe_MapsBroker3
Úplný název chybujícího balíčku: svchost.exe_MapsBroker4
ID aplikace související s chybujícím balíčkem: svchost.exe_MapsBroker5

Error: (10/30/2015 02:49:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: smartlogon.exe, verze: 1.0.14.4, časové razítko: 0x4f41f50c
Název chybujícího modulu: smartlogon.exe, verze: 1.0.14.4, časové razítko: 0x4f41f50c
Kód výjimky: 0xc0000005
Posun chyby: 0x0001cea2
ID chybujícího procesu: 0x10f8
Čas spuštění chybující aplikace: 0xsmartlogon.exe0
Cesta k chybující aplikaci: smartlogon.exe1
Cesta k chybujícímu modulu: smartlogon.exe2
ID zprávy: smartlogon.exe3
Úplný název chybujícího balíčku: smartlogon.exe4
ID aplikace související s chybujícím balíčkem: smartlogon.exe5

Error: (10/30/2015 02:48:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: smartlogon.exe, verze: 1.0.14.4, časové razítko: 0x4f41f50c
Název chybujícího modulu: smartlogon.exe, verze: 1.0.14.4, časové razítko: 0x4f41f50c
Kód výjimky: 0xc0000005
Posun chyby: 0x0001cea2
ID chybujícího procesu: 0x133c
Čas spuštění chybující aplikace: 0xsmartlogon.exe0
Cesta k chybující aplikaci: smartlogon.exe1
Cesta k chybujícímu modulu: smartlogon.exe2
ID zprávy: smartlogon.exe3
Úplný název chybujícího balíčku: smartlogon.exe4
ID aplikace související s chybujícím balíčkem: smartlogon.exe5


System errors:
=============
Error: (10/30/2015 03:04:33 PM) (Source: DCOM) (EventID: 10016) (User: RUDA-PC)
Description: výchozí pro počítačMístníAktivace{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Ruda-PCRudaS-1-5-21-841361005-909514878-2309378359-1002LocalHost (pomocí LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (10/30/2015 03:04:33 PM) (Source: DCOM) (EventID: 10016) (User: RUDA-PC)
Description: výchozí pro počítačMístníAktivace{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Ruda-PCRudaS-1-5-21-841361005-909514878-2309378359-1002LocalHost (pomocí LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (10/30/2015 03:04:32 PM) (Source: DCOM) (EventID: 10016) (User: RUDA-PC)
Description: výchozí pro počítačMístníAktivace{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Ruda-PCRudaS-1-5-21-841361005-909514878-2309378359-1002LocalHost (pomocí LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (10/30/2015 03:04:32 PM) (Source: DCOM) (EventID: 10016) (User: RUDA-PC)
Description: výchozí pro počítačMístníAktivace{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Ruda-PCRudaS-1-5-21-841361005-909514878-2309378359-1002LocalHost (pomocí LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (10/30/2015 03:04:32 PM) (Source: DCOM) (EventID: 10016) (User: RUDA-PC)
Description: výchozí pro počítačMístníAktivace{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Ruda-PCRudaS-1-5-21-841361005-909514878-2309378359-1002LocalHost (pomocí LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (10/30/2015 03:04:32 PM) (Source: DCOM) (EventID: 10016) (User: RUDA-PC)
Description: výchozí pro počítačMístníAktivace{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Ruda-PCRudaS-1-5-21-841361005-909514878-2309378359-1002LocalHost (pomocí LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (10/30/2015 03:04:32 PM) (Source: DCOM) (EventID: 10016) (User: RUDA-PC)
Description: výchozí pro počítačMístníAktivace{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Ruda-PCRudaS-1-5-21-841361005-909514878-2309378359-1002LocalHost (pomocí LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (10/30/2015 03:04:32 PM) (Source: DCOM) (EventID: 10016) (User: RUDA-PC)
Description: výchozí pro počítačMístníAktivace{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Ruda-PCRudaS-1-5-21-841361005-909514878-2309378359-1002LocalHost (pomocí LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (10/30/2015 03:04:32 PM) (Source: DCOM) (EventID: 10016) (User: RUDA-PC)
Description: výchozí pro počítačMístníAktivace{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Ruda-PCRudaS-1-5-21-841361005-909514878-2309378359-1002LocalHost (pomocí LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (10/30/2015 03:04:32 PM) (Source: DCOM) (EventID: 10016) (User: RUDA-PC)
Description: výchozí pro počítačMístníAktivace{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Ruda-PCRudaS-1-5-21-841361005-909514878-2309378359-1002LocalHost (pomocí LRPC)Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742


CodeIntegrity:
===================================
Date: 2015-10-30 15:10:22.478
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-10-30 13:34:56.884
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-10-30 11:56:24.814
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-10-30 10:47:46.418
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-10-30 03:06:16.327
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-10-30 02:54:11.887
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-10-30 01:22:55.516
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-10-30 01:07:02.178
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-10-29 23:03:56.905
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-10-29 22:32:31.498
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU B970 @ 2.30GHz
Percentage of memory in use: 56%
Total physical RAM: 3979.91 MB
Available physical RAM: 1738.75 MB
Total Virtual: 9947.91 MB
Available Virtual: 7124.07 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:186.3 GB) (Free:74.09 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (DATA) (Fixed) (Total:254.14 GB) (Free:241.97 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 30EC77D9)

Partition: GPT.

==================== End of Addition.txt ============================

[altrok]

Povedlo se nakonec provest obnovu systemu? Pokud ne, provedte obnovu v nouzovem rezimu.

[rudkr63]

Nakonec ano, obnova proběhla.Stačilo dát "Vyhledání chyb disku" a pak to šlo.Ještě jednou tedy FRST-txt,+addition?

[altrok]

Ano, dejte prosim aktualni logy (Addition.txt je dlouhy, tak jej klidne zabalte a prilozte jako prilohu).

[rudkr63]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:29-10-2015
Ran by Ruda (administrator) on RUDA-PC (30-10-2015 18:01:10)
Running from C:\PerfLogs\Desktop
Loaded Profiles: Ruda (Available Profiles: Ruda & verak & Guest)
Platform: Windows 10 Home (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\BCMWLTRY.EXE
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
() C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3350760 2015-08-03] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [361984 2011-05-26] (Alcor Micro Corp.)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1427648 2015-08-05] (COMODO)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.exe [7138816 2015-10-25] (Broadcom Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2000-01-01] (Intel Corporation)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-06-25] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174752 2012-06-19] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5564784 2015-07-20] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2015-08-13] (ArcSoft Inc.)
HKLM-x32\...\Run: [WD Drive Unlocker] => C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [1761120 2015-07-31] (Western Digital Technologies, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [134784 2015-10-11] (Qualcomm®Atheros®)
HKU\S-1-5-18\...\Run: [Copy] => "C:\Users\Ruda\AppData\Roaming\Copy\CopyAgent.exe"
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [185816 2015-10-03] (NVIDIA Corporation)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [185816 2015-10-03] (NVIDIA Corporation)
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [185816 2015-10-03] (NVIDIA Corporation)
AppInit_DLLs: , C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [185816 2015-10-03] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [164008 2015-10-03] (NVIDIA Corporation)
AppInit_DLLs-x32: , C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [164008 2015-10-03] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll [2014-04-17] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll [2014-04-17] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll [2014-04-17] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll [2014-04-17] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll [2014-04-17] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll [2014-04-17] (Microsoft Corporation)
Startup: C:\Users\Classic .NET AppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Uninstall LastPass RunOnce.lnk [2015-08-13]
ShortcutTarget: Uninstall LastPass RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
Startup: C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Uninstall LastPass RunOnce.lnk [2015-08-13]
ShortcutTarget: Uninstall LastPass RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
Startup: C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Uninstall LastPass RunOnce.lnk [2015-08-13]
ShortcutTarget: Uninstall LastPass RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
Startup: C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SystemExplorerDisabled [2015-10-28] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{e557249b-ec4d-4e00-9a90-d94fcb0f2c10}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{eb650a0a-9e1b-4002-8743-32fa3fd63317}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-841361005-909514878-2309378359-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKLM-x32 -> SuggestionsURL_JSON hxxp://api.widdit.com/suggestions/?format=ffplugin&ua=ie&src=addon&si=71578&gid=71578-8195-1383444228385-7077C284AEBE65440D00D038ED049FA9&dbCode=1&command={searchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> 4B5EA646DF6531A15088C36557476C0C URL = hxxp://www.mapy.cz/?sourceid=quicksearch_6826& ... earchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> 4DC27B67ED0FA7A90115FB569A0CB241 URL = hxxp://www.zbozi.cz/?sourceid=quicksearch_6826&q={searchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> 93D5862C69DABE30EA665EDB907337B1 URL = hxxp://www.firmy.cz/phr/{searchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> FDF7979D990CE087B615003ED26C1913 URL = hxxp://videa.seznam.cz/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchterms}&c ... 3837783968
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {1E2C0E9F-5A57-404C-B006-0935D8B62540} URL = hxxp://www.alza.cz/SearchAdvanced.asp?EXPS={searchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {4B2BCD33-D984-4D8E-9C54-B803E34B1CA9} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12902
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {697A3350-6749-4A05-8E19-B8931A10DA0C} URL = hxxp://www.google.com/search?q={searchterms}&c ... 3837783968
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = hxxp://us.search.yahoo.com/search?p={searchTerms}&fr=chr-comodo
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {C7C7B0ED-D00A-4989-9D5A-29377FA141AF} URL = hxxp://cs.wikipedia.org/w/index.php?title=Speci%C3%A1ln%C3%AD:Search&search={searchTerms}
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {D55EDDC6-DF84-4DE3-A258-8E0FC1DAE671} URL = hxxp://www.radirna.cz/search/{searchTerms}/
SearchScopes: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> {DCEBF011-A869-4BF6-AF25-376F5EE21962} URL = hxxp://cs.wikipedia.org/w/index.php?title=Speci%C3%A1ln%C3%AD:Hled%C3%A1n%C3%AD&search={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-08-04] (Microsoft Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-08-07] (SEIKO EPSON CORPORATION)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-08-12] (Microsoft Corporation)
BHO: DownloadHelper Class -> {FF2573AE-E1ED-40e1-83BA-F544CB2EE135} -> C:\Program Files\Common Files\Download Helper\DownloadHelperx64.dll [2011-01-07] (IE Download Helper)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22] (Eyeo GmbH)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO-x32: DownloadHelper Class -> {FF2573AE-E1ED-40e1-83BA-F544CB2EE135} -> C:\Program Files (x86)\Common Files\Download Helper\DownloadHelper.dll [2011-01-07] (IE Download Helper)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-08-07] (SEIKO EPSON CORPORATION)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Toolbar: HKU\S-1-5-21-841361005-909514878-2309378359-1002 -> No Name - {91397D20-1446-11D4-8AF4-0040CA1127B6} - No File
DPF: HKLM-x32 {0D41B8C5-2599-4893-8183-00195EC8D5F9} hxxp://www.asus.com/support/asusTek_sys_ctrl3.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\d929bzy3.default-1439143576991
FF Homepage: hxxps://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-16] ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2015-09-15] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2015-09-15] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-16] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1219159.dll [2015-06-26] (Adobe Systems, Inc.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-09-15] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-04-12] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @oberon-media.com/ONCAdapter -> C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.14\npapicomadapter.dll [2012-05-31] (Oberon-Media )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-09-15] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [No File]
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-09-15] (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @kb-ext.cz/PKIComponent -> C:\Users\Ruda\AppData\Roaming\KB-ext\lib\x86\npPKIComponentNPAPI-kbext.dll [2015-03-25] (Komerční banka, a.s.)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @tools.google.com/Google Update;version=3 -> C:\Users\Ruda\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2014-11-14] (Google Inc.)
FF Plugin HKU\S-1-5-21-841361005-909514878-2309378359-1002: @tools.google.com/Google Update;version=9 -> C:\Users\Ruda\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2014-11-14] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll [2015-09-15] (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Users\Ruda\AppData\Roaming\mozilla\plugins\nppdf32.dll [2014-12-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Ruda\AppData\Roaming\mozilla\plugins\npPDFXCviewNPPlugin.dll [2014-12-28] (Tracker Software Products (Canada) Ltd.)
FF Extension: LastPass - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\d929bzy3.default-1439143576991\Extensions\support@lastpass.com [2015-09-25]
FF Extension: S3.Google Translator - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\d929bzy3.default-1439143576991\Extensions\s3google@translator.xpi [2015-10-10]
FF Extension: uBlock Origin - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\d929bzy3.default-1439143576991\Extensions\uBlock0@raymondhill.net.xpi [2015-10-28]
FF Extension: Speed Dial - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\d929bzy3.default-1439143576991\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi [2015-09-13]
FF Extension: Tab Mix Plus - C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\d929bzy3.default-1439143576991\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2015-09-02]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2015-08-06] [not signed]

Chrome:
=======
CHR HomePage: Profile 2 -> hxxp://www.google.cz/?gws_rd=ssl
CHR StartupUrls: Profile 2 -> "hxxp://www.google.cz/?gws_rd=ssl"
CHR Profile: C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Default
CHR Profile: C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Překladač Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-10-12]
CHR Extension: (Prezentace Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-25]
CHR Extension: (Dokumenty Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-25]
CHR Extension: (Disk Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-27]
CHR Extension: (Rapport) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2015-07-06]
CHR Extension: (YouTube) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-12]
CHR Extension: (Adblock Plus) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-10-12]
CHR Extension: (OneTab) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2015-07-17]
CHR Extension: (Vyhledávání Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Black Menu for Google™) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\eignhdfgaldabilaaegmdfbajngjmoke [2015-10-27]
CHR Extension: (Tabulky Google) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-11]
CHR Extension: (SearchPreview) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hcjdanpjacpeeppdjkppebobilhaglfo [2015-09-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-03]
CHR Extension: (Gmail) - C:\Users\Ruda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-15]
CHR HKU\S-1-5-21-841361005-909514878-2309378359-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx

Opera:
=======
OPR StartupUrls: "hxxp://www.seznam.cz/?clid=6826"

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2015-02-25] (ABBYY)
R3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2015-08-07] (ArcSoft Inc.)
S3 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [319104 2015-10-11] (Windows (R) Win 7 DDK provider) [File not signed]
S3 ChromodoUpdater; C:\Program Files (x86)\Comodo\Chromodo\chromodo_updater.exe [1998520 2015-08-30] (Comodo)
S3 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2768472 2015-09-16] (Microsoft Corporation)
R3 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5542472 2015-09-03] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265792 2015-08-05] (COMODO)
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [216576 2015-02-11] () [File not signed]
R2 DokanMounter; C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe [11776 2015-10-27] () [File not signed]
S3 EpsonCustomerResearchParticipation; C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe [676336 2015-09-09] (SEIKO EPSON CORPORATION)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2015-08-05] (Seiko Epson Corporation)
S3 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-28] (NVIDIA Corporation)
S3 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2015-10-03] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2000-01-01] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-10-26] (LogMeIn, Inc.)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-28] (Malwarebytes)
U2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-28] (Malwarebytes)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-03] (Microsoft Corporation)
R2 MSSQL$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2015-02-21] (Microsoft Corporation)
R2 MSSQLSERVER; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe [29293408 2015-02-21] (Microsoft Corporation)
S3 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-28] (NVIDIA Corporation)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2255128 2015-10-18] (IBM Corp.)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2015-10-02] (Riverbed Technology, Inc.)
S3 SNMP; C:\Windows\System32\snmp.exe [51712 2015-08-03] (Microsoft Corporation)
S3 SNMP; C:\Windows\SysWOW64\snmp.exe [46080 2015-08-03] (Microsoft Corporation)
S3 ssinstall; C:\Windows\SysWOW64\ssins.exe [2324216 2013-11-01] (PS Media s.r.o.)
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Mister Group)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [36504 2015-08-03] (VIA Technologies, Inc.)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-03] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-03] (Microsoft Corporation)
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2015-07-20] (Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [307064 2015-07-31] (Western Digital Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe [5821952 2015-10-25] (Broadcom Corporation) [File not signed]
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2015-10-11] (Atheros) [File not signed]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiCharger; C:\Windows\SysWOW64\DRIVERS\AiCharger.sys [17152 2012-02-29] (ASUSTek Computer Inc.)
R3 anvsnddrv; C:\Windows\system32\drivers\anvsnddrv.sys [33872 2015-08-14] (AnvSoft Inc.)
S3 ASUSProcObsrv; C:\Games\eSupport\eDriver\I386\AsPrOb64.sys [12416 2010-05-26] ()
R3 athr; C:\Windows\System32\drivers\athw10x.sys [4325544 2015-08-03] (Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [100776 2015-08-06] (ASUS Corporation)
S3 avc3; C:\Windows\System32\DRIVERS\avc3.sys [727592 2015-06-18] (BitDefender)
S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [601360 2015-06-18] (BitDefender)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2015-10-11] (Qualcomm Atheros)
S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [165376 2015-07-10] (Microsoft Corporation)
S3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [36864 2015-07-10] (Microsoft Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2015-10-03] (Motorola Solutions, Inc.)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [21720 2015-08-05] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [827632 2015-08-05] (COMODO)
R1 cmdhlp; C:\Windows\system32\DRIVERS\cmdhlp.sys [35056 2015-08-05] (COMODO)
R2 Dokan; C:\Windows\system32\drivers\dokan.sys [106888 2012-05-19] (Windows (R) Win 7 DDK provider)
R3 ETDSMBus; C:\Windows\System32\drivers\ETDSMBus.sys [31320 2015-07-14] (ELAN Microelectronic Corp.)
R3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-04-03] (REALiX(tm))
R3 i8042HDR; C:\Windows\system32\DRIVERS\i8042HDR.sys [15920 2009-08-14] (Windows (R) Codename Longhorn DDK provider)
R1 inspect; C:\Windows\system32\DRIVERS\inspect.sys [127232 2015-08-05] (COMODO)
S3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [113280 2015-05-06] (ITE )
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-28] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-28] (Malwarebytes Corporation)
R1 MPCKpt; C:\Windows\System32\DRIVERS\MPCKpt.sys [55016 2015-09-20] (DotCash)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-03] (Microsoft Corporation)
S3 MSTEE; C:\Windows\system32\drivers\MSTEE.sys [12800 2015-07-10] (Microsoft Corporation) [File not signed]
S3 MTConfig; C:\Windows\System32\drivers\MTConfig.sys [15872 2015-07-10] (Microsoft Corporation) [File not signed]
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-09-05] (NVIDIA Corporation)
S3 pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [82816 2014-12-11] (VSO Software) [File not signed]
S3 PCWinSoft; C:\Windows\System32\DRIVERS\scrcamhrdrv_x64.sys [241800 2012-10-11] (Windows (R) Server 2003 DDK provider)
R1 RapportCerberus_1507072; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1507072.sys [959416 2015-09-22] (IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [500184 2015-10-18] (IBM Corp.)
R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [139896 2015-10-18] (IBM Corp.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [394584 2015-10-18] (IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [489272 2015-10-18] (IBM Corp.)
S3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [410880 2015-08-23] (Realsil Semiconductor Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 VClone; C:\Windows\System32\DRIVERS\VClone.sys [34816 2014-12-28] (Elaborate Bytes AG) [File not signed]
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 XHCIdrv; C:\Windows\System32\DRIVERS\XHCIdrv.sys [119720 2013-08-08] (Windows (R) Win 7 DDK provider)
S3 cpuz134; \??\C:\Users\Ruda\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]
S3 cpuz137; \??\C:\Users\Ruda\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [X]
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-30 18:00 - 2015-10-30 18:00 - 00097150 _____ C:\Users\Ruda\Downloads\frst před 17.00.txt
2015-10-30 17:49 - 2015-10-30 17:49 - 00000000 ___RD C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-10-30 17:46 - 2015-10-30 17:46 - 00016148 _____ C:\Windows\system32\RUDA-PC_Ruda_HistoryPrediction.bin
2015-10-30 17:44 - 2015-10-30 17:44 - 00000022 _____ C:\Windows\S.dirmngr
2015-10-29 22:22 - 2015-10-29 22:22 - 00011778 _____ C:\Users\Ruda\Downloads\1801538.xlsx
2015-10-28 22:16 - 2015-10-28 22:16 - 00009798 _____ C:\Users\Ruda\Documents\MAMB.txt
2015-10-28 10:10 - 2015-10-30 14:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-10-28 10:10 - 2015-10-28 14:40 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-10-28 10:10 - 2015-10-28 14:40 - 00001173 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-10-28 10:09 - 2015-10-30 14:38 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-10-28 10:09 - 2015-10-28 14:39 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-10-28 10:09 - 2015-10-28 14:39 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-10-28 10:09 - 2015-10-28 14:39 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-10-28 10:04 - 2015-10-28 14:38 - 22908888 _____ (Malwarebytes ) C:\Users\Ruda\Downloads\mbam-setup-2.2.0.1024.exe
2015-10-27 22:42 - 2015-10-27 22:43 - 00000000 ____D C:\AVG_Remover
2015-10-27 22:41 - 2015-10-27 22:42 - 07814752 _____ ( ) C:\Users\Ruda\Downloads\AVG_Remover.exe
2015-10-27 12:06 - 2015-10-27 12:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-10-27 11:56 - 2015-10-27 11:56 - 00000000 ____D C:\Program Files (x86)\Dokan
2015-10-27 11:55 - 2015-10-27 11:56 - 00000000 ____D C:\ProgramData\Team MediaPortal
2015-10-26 22:42 - 2015-10-26 22:43 - 00000000 ____D C:\rsit
2015-10-26 21:29 - 2015-10-30 14:42 - 00000000 ____D C:\Windows\LastGood
2015-10-26 21:11 - 2015-10-29 13:24 - 00031520 _____ C:\Windows\PFRO.log
2015-10-26 20:48 - 2015-10-26 20:48 - 00000000 _____ C:\Windows\setuperr.log
2015-10-26 20:48 - 2015-10-26 20:48 - 00000000 _____ C:\Windows\setupact.log
2015-10-26 16:29 - 2015-10-30 17:46 - 00000275 _____ C:\Windows\WindowsUpdate.log
2015-10-26 02:19 - 2015-10-26 01:58 - 00314171 _____ C:\Users\Ruda\Documents\Krčková Jana.1964 .wav
2015-10-25 22:49 - 2015-10-25 22:50 - 00000000 ____D C:\Program Files (x86)\Cisco
2015-10-25 22:48 - 2015-10-25 22:48 - 01047552 _____ (Broadcom Corporation) C:\Windows\system32\BCMLogon.dll
2015-10-25 22:47 - 2015-10-25 22:47 - 04961800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcredist_x64.exe
2015-10-25 22:47 - 2015-10-25 22:47 - 04658688 _____ (Broadcom Corporation) C:\Windows\system32\bcmttls.dll
2015-10-25 22:47 - 2015-10-25 22:47 - 03161088 _____ (Microsoft Corporation) C:\Windows\system32\vcredist_x64.exe
2015-10-25 22:47 - 2015-10-25 22:47 - 00073728 _____ (Broadcom Corporation) C:\Windows\system32\wltrynt.dll
2015-10-25 22:47 - 2015-10-25 22:47 - 00022592 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\bcm42rly.sys
2015-10-25 22:47 - 2015-10-25 22:47 - 00006656 _____ C:\Windows\system32\bcmwlrc.dll
2015-10-25 22:47 - 2015-10-25 22:47 - 00000446 _____ C:\Windows\SysWOW64\vcredist_x64.bat
2015-10-25 22:47 - 2015-10-25 22:47 - 00000445 _____ C:\Windows\system32\vcredist_x64.bat
2015-10-25 22:47 - 2015-10-25 22:47 - 00000000 ____D C:\Program Files\Broadcom
2015-10-25 22:44 - 2015-10-25 22:44 - 00000000 ____D C:\Users\Ruda\Downloads\WIFI_XPVistaWin7_8_VER510082112_VER6305982
2015-10-25 17:50 - 2015-10-25 17:50 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\PDF Writer
2015-10-25 17:50 - 2015-10-25 17:50 - 00000000 ____D C:\Users\Ruda\AppData\Local\PDF Writer
2015-10-25 17:46 - 2015-10-25 17:46 - 00228352 _____ (Bullzip) C:\Windows\SysWOW64\bzFlRdr.dll
2015-10-25 17:46 - 2015-10-25 17:46 - 00103424 _____ (Bullzip) C:\Windows\SysWOW64\bzDCT.dll
2015-10-25 17:46 - 2015-10-25 17:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bullzip
2015-10-25 17:46 - 2015-10-25 17:46 - 00000000 ____D C:\Program Files\Common Files\Bullzip
2015-10-25 17:45 - 2015-10-25 17:48 - 00000000 ____D C:\ProgramData\PDF Writer
2015-10-25 17:45 - 2015-10-25 17:45 - 01103872 _____ C:\Windows\SysWOW64\CBLCtlsU.ocx
2015-10-25 17:45 - 2015-10-25 17:45 - 01061888 _____ C:\Windows\SysWOW64\ExLvwU.ocx
2015-10-25 17:45 - 2015-10-25 17:45 - 00805376 _____ C:\Windows\SysWOW64\EditCtlsU.ocx
2015-10-25 17:45 - 2015-10-25 17:45 - 00645632 _____ C:\Windows\SysWOW64\BtnCtlsU.ocx
2015-10-25 17:45 - 2015-10-25 17:45 - 00539648 _____ C:\Windows\SysWOW64\LblCtlsU.ocx
2015-10-25 17:45 - 2015-10-25 17:45 - 00476160 _____ C:\Windows\SysWOW64\TabStripCtlU.ocx
2015-10-25 17:45 - 2015-10-25 17:45 - 00000000 ____D C:\Program Files\Bullzip
2015-10-25 17:44 - 2015-10-25 17:45 - 11342496 _____ (Bullzip ) C:\Users\Ruda\Downloads\Setup_BullzipPDFPrinter_10_19_0_2457_FREE.exe
2015-10-25 15:32 - 2015-10-30 14:42 - 00000000 ____D C:\Windows\LastGood.Tmp
2015-10-25 00:22 - 2015-10-25 00:23 - 43688576 _____ (Skype Technologies S.A.) C:\Users\Ruda\Downloads\SkypeSetupFull.exe
2015-10-23 10:31 - 2015-10-28 22:36 - 00000000 ____D C:\Users\Ruda\AppData\Local\Seznam.cz
2015-10-23 10:30 - 2015-10-28 09:28 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Seznam Browser
2015-10-23 10:30 - 2015-10-23 10:30 - 00001947 _____ C:\Users\Ruda\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.lnk
2015-10-23 10:29 - 2015-10-23 10:30 - 44251016 _____ C:\Users\Ruda\Downloads\Seznam.cz.exe
2015-10-22 21:46 - 2015-10-22 21:46 - 04673608 _____ (Mgr. Radovan Kraus ) C:\Users\Ruda\Downloads\TiskObalek_CZ_3229.exe
2015-10-20 22:35 - 2015-10-20 22:37 - 00014567 _____ C:\Users\Ruda\Documents\Libre Office.odt
2015-10-20 20:48 - 2015-10-20 20:58 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2015-10-20 20:47 - 2015-10-20 21:04 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Copy
2015-10-20 20:17 - 2015-10-20 20:17 - 00001219 _____ C:\Users\Public\Desktop\LibreOffice 5.0.lnk
2015-10-20 20:17 - 2015-10-20 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.0
2015-10-20 20:14 - 2015-10-20 20:17 - 00000000 ____D C:\Program Files (x86)\LibreOffice 5
2015-10-20 20:02 - 2015-10-20 20:12 - 220336128 _____ C:\Users\Ruda\Downloads\LibreOffice_5.0.2_Win_x86.msi
2015-10-16 11:15 - 2015-10-16 20:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-16 09:05 - 2015-10-25 00:17 - 00001846 _____ C:\Users\Public\Desktop\Q-Dir.lnk
2015-10-14 10:04 - 2015-10-14 10:04 - 24595456 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 22322624 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 21875712 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 20858360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 19325952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 18806272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 16708608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 13027840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 12504064 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 11262976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 08020320 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-10-14 10:04 - 2015-10-14 10:04 - 07523840 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 05454848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 04792320 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 03586560 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2015-10-14 10:04 - 2015-10-14 10:04 - 03580416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 02573768 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 02178560 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 01997336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 01871360 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 01795072 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 01594368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 01423872 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 01382400 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2015-10-14 10:04 - 2015-10-14 10:04 - 01294352 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-10-14 10:04 - 2015-10-14 10:04 - 01276416 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 01205248 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 01123400 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-10-14 10:04 - 2015-10-14 10:04 - 01018568 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-10-14 10:04 - 2015-10-14 10:04 - 00980832 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2015-10-14 10:04 - 2015-10-14 10:04 - 00949248 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00928256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00858408 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-10-14 10:04 - 2015-10-14 10:04 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00796160 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00766976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00757760 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00650240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00625152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00613376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00579584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00579072 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-10-14 10:04 - 2015-10-14 10:04 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00574464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00525312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00498016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-10-14 10:04 - 2015-10-14 10:04 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00466432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MessagingDataModel2.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccountApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\PhoneCallHistoryApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneCallHistoryApis.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\CallHistoryClient.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallHistoryClient.dll
2015-10-14 10:04 - 2015-10-14 10:04 - 00078528 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-10-13 17:05 - 2015-10-13 17:07 - 39981240 _____ (ZONER software ) C:\Users\Ruda\Downloads\zps18_cz_templates.exe
2015-10-12 13:12 - 2015-10-12 13:30 - 00000000 ____D C:\Users\Ruda\Documents\EVA recepty
2015-10-11 23:26 - 2015-10-28 22:42 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Atheros
2015-10-11 23:26 - 2015-10-26 21:25 - 00000000 ____D C:\ProgramData\Atheros
2015-10-11 23:12 - 2015-10-11 23:20 - 00000000 ____D C:\Program Files\Common Files\QCA_Bluetooth
2015-10-11 23:12 - 2015-10-11 23:13 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program
2015-10-11 22:56 - 2015-10-11 22:56 - 00000000 ____D C:\Users\Ruda\Downloads\Bluetooth_QualcommAtheros_Win7_64_VER801318
2015-10-11 21:56 - 2015-10-11 21:56 - 03642530 _____ C:\Windows\SysWOW64\MSI43a51.LOG
2015-10-11 11:56 - 2015-10-11 12:10 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Foxit Software
2015-10-10 23:02 - 2015-10-10 23:02 - 00288932 _____ C:\Users\Ruda\Documents\AInfo.zip
2015-10-10 13:51 - 2015-10-10 13:52 - 18359976 _____ (ZONER software ) C:\Users\Ruda\Downloads\zps18_cz_aktualizace_02.exe
2015-10-07 20:55 - 2015-10-07 20:56 - 00000000 ____D C:\Users\Ruda\Documents\Export
2015-10-06 23:32 - 2015-10-07 17:19 - 00000000 ____D C:\Users\Ruda\.smplayer
2015-10-06 23:31 - 2015-10-06 23:32 - 00000000 ____D C:\Program Files (x86)\SMPlayer
2015-10-06 23:31 - 2015-10-06 23:31 - 00001078 _____ C:\Users\Public\Desktop\SMPlayer.lnk
2015-10-06 23:31 - 2015-10-06 23:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SMPlayer
2015-10-06 23:29 - 2015-10-06 23:30 - 24130337 _____ C:\Users\Ruda\Downloads\smplayer-15.9.0-win32.exe
2015-10-06 15:45 - 2015-10-06 15:45 - 00002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Zoner Photo Studio 18.lnk
2015-10-06 15:45 - 2015-10-06 15:45 - 00002027 _____ C:\Users\Public\Desktop\Zoner Photo Studio 18.lnk
2015-10-06 15:44 - 2015-10-06 15:44 - 00000000 ____D C:\Program Files\Zoner
2015-10-03 15:46 - 2015-10-03 15:46 - 00000000 ____D C:\Users\Ruda\Documents\Moje přijaté soubory
2015-10-03 15:39 - 2015-10-03 15:40 - 01898104 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435598.dll
2015-10-03 15:39 - 2015-10-03 15:39 - 01558832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435598.dll
2015-10-03 15:19 - 2015-10-20 10:29 - 00810488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-10-03 15:19 - 2015-10-20 10:29 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-03 14:01 - 2015-10-26 21:27 - 00031976 _____ C:\Windows\system32\nvinfo.pb
2015-10-03 14:01 - 2015-10-03 14:03 - 18523352 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 16168336 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 13283288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 11147952 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-10-03 14:01 - 2015-10-03 14:03 - 01173920 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 01069928 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 01061224 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 01000064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 00992104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 00985264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 00159560 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 00137240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-10-03 14:01 - 2015-10-03 14:03 - 00040296 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2015-10-03 14:01 - 2015-10-03 14:02 - 30527664 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-10-03 14:01 - 2015-10-03 14:02 - 22981296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-10-03 14:01 - 2015-10-03 14:02 - 16018528 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-10-03 14:01 - 2015-10-03 14:02 - 15901632 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-10-03 14:01 - 2015-10-03 14:02 - 14519312 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-10-03 14:01 - 2015-10-03 14:02 - 12981064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-10-03 14:01 - 2015-10-03 14:02 - 11851416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-10-03 14:01 - 2015-10-03 14:02 - 02369712 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-10-03 14:01 - 2015-10-03 14:02 - 02172592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-10-03 14:00 - 2015-10-03 14:03 - 03353400 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-10-03 14:00 - 2015-10-03 14:03 - 02964560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-10-03 14:00 - 2015-10-03 14:01 - 37757616 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-10-03 14:00 - 2015-10-03 14:00 - 42738864 _____ C:\Windows\system32\nvcompiler.dll
2015-10-03 13:59 - 2015-10-03 13:59 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_btmaux_01009.Wdf
2015-10-02 23:46 - 2015-10-02 23:46 - 00003556 _____ C:\Windows\System32\Tasks\{3A295E5E-DC55-4A47-B309-877E9C1DD03D}
2015-10-02 23:32 - 2015-10-11 22:40 - 00000000 ____D C:\Program Files (x86)\Ralink Corporation
2015-10-01 09:17 - 2015-10-01 09:17 - 05120056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2015-10-01 09:16 - 2015-10-01 09:17 - 07055872 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 07569408 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 06487248 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 06101504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 05079552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 03781120 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 03248640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02987520 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02824248 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02740224 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02660864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02646528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02494712 _____ C:\Windows\system32\CoreUIComponents.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02464216 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02446648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02432336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-10-01 09:16 - 2015-10-01 09:16 - 02417664 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02236416 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02228736 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02226688 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02207232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02156400 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02154808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02093056 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01983824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-10-01 09:16 - 2015-10-01 09:16 - 01918464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01766952 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01601536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01563472 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01563392 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01397088 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01331200 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01295712 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01290240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\RemoteNaturalLanguage.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01203712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01181696 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01162240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01104384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 01010176 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00966416 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00962400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00910848 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00899584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoteNaturalLanguage.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00894256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2015-10-01 09:16 - 2015-10-01 09:16 - 00869376 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00859136 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00809352 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00784136 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00781976 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00764416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00677888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00658528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00646672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00555768 _____ (Microsoft Corporation) C:\Windows\system32\directmanipulation.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00537080 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00513536 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 06572032 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 02639872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 01895568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 01844736 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 01812480 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 01357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 01171456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 01168736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00929280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00928256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00832512 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00780288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00701952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\CellularAPI.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00671232 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00621056 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00587264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00584656 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00553808 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2015-10-01 09:15 - 2015-10-01 09:15 - 00521728 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00516448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-10-01 09:15 - 2015-10-01 09:15 - 00508248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00505696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00501008 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00476760 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00473088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00464896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00454512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directmanipulation.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00441168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2015-10-01 09:15 - 2015-10-01 09:15 - 00439296 _____ (Microsoft Corporation) C:\Windows\system32\LocationWebproxy.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00434376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00428128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00407608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00406864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-10-01 09:15 - 2015-10-01 09:15 - 00403456 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00395088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\LocationGeofences.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00332624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00328704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00278352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\syncutil.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00253440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00243760 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeWiFi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\LocationCrowdsource.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeCell.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\accountaccessor.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeIP.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\SubscriptionMgr.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2015-10-01 09:15 - 2015-10-01 09:15 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\dmcsps.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2015-10-01 09:15 - 2015-10-01 09:15 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00102304 _____ (Microsoft Corporation) C:\Windows\system32\omadmapi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00099664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\LocationWiFiAdapter.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00088384 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\ngckeyenum.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2015-10-01 09:15 - 2015-10-01 09:15 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2015-10-01 09:15 - 2015-10-01 09:15 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\HttpsDataSource.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00074880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\wwancfg.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthmodem.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Speech.Pal.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Speech.Pal.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\buttonconverter.sys
2015-10-01 09:15 - 2015-10-01 09:15 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\syncmlhook.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManagerShellext.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-30 18:01 - 2015-01-09 23:20 - 00000000 ____D C:\FRST
2015-10-30 17:56 - 2015-08-14 16:28 - 00000000 ____D C:\Users\Ruda\AppData\LocalLow\LastPass
2015-10-30 17:53 - 2015-09-27 21:07 - 01474832 _____ C:\Windows\system32\Drivers\sfi.dat
2015-10-30 17:49 - 2015-08-09 20:03 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2015-10-30 17:49 - 2015-08-03 13:31 - 00004190 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{B9C26119-2806-4546-B247-5A5B1261D67E}
2015-10-30 17:46 - 2015-08-29 23:17 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-10-30 17:44 - 2015-06-04 10:11 - 00008192 _____ C:\Windows\SysWOW64\WDPABKP.dat
2015-10-30 17:43 - 2015-07-10 13:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-30 17:42 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\sru
2015-10-30 17:42 - 2015-07-10 10:05 - 00786432 ___SH C:\Windows\system32\config\BBI
2015-10-30 15:17 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\AppReadiness
2015-10-30 15:11 - 2013-03-07 10:49 - 00000000 ____D C:\Users\Ruda\AppData\Local\CrashDumps
2015-10-30 14:51 - 2015-08-03 03:50 - 00000000 ____D C:\Users\Ruda
2015-10-30 14:44 - 2015-08-03 03:50 - 00000000 ____D C:\Users\DefaultAppPool
2015-10-30 14:44 - 2015-08-03 03:49 - 00000000 ____D C:\Users\Guest
2015-10-30 14:44 - 2015-08-03 03:49 - 00000000 ____D C:\Users\Classic .NET AppPool
2015-10-30 14:43 - 2015-08-07 21:10 - 00000000 ____D C:\Users\verak
2015-10-30 14:43 - 2015-02-10 13:36 - 00000000 ____D C:\Program Files (x86)\Q-Dir
2015-10-30 14:43 - 2015-01-28 00:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Q-Dir
2015-10-30 14:43 - 2014-12-23 11:57 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Q-Dir
2015-10-30 14:43 - 2014-05-05 00:52 - 00000000 ____D C:\ProgramData\SystemExplorer
2015-10-30 14:43 - 2013-12-02 11:38 - 00000000 ____D C:\Program Files\CCleaner
2015-10-30 14:43 - 2013-11-23 00:33 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\vlc
2015-10-30 14:42 - 2015-08-04 17:49 - 00000000 ____D C:\Windows\System32\Tasks\COMODO
2015-10-30 14:42 - 2015-07-04 00:37 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\uTorrent
2015-10-30 14:42 - 2014-06-08 17:53 - 00000000 ____D C:\Users\Ruda\AppData\LocalLow\Adblock Plus for IE
2015-10-30 14:07 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\registration
2015-10-30 14:05 - 2015-01-21 00:52 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Opera Software
2015-10-30 14:05 - 2014-09-29 13:46 - 00000000 ____D C:\Users\Ruda\Downloads\Photos
2015-10-30 14:05 - 2013-08-23 16:09 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Skype
2015-10-30 14:00 - 2015-08-18 17:03 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-10-30 03:36 - 2015-07-10 11:55 - 00000000 ____D C:\Windows\CbsTemp
2015-10-29 14:23 - 2015-07-16 20:27 - 00000000 ____D C:\Users\Ruda\Downloads\Originals
2015-10-29 14:23 - 2014-11-29 21:11 - 00000000 ____D C:\Users\Ruda\Downloads\images
2015-10-28 23:41 - 2013-10-09 15:55 - 00000000 ____D C:\Program Files (x86)\Java
2015-10-28 23:20 - 2013-03-26 02:11 - 00000000 ____D C:\Users\Ruda\AppData\LocalLow\Temp
2015-10-28 22:45 - 2013-07-15 19:59 - 00000000 ____D C:\Users\Ruda\AppData\Local\LogMeIn Hamachi
2015-10-28 01:17 - 2013-03-07 02:52 - 00000000 ____D C:\Users\Ruda\Documents\Bluetooth Folder
2015-10-28 00:39 - 2015-05-31 02:14 - 00000000 ____D C:\Windows\system32\log
2015-10-28 00:11 - 2015-05-13 12:30 - 00000000 ____D C:\Users\Ruda\AppData\Local\Avg
2015-10-28 00:09 - 2015-08-29 23:06 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Seznam.cz
2015-10-28 00:02 - 2013-03-14 00:58 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2015-10-27 23:56 - 2015-08-15 01:00 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-10-27 22:25 - 2015-08-03 03:46 - 02565488 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-27 22:25 - 2015-07-10 17:02 - 01098470 _____ C:\Windows\system32\perfh005.dat
2015-10-27 22:25 - 2015-07-10 17:02 - 00321232 _____ C:\Windows\system32\perfc005.dat
2015-10-27 12:19 - 2015-06-04 09:53 - 00000000 ____D C:\ProgramData\Package Cache
2015-10-27 12:06 - 2013-07-15 19:57 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2015-10-26 22:43 - 2013-10-12 22:46 - 00000000 ____D C:\Program Files\trend micro
2015-10-26 22:08 - 2015-08-17 20:14 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Kodi
2015-10-26 21:31 - 2015-08-03 03:41 - 00937616 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-10-26 21:31 - 2014-11-28 01:08 - 00000000 ___DC C:\Temp
2015-10-26 21:14 - 2015-06-16 15:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ochrana koncového bodu Trusteer
2015-10-26 21:10 - 2015-09-27 22:59 - 00662420 _____ C:\Windows\system32\Drivers\fvstore.dat
2015-10-26 16:21 - 2015-09-29 11:43 - 00000000 ____D C:\Windows\Minidump
2015-10-26 16:19 - 2014-11-28 01:50 - 00000000 ____D C:\Users\Ruda\Documents\čištění
2015-10-26 16:14 - 2014-06-08 17:53 - 00000000 ____D C:\Program Files\Adblock Plus for IE
2015-10-26 10:24 - 2014-06-19 14:40 - 00000000 ____D C:\Program Files (x86)\Recepty doma
2015-10-26 10:22 - 2015-06-09 09:18 - 10166280 _____ (Martin Roubec ) C:\Users\Ruda\Downloads\InstalRecepty.exe
2015-10-26 10:22 - 2014-06-19 14:40 - 00201216 _____ C:\Windows\SysWOW64\mediarcpt.dll
2015-10-26 10:22 - 2014-06-19 14:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recepty doma
2015-10-26 02:22 - 2015-08-10 23:47 - 00000000 ____D C:\Users\Ruda\Documents\Zvukové záznamy
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\zh-HK
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\tr-TR
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\th-TH
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\sl-SI
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\sk-SK
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\ro-RO
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\lv-LV
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\lt-LT
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\hr-HR
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\he-IL
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\et-EE
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\bg-BG
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\ar-SA
2015-10-25 22:47 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Help
2015-10-25 16:48 - 2015-02-24 01:41 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\XnView
2015-10-25 01:42 - 2015-08-30 00:20 - 00000958 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-10-25 00:24 - 2013-08-23 15:45 - 00000000 ____D C:\ProgramData\Skype
2015-10-25 00:18 - 2013-09-03 09:22 - 00084612 _____ C:\Windows\Q-Dir.ini
2015-10-25 00:17 - 2015-01-28 00:36 - 00001852 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Q-Dir.lnk
2015-10-25 00:17 - 2015-01-28 00:36 - 00000000 ____D C:\Program Files\Q-Dir
2015-10-22 21:58 - 2015-04-03 02:48 - 00000000 ____D C:\ProgramData\firebird
2015-10-20 21:05 - 2015-09-14 08:52 - 04841864 _____ C:\Windows\system32\FNTCACHE.DAT
2015-10-20 20:19 - 2013-03-29 23:34 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\LibreOffice
2015-10-20 19:59 - 2015-06-28 14:13 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\OpenOffice
2015-10-19 22:42 - 2014-10-07 00:16 - 00022016 _____ C:\Users\Ruda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-10-19 15:38 - 2015-08-03 07:39 - 00000000 ____D C:\Users\Ruda\AppData\Local\Packages
2015-10-19 00:46 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\NDF
2015-10-18 22:37 - 2015-05-27 15:02 - 00000000 ____D C:\Users\Ruda\AppData\Local\Zoner
2015-10-18 15:06 - 2015-06-16 15:26 - 00394584 _____ (IBM Corp.) C:\Windows\system32\Drivers\RapportKE64.sys
2015-10-18 15:06 - 2015-06-16 15:26 - 00139896 _____ (IBM Corp.) C:\Windows\system32\Drivers\RapportHades64.sys
2015-10-17 20:53 - 2014-02-13 11:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-17 12:25 - 2013-03-12 14:25 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-10-16 20:46 - 2015-08-30 00:20 - 00004094 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2015-10-16 19:33 - 2013-03-13 23:20 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\dvdcss
2015-10-14 15:21 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\appraiser
2015-10-14 14:20 - 2013-07-10 13:25 - 00000000 ____D C:\Windows\system32\MRT
2015-10-14 13:55 - 2013-03-07 09:48 - 143481208 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-10-13 22:29 - 2014-03-14 20:54 - 00000000 ____D C:\Users\Ruda\Documents\Korejs,Havlán
2015-10-13 22:15 - 2014-12-24 18:03 - 00003972 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-10-12 21:31 - 2015-08-04 17:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2015-10-12 21:30 - 2015-08-04 18:43 - 00000082 _____ C:\Windows\wininit.ini
2015-10-12 21:30 - 2015-08-04 17:48 - 00000000 ____D C:\Program Files\COMODO
2015-10-11 23:20 - 2014-02-25 20:53 - 00179432 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_hcrp.sys
2015-10-11 23:20 - 2014-02-25 20:53 - 00137928 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_rcp.sys
2015-10-11 23:20 - 2014-02-25 20:53 - 00077464 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_lwflt.sys
2015-10-11 23:19 - 2014-02-25 20:53 - 00355528 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_a2dp.sys
2015-10-11 23:19 - 2014-02-25 20:53 - 00118984 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_avdt.sys
2015-10-11 23:19 - 2014-02-25 20:53 - 00089800 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_flt.sys
2015-10-11 23:19 - 2014-02-25 20:53 - 00035016 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_bus.sys
2015-10-11 23:13 - 2015-07-11 23:43 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite
2015-10-11 17:14 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\rescache
2015-10-11 02:18 - 2013-03-08 11:24 - 00002432 _____ C:\Windows\System32\Tasks\ASUS USB Charger Plus
2015-10-11 02:18 - 2013-03-07 11:21 - 00002384 _____ C:\Windows\System32\Tasks\AsusVibeSchedule
2015-10-11 02:18 - 2013-03-07 03:31 - 00002306 _____ C:\Windows\System32\Tasks\ATKOSD2
2015-10-08 20:55 - 2015-09-16 10:39 - 00011723 _____ C:\Users\Ruda\Documents\Městský úřad Chodov.odt
2015-10-07 12:52 - 2013-04-07 16:45 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\PhotoScape
2015-10-06 15:46 - 2015-05-27 15:02 - 00000000 ____D C:\Users\Ruda\AppData\Roaming\Zoner
2015-10-06 15:08 - 2013-10-18 00:03 - 00000000 ____D C:\Users\Ruda\Documents\MyHeritage
2015-10-06 13:39 - 2015-08-26 00:41 - 00000000 ____D C:\Program Files\ProgDVB
2015-10-05 10:07 - 2015-02-25 18:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2015-10-03 15:39 - 2015-08-03 03:41 - 00000000 ____D C:\ProgramData\NVIDIA
2015-10-03 14:13 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\F12
2015-10-03 14:13 - 2015-07-10 12:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-03 14:13 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2015-10-03 14:13 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2015-10-03 14:12 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\F12
2015-10-03 14:12 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\PurchaseDialog
2015-10-03 14:12 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Provisioning
2015-10-03 14:12 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\L2Schemas
2015-10-03 14:02 - 2015-07-13 19:45 - 00185816 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-10-03 14:01 - 2015-08-27 16:32 - 00164008 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-10-03 13:57 - 2013-07-22 17:56 - 00140600 _____ (Motorola Solutions, Inc.) C:\Windows\system32\Drivers\btmaux.sys
2015-10-03 13:57 - 2012-08-15 10:23 - 01721216 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2015-10-03 13:56 - 2013-03-08 11:01 - 00000000 ____D C:\Program Files (x86)\Intel
2015-10-02 22:32 - 2015-09-04 15:28 - 00000000 ____D C:\Program Files (x86)\WinPcap

==================== Files in the root of some directories =======

2013-03-16 11:33 - 2013-03-16 04:27 - 15271824 _____ (Google Inc.) C:\Program Files (x86)\picasa39-setup.exe
2015-05-31 15:37 - 2015-08-13 15:16 - 10393600 _____ () C:\Program Files (x86)\Common Files\lpuninstall.exe
2014-06-26 22:06 - 2014-06-26 22:19 - 0000096 _____ () C:\Users\Ruda\AppData\Roaming\Camdata.ini
2014-06-26 22:06 - 2014-06-26 22:19 - 0000408 _____ () C:\Users\Ruda\AppData\Roaming\CamLayout.ini
2014-06-26 22:06 - 2014-06-26 22:19 - 0000408 _____ () C:\Users\Ruda\AppData\Roaming\CamShapes.ini
2014-06-26 22:06 - 2014-06-26 22:19 - 0004509 _____ () C:\Users\Ruda\AppData\Roaming\CamStudio.cfg
2014-03-24 18:03 - 2015-01-01 14:05 - 0099384 _____ () C:\Users\Ruda\AppData\Roaming\inst.exe
2014-03-24 18:03 - 2015-01-01 14:05 - 0007859 _____ () C:\Users\Ruda\AppData\Roaming\pcouffin.cat
2014-03-24 18:03 - 2015-01-01 14:05 - 0001167 _____ () C:\Users\Ruda\AppData\Roaming\pcouffin.inf
2014-03-24 18:03 - 2015-01-01 14:05 - 0082816 _____ (VSO Software) C:\Users\Ruda\AppData\Roaming\pcouffin.sys
2014-01-18 18:31 - 2014-01-18 18:31 - 0022713 _____ () C:\Users\Ruda\AppData\Roaming\UserTile.png
2014-12-11 18:11 - 2015-01-01 13:54 - 0001057 _____ () C:\Users\Ruda\AppData\Roaming\vso_ts_preview.xml
2014-10-07 00:16 - 2015-10-19 22:42 - 0022016 _____ () C:\Users\Ruda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-11-28 16:12 - 2013-11-28 16:12 - 0001715 _____ () C:\Users\Ruda\AppData\Local\FastClean.20131128.161230.txt
2015-09-05 09:59 - 2015-09-05 09:59 - 0000218 _____ () C:\Users\Ruda\AppData\Local\recently-used.xbel
2013-03-27 21:44 - 2015-08-08 01:13 - 0007650 _____ () C:\Users\Ruda\AppData\Local\Resmon.ResmonCfg
2015-04-27 19:32 - 2015-04-27 19:32 - 0000000 _____ () C:\Users\Ruda\AppData\Local\{03E83CAC-05F7-418B-94BF-6DB4601107B2}
2015-04-15 00:35 - 2015-04-15 00:35 - 0000000 _____ () C:\Users\Ruda\AppData\Local\{36F635ED-91FF-464C-8865-271938C323E7}
2015-05-15 07:41 - 2015-05-15 07:41 - 0000000 _____ () C:\Users\Ruda\AppData\Local\{3E5CE45F-5149-45FE-9823-C190A8D490D1}
2015-05-15 09:56 - 2015-05-15 09:56 - 0000000 _____ () C:\Users\Ruda\AppData\Local\{46B461A5-CA78-4F7D-82DE-01B9DB6F713B}
2015-04-15 00:17 - 2015-04-15 00:17 - 0000000 _____ () C:\Users\Ruda\AppData\Local\{8E97867A-90E3-49AA-A208-442D6D79A711}
2015-04-06 13:30 - 2015-04-06 13:30 - 0000000 _____ () C:\Users\Ruda\AppData\Local\{97FF5CF1-E72E-448C-8B55-3A30758AE3D1}
2014-06-03 08:57 - 2015-08-26 02:05 - 0013825 _____ () C:\ProgramData\LmeUSB.log
2014-06-03 08:57 - 2015-08-26 02:05 - 0013844 _____ () C:\ProgramData\LSDmbTH.log
2015-02-06 21:20 - 2015-02-06 21:20 - 0005074 _____ () C:\ProgramData\mxnhytee.feu
2013-03-08 02:37 - 2013-03-08 02:38 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2013-03-08 02:36 - 2013-03-08 02:37 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2013-03-08 02:36 - 2013-03-08 02:36 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-10-21 09:44

==================== End of FRST.txt ============================

[rudkr63]

Additional scan result of Farbar Recovery Scan Tool (x64) Version:29-10-2015
Ran by Ruda (2015-10-30 18:03:38)
Running from C:\PerfLogs\Desktop
Windows 10 Home (X64) (2015-08-03 06:35:56)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-841361005-909514878-2309378359-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-841361005-909514878-2309378359-503 - Limited - Disabled)
Guest (S-1-5-21-841361005-909514878-2309378359-501 - Limited - Enabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-841361005-909514878-2309378359-1021 - Limited - Enabled)
Ruda (S-1-5-21-841361005-909514878-2309378359-1002 - Administrator - Enabled) => C:\Users\Ruda
verak (S-1-5-21-841361005-909514878-2309378359-1020 - Administrator - Enabled) => C:\Users\verak

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Enabled - Up to date) {F25D0092-CDBE-B303-ADB7-88DE8CDECCF5}
AS: Comodo Defense+ (Enabled - Up to date) {493CE176-EB84-BC8D-9707-B3ACF7598648}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: COMODO Firewall (Enabled) {CA6681B7-87D1-B25B-86E8-21EB720D8B8E}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

„Windows Live Essentials“ (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
„Windows Live Mail“ (x32 Version: 16.4.3528.0331 - „Microsoft Corporation“) Hidden
„Windows Live Messenger“ (x32 Version: 16.4.3528.0331 - „Microsoft Corporation“) Hidden
µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1.25534 - emc, uTorrent.CZ)
ABBYY FineReader 9.0 Sprint (x32 Version: 9.00.631.5823 - ABBYY) Hidden
Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{36381D51-CC5E-4698-A0CC-E939C75EC9D8}) (Version: 1.5 - Eyeo GmbH)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.180 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Flash Player 19 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.9.159 - Adobe Systems, Inc.)
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 1.4.42.69356 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 1.4.42.69356 - Alcor Micro Corp.) Hidden
Any Video Converter Ultimate 5.8.3 (HKLM-x32\...\Any Video Converter Ultimate_is1) (Version: - Any-Video-Converter.com)
ArcSoft MediaImpression 2 (HKLM-x32\...\{FB46F473-333E-4A06-A777-31C54188593E}) (Version: 2.0.14.672 - ArcSoft)
Ashampoo Photo Commander 11 (HKLM-x32\...\{C92AB6F1-0F9C-8526-5DF1-0A2FD0FB33D9}_is1) (Version: 11.1.9 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Optimizer FREE (HKLM-x32\...\Ashampoo Photo Optimizer FREE_is1) (Version: 1.2.0 - ashampoo GmbH & Co. KG)
ASUS AI Recovery (HKLM-x32\...\{D39F0676-163E-4595-A917-E28F99BBD4D2}) (Version: 1.0.24 - ASUS)
ASUS FaceLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0014 - ASUS)
ASUS Instant Connect (HKLM-x32\...\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}) (Version: 1.2.2 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.1 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.7 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.2.1 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.5 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.0.9 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.26 - ASUS)
ASUS Virtual Touch (HKLM-x32\...\{938CFBD4-0652-49E5-BB8B-153948865941}) (Version: 1.0.11 - ASUS)
ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 3.0.144.298 - ASUS Cloud Corporation)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.309 - ASUSTEK)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.12 - Atheros Communications Inc.)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0020 - ASUS)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 3.8.5187 - DsNET Corp)
aTube Catcher verze 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Balíček ovladače systému Windows - ASUS (ATP) Mouse (06/17/2015 1.0.0.262) (HKLM\...\14588A15B66655338DBCC021FFA81E31DC281859) (Version: 06/17/2015 1.0.0.262 - ASUS)
Bass Audio Decoder (remove only) (HKLM-x32\...\Bass Audio Decoder) (Version: - )
Broadcom Wireless Utility (HKLM\...\Broadcom Wireless Utility) (Version: 5.100.82.97 - Broadcom Corporation)
Bullzip PDF Printer 10.19.0.2457 (HKLM\...\Bullzip PDF Printer_is1) (Version: 10.19.0.2457 - Bullzip)
CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5844 - CDBurnerXP)
Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.) Hidden
COMODO Internet Security Premium (HKLM\...\{38F898C8-272F-455F-9BD6-71FEBA3E4AF5}) (Version: 8.2.0.4703 - COMODO Security Solutions Inc.)
CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2926 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform)
Document Capture Pro (HKLM-x32\...\{B4A3C072-87AF-4937-880D-3D7997111C0D}) (Version: 1.01.0000 - Seiko Epson Corporation)
Dokan Library 0.5.3 (HKLM-x32\...\DokanLibrary) (Version: - )
Dream Day First Home (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}) (Version: - Oberon Media)
Dream Vacation Solitaire (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111249233}) (Version: - Oberon Media)
ELAN Touchpad 15.8.4.3_X64_WHQL (HKLM\...\Elantech) (Version: 15.8.4.3 - ELAN Microelectronic Corp.)
Epson Connect Guide (HKLM-x32\...\Epson Connect Guide) (Version: - )
Epson Copy Utility 3.5 (HKLM-x32\...\{AA72FB28-73B4-49E5-B6B4-E78F44BBD0AD}) (Version: 3.5.0.0 - )
Epson Customer Research Participation (HKLM\...\{B26449A6-6007-4460-B4FE-C4776115BCEA}) (Version: 1.70.0000 - EPSON)
Epson Easy Photo Print 2 (HKLM-x32\...\{02A312B5-1542-47B6-BFE9-F51358C39E86}) (Version: 2.4.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION2)
Epson Event Manager (HKLM-x32\...\{148C8BF9-E1B4-445D-AC67-2CABAE63949A}) (Version: 3.01.0009 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION)
Epson Příručka pro síť L355 Series (HKLM-x32\...\L355 Series Netg) (Version: - )
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
Epson Uživatelská příručka EPSON Perfection V370 Photo (HKLM-x32\...\EPSON Perfection V370 Photo Useg) (Version: - )
Epson Uživatelská příručka L355 Series (HKLM-x32\...\L355 Series Useg) (Version: - )
Evidence LSoft 4.2.0.0 (HKLM-x32\...\{6B7574A7-ADE5-40CD-B4DE-3A72C483DB92}_is1) (Version: - Martin Lutonský)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
FFMPEG Core Files (remove only) (HKLM-x32\...\FFMPEG Core Files) (Version: - )
FormatFactory 3.7.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.7.0.0 - Format Factory)
Gabest MPEG Splitter (remove only) (HKLM-x32\...\Gabest MPEG Splitter) (Version: - )
Gadwin PrintScreen (64-Bit) (HKLM\...\{C4E9434D-9FA7-4D27-9805-D767A8A38904}) (Version: 5.4.0.0 - Gadwin Systems)
Galapago (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}) (Version: - Oberon Media)
Game Park Console (HKLM-x32\...\Game Park Console) (Version: 1.2.4.431 - Oberon Media Inc.)
Go Go Gourmet Chef of the Year (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115290153}) (Version: - Oberon Media)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.80 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Gpg4win (2.2.3) (HKLM-x32\...\GPG4Win) (Version: 2.2.3 - The Gpg4win Project)
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.16) (Version: 9.16 - Artifex Software Inc.)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
Chromodo (HKLM-x32\...\Chromodo) (Version: 44.5.7.268 - Comodo)
IE Download Helper (HKLM\...\{92A49BB2-0039-470F-82F8-A599BF5C4410}) (Version: 3.2 - IE Download Helper)
InstantOn for NB (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.3.3 - ASUS)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{302600C1-6BDF-4FD1-1309-148929CC1385}) (Version: 3.1.1309.0390 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.10.255 - Intel Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
LAV Filters 0.63.0 (HKLM-x32\...\lavfilters_is1) (Version: 0.63.0 - Hendrik Leppkes)
LibreOffice 5.0.2.2 (HKLM-x32\...\{71508AE2-346A-4E56-AE95-DBB8DE692258}) (Version: 5.0.2.2 - The Document Foundation)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.406 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.406 - LogMeIn, Inc.) Hidden
Mahjong Secrets (HKLM-x32\...\510008402) (Version: - Oberon Media)
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft OneNote 2013 - cs-cz (HKLM\...\OneNoteFreeRetail - cs-cz) (Version: 15.0.4753.1002 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0405-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM-x32\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 CSY (HKLM\...\{0A8A841B-29C4-4947-BF59-241216B4D904}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{9ACF3FDB-C8E6-444C-8C64-13A221F7BFFD}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM-x32\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{B636C9B9-A3F2-4DCE-ADCC-72E095018385}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Visual Basic PowerPacks 10.0 (HKLM-x32\...\{2D9F8079-7D50-3EFD-B3BD-ED642E4EE756}) (Version: 10.0.20911 - Microsoft)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Web Platform Installer 4.6 (HKLM\...\{16C7D2AD-20CA-491E-80BC-8607A9AACED9}) (Version: 4.0.40719.0 - Microsoft Corporation)
Mozilla Firefox 41.0.2 (x86 cs) (HKLM-x32\...\Mozilla Firefox 41.0.2 (x86 cs)) (Version: 41.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.2.5765 - Mozilla)
Mozilla Thunderbird 38.3.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 38.3.0 (x86 cs)) (Version: 38.3.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyHeritage Family Tree Builder (HKLM-x32\...\Family Tree Builder) (Version: 7.0.0.7128 - MyHeritage.com)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 353.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.54 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OCCT 4.4.1 (HKLM-x32\...\OCCT) (Version: 4.4.1 - Ocbase.com)
Odinstalace tiskárny EPSON L355 Series (HKLM\...\EPSON L355 Series) (Version: - SEIKO EPSON Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4753.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4753.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4753.1002 - Microsoft Corporation) Hidden
Ochrana koncového bodu Trusteer (HKLM-x32\...\Rapport_msi) (Version: 3.5.1507.83 - Trusteer)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenSource AVI Splitter (remove only) (HKLM-x32\...\OpenSource AVI Splitter) (Version: - )
OpenSource DTS/AC3/DD+ Source Filter (remove only) (HKLM-x32\...\OpenSource DTS/AC3/DD+ Source Filter) (Version: - )
OpenSource Flash Video Splitter (remove only) (HKLM-x32\...\OpenSource Flash Video Splitter) (Version: - )
Organizér (HKLM-x32\...\{4154BF17-EE1F-4F25-9696-2FF191FE0787}) (Version: 4.7.2 - Fireluke Software)
Ovládací panel NVIDIA 353.54 (Version: 353.54 - NVIDIA Corporation) Hidden
Ovladač klávesnice a myši Rapoo v1.6 (HKLM-x32\...\{2E569492-CB19-4510-AB49-1C6A36C6F525}_is1) (Version: - Rapoo Inc.)
PDF Architect 2 OCR Module (x32 Version: 2.0.17.17583 - pdfforge GmbH) Hidden
PDF24 Creator 7.2.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.315.0 - Tracker Software Products Ltd)
PeaZip 5.7.0 (WIN64) (HKLM\...\{5A2BC38A-406C-4A5B-BF45-6991F9A05325}_is1) (Version: - Giorgio Tani)
PeaZip 5.7.2 (HKLM-x32\...\{5A2BC38A-406C-4A5B-BF45-6991F9A05325}_is1) (Version: - Giorgio Tani)
PeaZip configuration (WIN64) (HKLM\...\{4F8D60A8-C53D-47BD-AE5C-31AE6566D638}_is1) (Version: - Giorgio Tani)
PicosmosTools 1.0.0.0 (HKLM-x32\...\PicosmosTools) (Version: 1.0.0.0 - Format Factory)
Plants vs Zombies (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-117080787}) (Version: - Oberon Media)
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Plus500 (HKLM-x32\...\Plus500) (Version: - )
Poczta usługi Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Pošta Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Prohlížeč Seznam.cz (HKU\S-1-5-21-841361005-909514878-2309378359-1002\...\Seznam Browser) (Version: - Seznam.cz a.s.)
Q-Dir (HKLM\...\Q-Dir) (Version: - )
Q-Dir (HKLM-x32\...\Q-Dir) (Version: - )
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.318 - Qualcomm Atheros Communications)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 3.0 - Qualcomm Atheros)
Rapport (x32 Version: 3.5.1507.83 - Trusteer) Hidden
Recepty doma (HKLM-x32\...\Recepty doma_is1) (Version: - Martin Roubec)
Recuva (HKLM\...\Recuva) (Version: 1.48 - Piriform)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Sada Compatibility Pack pro systém Office 2007 (HKLM-x32\...\{90120000-0020-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
SceneSwitch (HKLM-x32\...\{5172E572-C175-4F80-A6D5-5CB45826AD61}) (Version: 1.0.12 - ASUS)
Simple Adblock (HKLM-x32\...\{B4920103-09F6-4AD2-B150-CFC4474D2DDC}) (Version: 1.1.5 - Simple Adblock)
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
SMPlayer 15.9.0 (HKLM-x32\...\SMPlayer) (Version: 15.9.0 - Ricardo Villalba)
Software Updater (HKLM-x32\...\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87}) (Version: 4.3.7 - SEIKO EPSON CORPORATION) <==== ATTENTION
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Explorer 7.0.0 (HKLM-x32\...\{40F485F7-6478-4896-B0D5-F94BE677EB78}_is1) (Version: - Mister Group)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
Tisk Obalek 3.2.2.8 (HKLM-x32\...\Tisk Obalek_is1) (Version: 3.2.2.8 - Mgr. Radovan Kraus)
Uschovna.cz 1.1.0 (HKLM-x32\...\{8531A154-5045-4E32-885A-391F750C5DE2}_is1) (Version: 1.1.0 - Capsa.cz)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VIA Platform Device Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WD Drive Utilities (HKLM-x32\...\{c77bad57-f913-4ac3-9061-6dfd6c0aa40a}) (Version: 1.3.0.16 - Western Digital Technologies, Inc.)
WD Drive Utilities (x32 Version: 1.3.0.16 - Western Digital Technologies, Inc.) Hidden
WD Quick View (HKLM-x32\...\{10E4655D-047D-472A-AE5C-CCEF665B47E8}) (Version: 2.4.12.1 - Western Digital Technologies, Inc.)
WD Security (HKLM-x32\...\{429a42d7-4c55-44d4-b38a-5872a0d70495}) (Version: 1.3.0.18 - Western Digital Technologies, Inc.)
WD Security (x32 Version: 1.3.0.18 - Western Digital Technologies, Inc.) Hidden
WD SmartWare (HKLM\...\{17A76C9D-91D4-4E01-922D-1B3000DEB9F1}) (Version: 2.4.12.1 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM-x32\...\{979a4332-3eb0-4561-9f74-a4fb871cf2bd}) (Version: 2.4.12.1 - Western Digital Technologies, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
Wireless Console 3 (HKLM-x32\...\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}) (Version: 3.0.27 - ASUS)
World of Goo (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-116672750}) (Version: - Oberon Media)
XnView 2.34 (HKLM-x32\...\XnView_is1) (Version: 2.34 - Gougelet Pierre-e)
Zoner Photo Studio 18 - Obálky a šablony (HKLM\...\ZonerPhotoStudio18_Templates_CZ_is1) (Version: 18.0.1.1 - ZONER software)
Zoner Photo Studio 18 (HKLM\...\ZonerPhotoStudio18_CZ_is1) (Version: 18.0.1.4 - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-841361005-909514878-2309378359-1002_Classes\CLSID\{BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B}\InprocServer32 -> C:\Program Files\Zoner\Photo Studio 18\Program64\SHELLEXT.DLL (ZONER software)

==================== Restore Points =========================

28-10-2015 23:17:02 Restore Point Created by FRST
28-10-2015 23:38:44 Removed Java 8 Update 60
28-10-2015 23:49:25 Removed Java 8 Update 51 (64-bit)
28-10-2015 23:54:53 Restore Point Created by FRST
29-10-2015 00:26:37 Restore Point Created by FRST
30-10-2015 13:31:52 28.10.2015 23:54:00
30-10-2015 13:49:49 Operace obnovení

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2015-10-28 23:20 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00B4C1D0-87B9-446F-9BD5-3FC8C2467514} - System32\Tasks\{18940542-76C0-4F13-9BE4-8A66F0476E6A} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {01C995FF-D178-4E7B-AC4A-9E950006A207} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {0837D897-84CB-4E30-A8DD-807937A81DFC} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {0AD8A73C-27DA-4B5F-BC3F-96C50ADC26D3} - System32\Tasks\{A1F61B27-141C-4120-96A2-84789B412077} => pcalua.exe -a C:\VTRoot\HarddiskVolume3\Users\Ruda\AppData\Local\Temp\setup_kalender\Uninstall_tkexe.exe
Task: {0EA9B830-5DC4-4E1B-A3F2-5A1794F8501C} - System32\Tasks\{9166EEE1-665A-47B7-9AA3-F28205031DCF} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Galapago\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Galapago\install.log"
Task: {0F1FC558-90E6-41AA-8D37-4FBE69053762} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {1109A2DB-F4A2-471B-89B9-C51DA1DCC4CA} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-08-05] (COMODO)
Task: {11FA246D-C1FB-4763-82E6-F9EB4F15CCF0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-04-25] (Piriform Ltd)
Task: {11FB9A9F-DE45-4625-A68C-FFC2E0940A67} - System32\Tasks\{3C9D2E01-D7E9-4342-BDC9-2776D4B876E9} => pcalua.exe -a C:\Users\Ruda\Downloads\Windows-Live-Mail-_16.4.3505.0912.exe -d C:\Users\Ruda\Downloads
Task: {148318FC-5974-4508-A415-B3AFD16E5DDB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {16B650C0-89C9-454D-97D5-6C2102834D84} - System32\Tasks\{6B5CC6B3-B792-45FF-9E34-6A890BAA3CBF} => pcalua.exe -a C:\Users\Ruda\Downloads\Android.Manager.WiFi.v2010.10.01.exe -d C:\Users\Ruda\Downloads
Task: {16EC238F-8D7D-4C90-A41B-F10D5F8B95E3} - System32\Tasks\{BFFDA647-C68E-454A-B685-C181E1C9EEF0} => Chrome.exe hxxp://ui.skype.com/ui/0/6.7.0.102/cs/go/help.faq.installer?LastError=1603
Task: {18A2D9C9-AE6F-47CF-93C1-DD37DF2F50FC} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO)
Task: {1AB0F5BC-6361-4DFA-82E6-E03EF58F9B29} - System32\Tasks\{17B8EBB4-ACC4-40FC-9E86-5E55A576447D} => pcalua.exe -a c:\vallen\jpegger\jpegger.exe -c -ui -q
Task: {1B030A60-CD3C-46E5-9D8D-09ECFB600B57} - System32\Tasks\C__Users_Ruda_Downloads_tvonline.exe => C:\Users\Ruda\Downloads\tvonline.exe
Task: {1C102DC1-8A62-47A3-9274-A435B620AD80} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO)
Task: {1C7ADF47-081E-47FE-B9EC-9E2096804F5D} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_19_0_0_226_pepper.exe [2015-10-16] (Adobe Systems Incorporated)
Task: {21F63DC7-40DC-4AFB-9776-A61419648025} - System32\Tasks\{D6893A38-300B-4034-AEEE-3EA1D9C1E11C} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {24C15B2A-A116-4C70-A288-C18B9E75ACAD} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {2547CE60-04D2-4E81-A72C-7D14A59FAE45} - System32\Tasks\{83EAA0A7-58FB-4FB5-8FF1-0142CB60BC2D} => Chrome.exe hxxp://ui.skype.com/ui/0/6.7.0.102/cs/go/help.faq.installer?LastError=1603
Task: {2578146D-2DC2-44CB-91CA-3AA5CB3B568F} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {29308477-8F7E-4D4F-92D5-F1534E61B6F5} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {29B6765C-3E5D-4669-B996-06AC5DF531B4} - System32\Tasks\{A1CF3082-39CC-4078-AEC3-25C007D9ED63} => Chrome.exe hxxp://ui.skype.com/ui/0/6.3.0.105/cs/go/help.faq.installer?LastError=1603
Task: {2E5A5DFF-2F52-4207-90F7-00A0E73FE0E2} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\Explorer.EXE [2015-08-19] (Microsoft Corporation)
Task: {2F8B20C9-A499-4C3C-A308-C6734868B719} - System32\Tasks\{71BFF601-8F49-4643-AC08-7CD109E89297} => pcalua.exe -a C:\PerfLogs\Desktop\wlsetup-web.exe -d C:\PerfLogs\Desktop
Task: {35CC0135-68CE-4901-9C72-2574184BFC15} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {37087F67-6F6B-497C-8243-910F7194E560} - System32\Tasks\{BF848EB0-7806-4688-96BF-34413190A1F6} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {37C1B75B-A500-45B3-B1AE-90E1EFD6C201} - System32\Tasks\{6BBE8BB2-5C12-4A6E-92BE-36A91ADE43FD} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Bubbletown\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Bubbletown\install.log"
Task: {380EF2F5-1933-45D0-84A2-E73992A28DD5} - \GoogleUpdateTaskUserS-1-5-21-841361005-909514878-2309378359-1002Core -> No File <==== ATTENTION
Task: {390CE497-C596-49E5-BCD6-0C54731FB706} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-04] (Google Inc.)
Task: {3C9616B2-742C-4820-AFAE-F3D2459E9677} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {3D966D87-5FE5-4FBC-8E90-DB0F48E454DB} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {3D98428B-0114-49A0-B54A-04EA96571626} - System32\Tasks\{A6F96F0C-EB4C-4E2F-AAFA-EDD1BC516833} => pcalua.exe -a C:\Users\Ruda\Downloads\StudioLine_PB4_Setup2015.exe -d C:\Users\Ruda\Downloads
Task: {3DB4F540-0DA0-4B85-B5BC-69EB92075629} - System32\Tasks\{1A9D60BE-8A7F-4668-8FC6-3784F8E88970} => pcalua.exe -a "C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\SetupTv.exe" -d "C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server"
Task: {3E3E65EA-6693-4ACC-947D-206853F50D65} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {3FAFCF43-3B51-4FC9-AEEF-12C98082BEFE} - System32\Tasks\{8B1919D7-7714-4D33-96FD-34DF36DC72E6} => C:\Users\Ruda\Downloads\Luminance-HDR-Win32-SETUP-v2.3.1-2.exe
Task: {42145BE5-4059-431F-919A-1A381C5966DE} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {4218984F-6740-45DF-9257-BEC2967174D6} - System32\Tasks\{2F0CBDFA-5117-4D5A-B7D9-EF2A2ADD726D} => pcalua.exe -a C:\Users\Ruda\Downloads\Install-winMd5Sum.exe -d C:\Users\Ruda\Downloads
Task: {46334A36-2A94-45FE-91AD-21E678AE8106} - System32\Tasks\{A002E75E-1495-4BA8-9A86-F4D44AD135DA} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Plants vs Zombies\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Plants vs Zombies\install.log"
Task: {47EC207C-CE57-4A35-B971-2C576D05595A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {4A1E6D7E-D213-44F7-80C9-08B4ABDA0F84} - System32\Tasks\{6FBB8A7D-5EE5-43AA-94E5-BE60D121BDD9} => C:\Program Files (x86)\WinThruster\WinThruster.exe
Task: {4D42D988-220F-4BC7-B7DC-B8E44055D893} - System32\Tasks\{2181C5A6-223E-4525-BB57-559A0BC59D43} => pcalua.exe -a E:\obsah\Programy\Ostatní\OpenOffice\OOo_3.2.0rc3_20100118_Win32Intel_install_cs.exe -d E:\obsah\Programy\Ostatní\OpenOffice
Task: {4D9E51FB-E864-44E3-877D-F041B107AFF8} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {4F30031C-762F-4B46-AE4E-CAA3B824446F} - System32\Tasks\Driver Booster SkipUAC (Ruda) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: {4FD437B7-9854-48BB-B791-B77A1FA57D9A} - System32\Tasks\_UPDATES => C:\Program Files (x86)\WinThruster\WinThruster.exe
Task: {51E1D65D-5519-4B6D-A39C-EE256A2936C7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-09-16] (Microsoft Corporation)
Task: {5419CF44-CE88-48A6-B039-9189BA32D732} - System32\Tasks\Western Digital\SmartWare\____Volume_6e381354_dc9f_4198_8755_bfb76c084475______Volume_3b72894c_0a4f_11e5_b6c2_94dbc999140f__ => C:\Program Files (x86)\Western Digital\WD SmartWare\BackupTask.exe [2015-07-20] (Western Digital Technologies, Inc.)
Task: {5702B3D4-BC81-45E2-9ABA-68BC3D512AEA} - System32\Tasks\{7F5B67FF-7FC5-433A-B43F-7C97030550DC} => C:\Users\Ruda\Downloads\Luminance-HDR-Win32-SETUP-v2.3.1-2.exe
Task: {596F0B48-FC9F-43E7-B75F-37DBD67176A3} - System32\Tasks\{3CA36EE5-E256-4568-B0D0-D654007BFB6E} => pcalua.exe -a E:\software\oem\oemsetup.exe -d E:\software\oem
Task: {5A08588B-9980-4FAE-A675-B8BE597CE218} - System32\Tasks\{7064E0ED-D387-4527-B3FB-D3E603B18F21} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u3
Task: {5DBF41C4-05C3-44C4-8A5A-9F8C01F8D2B4} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [2015-08-16] ()
Task: {5FAE1F37-D79B-48A7-A5D4-B4D2FC852F0F} - System32\Tasks\{638DA9E3-5093-48A0-A3A5-F81670454AC0} => pcalua.exe -a C:\PerfLogs\Desktop\wlsetup-all.exe -d C:\PerfLogs\Desktop
Task: {60C99AB4-F669-44B2-8138-1C54E3C0CC62} - System32\Tasks\{F2016396-B017-48F7-A855-8A17138D566C} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Turbo Fiesta\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Turbo Fiesta\install.log"
Task: {6767C748-1155-4DC7-950E-C83CEB286E71} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {67719D8C-DAB4-49E6-8582-1193B1A78A76} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {6EEE09B4-B95B-4D87-A249-CD376866AE18} - System32\Tasks\{E75DA550-6B86-4D12-A09B-086339995678} => pcalua.exe -a C:\Games\eSupport\eDriver\InstAll.exe -d C:\Games\eSupport\eDriver
Task: {6F59593C-44D4-46DF-A8A1-E7E6825ABE57} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {6FECF9BE-AED8-4627-80ED-91FF5361960F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {70CF69D2-989B-4CDF-AD9E-7F59AFD5BBE2} - System32\Tasks\{6735FC5D-B0D4-41FB-983F-D6A0632CB305} => C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe
Task: {710D3089-545A-4A96-8E0E-9E9CE192DFC6} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {733E75A1-36DE-49D1-8213-6A98BF18C630} - System32\Tasks\{48FF464B-754B-466F-B402-74777B4B1EBA} => pcalua.exe -a "C:\Program Files (x86)\BlazeVideo\BlazeDTV 6.0\oemsetup.exe" -d "C:\Program Files (x86)\BlazeVideo\BlazeDTV 6.0"
Task: {73598455-55F6-457F-A91D-18E3C7C42BAC} - System32\Tasks\{B4C4EABB-5B0D-4EF7-8449-BFA20337AEEC} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Dream Day First Home\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Dream Day First Home\install.log"
Task: {73D09C75-C9E8-4D7E-9A05-54315B7E0A74} - System32\Tasks\{17A30D0C-9F9A-42D2-ADD6-E6C2A6087AAA} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3\
Task: {73F4FA2A-59E5-4814-A2A9-1130AFCBD7A4} - System32\Tasks\{F4502145-42AF-418D-82E5-00CC641E2BB3} => pcalua.exe -a "C:\Users\Ruda\Downloads\wlsetup-web .exe" -d C:\Users\Ruda\Downloads
Task: {75977CC3-1E01-4AD2-A0BC-DE752D94BE37} - System32\Tasks\{86B6FF6A-565B-4AE2-A512-561E454D84F8} => C:\Program Files (x86)\ASUS\FaceLogon\logonmgr.exe [2012-02-21] (ASUSTek Computer Inc.)
Task: {75BC207C-E3E0-4806-8348-2B5081C91981} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-04] (Google Inc.)
Task: {773492A6-4F08-4DAF-9C1B-778BC17ACAED} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {782AF7B1-93C4-46BB-9331-671A3DEA7473} - System32\Tasks\ASUS Quick Gesture (x64) => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe [2012-04-11] (ASUSTeK Computer Inc.)
Task: {78588675-6CF3-4E50-B5B1-1EC34EAA2F6B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {796FB41F-561A-4CDB-A13E-DA8677AD52B3} - System32\Tasks\{3B64BBF6-C46E-482D-934F-2F09EA63E528} => Chrome.exe hxxp://ui.skype.com/ui/0/6.7.0.102/cs/go/help.faq.installer?LastError=1603
Task: {7AB9DA8D-80DE-46E8-B6EE-740D1548BEA2} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-06-20] (ASUSTeK Computer Inc.)
Task: {7B71E046-5E6D-490D-88C0-52032FCFBB27} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-10-14] (Microsoft Corporation)
Task: {7DDF9673-8D0B-4652-B795-1BEAD1206B65} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {7EFAFBEE-4A0E-4258-8F22-B56A074FC1EE} - System32\Tasks\{CE160BED-AA6C-4B07-B819-15E1D2ED4F96} => pcalua.exe -a "C:\Program Files (x86)\OpenAL\oalinst.exe"
Task: {7F061C75-D6FC-4936-98CD-A81BADAAA50E} - System32\Tasks\{E70DE9C2-B021-460F-B37F-A045C1BD318B} => pcalua.exe -a C:\Users\Ruda\Downloads\Install-winMd5Sum.exe -d C:\Users\Ruda\Downloads
Task: {81169D4E-22EB-4B20-B641-AFCE30989E53} - System32\Tasks\{E9107696-4A75-4598-8970-BB83E8189B72} => pcalua.exe -a "c:\program files (x86)\kingsoft\kingsoft antivirus\uni0nst.exe"
Task: {855C2966-0F57-492E-9289-49D291F7077F} - System32\Tasks\{EA700A6E-4619-4175-87F5-4DD8516627A9} => pcalua.exe -a E:\EasySetupAssistant\TL-WDR3600\EasySetupAssistant.exe -d E:\EasySetupAssistant\TL-WDR3600
Task: {8587508C-1D71-431F-8B0E-7E13D91C7A9A} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO)
Task: {85EC1DB6-DF1D-4F4F-84A8-8BF3C48D845E} - System32\Tasks\{DF50BD1D-B297-4274-95D1-9537FECDF4FD} => C:\Users\Ruda\Downloads\flock-2.6.0.en-US.win32.exe
Task: {87F70169-16E2-4A1D-BBBE-F5A3BE9BC361} - System32\Tasks\{3C018CAC-80C2-4550-ADE7-06563FDA0C82} => pcalua.exe -a C:\Users\Ruda\Downloads\wlsetup-web(1).exe -d C:\Users\Ruda\Downloads
Task: {88D198CE-E437-4254-AE25-9676A0237478} - System32\Tasks\{A26804D1-0BDE-418F-A76D-3BB43B98BE7A} => pcalua.exe -a "C:\VTRoot\HarddiskVolume3\Program Files\RegToy\Uninstall.exe" -d "C:\VTRoot\HarddiskVolume3\Program Files\RegToy"
Task: {8A6064C4-E61B-4442-A531-779DA76F62A6} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe [2012-02-17] (ASUSTek Computer Inc.)
Task: {8B8F3C55-A04A-4C63-93FA-25E3BA0E2AE0} - System32\Tasks\UnHackMe Task Scheduler => C:\Program Files (x86)\UnHackMe\hackmon.exe
Task: {8E1EF39C-C9C4-4604-B02C-5777F2E1D975} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {8E2AF1B8-A070-413C-AE43-A67FB379C16B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {8F6A888A-91DF-44B3-A669-E86ED83FE6AA} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe
Task: {90FAEF35-3C1F-472B-99EE-577638B37680} - System32\Tasks\{009319D0-F3BB-4BA5-A79C-64A982F5295A} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9
Task: {939124DF-2DA4-4E4E-A6A0-8CD1CCBA8F29} - System32\Tasks\{7BABCF0A-01CA-4261-8BB9-DABA1685EE01} => pcalua.exe -a "C:\VTRoot\HarddiskVolume3\Program Files\RegToy\UninstallManager.exe" -d "C:\VTRoot\HarddiskVolume3\Program Files\RegToy"
Task: {95BA0704-4383-4360-8A79-C648AC6657CC} - System32\Tasks\{767F9478-3C3D-4EAA-AB9E-61FD8DC323EC} => C:\Users\Ruda\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [2014-04-17] (Microsoft Corporation)
Task: {97D20EA0-DB4F-4839-B6D2-13C30F34706F} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-08-05] (COMODO)
Task: {9B604BA7-4990-4066-ADEE-F3E1E3AB2077} - System32\Tasks\{EF25F101-B955-42F5-9878-F24186A0A763} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {9C253EF1-E933-4C60-9C9C-2020699D01F1} - System32\Tasks\{4428E1A8-8A3F-43FB-A889-1A0C6ED40E8E} => C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe
Task: {9FAC172D-4CA5-4419-B661-B5C427F70794} - System32\Tasks\{F3796B24-9A0C-4930-A356-6EB166310D6C} => pcalua.exe -a "C:\Program Files (x86)\FlashGet Network\FlashGet 3\uninst.exe"
Task: {A0E4045A-A82E-40C0-8251-CCF2EF9C4DB5} - System32\Tasks\{4CAE5787-73F8-42AA-820D-13DFD7C1BC04} => pcalua.exe -a C:\Users\Ruda\Downloads\RegCleaner.exe -d C:\Users\Ruda\Downloads
Task: {A531A161-339D-4362-A29F-B71B712BCA8E} - System32\Tasks\{E28F3532-125E-4BE3-BC6B-C39100C0C74C} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Farm Frenzy 3 - Madagascar\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Farm Frenzy 3 - Madagascar\install.log"
Task: {A70A2388-E6AE-4C8A-BAC7-72241A828F77} - System32\Tasks\{91E9A25E-61BF-4194-9114-A965A07543E7} => pcalua.exe -a C:\Users\Ruda\Downloads\ytd-1.25.exe -d C:\Users\Ruda\Downloads
Task: {A7B080BD-8455-423E-BD5F-8964591CFCA3} - System32\Tasks\{37307FD2-BAB0-4627-B352-FDAEC564DE7C} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3
Task: {AA921623-B84A-4EC8-A6DA-5D46323FC6D9} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {AB77E151-016F-467E-9AF4-684115D7EC89} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {AC67AD99-D766-42BD-AA3C-E54A8AF5877A} - System32\Tasks\{73B9D479-0A88-4EEB-B984-43AF638557B4} => pcalua.exe -a E:\Driver\DrvInstall.exe -d E:\Driver
Task: {ACC1D449-0B5C-4147-9276-7881F1A0CEDF} - System32\Tasks\{F230008E-22AA-45DB-BC33-0AD646C51DAA} => Chrome.exe hxxp://ui.skype.com/ui/0/6.3.0.105/cs/go/help.faq.installer?LastError=1603
Task: {AE595AEE-C073-4DDA-968A-65FD87657463} - System32\Tasks\ASUS Quick Gesture => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe [2012-04-11] (ASUSTeK Computer Inc.)
Task: {B037B310-9877-4270-A541-A2A4D10B4928} - System32\Tasks\{12F3F5D9-2FE5-4D60-A69F-D350813ABF07} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {B0F0ECDF-4A10-4ECC-8763-D23D9CE7BC36} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {B4C8F661-6858-4DC2-BB54-79DCE70C2595} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-08-09] (AsusTek)
Task: {B55A9C0D-28C1-4861-A44E-13C84CF91CF0} - System32\Tasks\{2F1A52BF-5DBC-4050-AABA-981765D1D0C1} => pcalua.exe -a C:\Temp\582_32_ABBYY_FineReader_Sprint_9.0_OEM_for_Epson\INSTMSIW.EXE -d C:\Temp\582_32_ABBYY_FineReader_Sprint_9.0_OEM_for_Epson
Task: {B5DA53CF-30AF-41A6-BB33-58D9018F6487} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {B6D3F62D-EA60-47E6-94B5-0951D8F8A948} - System32\Tasks\{DAB592B0-49D5-4393-87F5-F69B1E2418A6} => pcalua.exe -a C:\Users\Ruda\Downloads\InstallPlus500(1).exe -d C:\Users\Ruda\Downloads
Task: {B8BE7DB0-DC02-4869-B796-E63BC5CF80BA} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-09-16] (Microsoft Corporation)
Task: {B9377CF7-D996-4021-B03C-C2B772A125D0} - System32\Tasks\{DC882E5B-1A06-4E48-B21B-3D82B17243FD} => c:\program files (x86)\maxthon\bin\maxthon.exe
Task: {B94B272D-07CA-4149-81EB-3B18D11F3FC3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-13] (Adobe Systems Incorporated)
Task: {BBDDDB77-53CE-4C7E-B2E4-460D1F5A80CB} - System32\Tasks\{FDD2165D-A239-4B97-935E-B3539B673288} => pcalua.exe -a D:\install.exe -d D:\
Task: {BCFAAA81-E865-4CC4-B387-1D54FCB965F5} - System32\Tasks\{3FDD096B-4477-4116-9577-8D01A2A457C0} => pcalua.exe -a C:\Users\Ruda\Downloads\IrfanView-4.32-cestina.exe -d C:\Users\Ruda\Downloads
Task: {C31E0E22-2242-4B96-8DD5-6399CBED420F} - System32\Tasks\{C841434A-58F6-4B51-A900-FDB75DD8C7C6} => pcalua.exe -a C:\Users\Ruda\FreeRapid-0.9u4\frd.exe -d C:\Users\Ruda\FreeRapid-0.9u4
Task: {C5C4A596-5FA3-49F5-97F4-625300DEED40} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {C71C5F8F-8CBE-41D5-A71A-DD9A34B238C1} - System32\Tasks\{75D8443C-5E6E-4EEC-9CA2-1CD4A83155EF} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Deadtime Stories\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Deadtime Stories\install.log"
Task: {C778374C-94FE-41B0-B705-5FC952201AC0} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {C787445F-7F00-4E87-854D-E25060E58B1F} - System32\Tasks\{EDE012CB-828B-43A7-B05D-799D50643F98} => pcalua.exe -a C:\Users\Ruda\Downloads\Q-Dir_Installer\Q-Dir_Installer.exe -d C:\Users\Ruda\Downloads\Q-Dir_Installer
Task: {C795DFDD-E73F-4421-AF65-2DAA23DCD7D5} - System32\Tasks\_DEFAULT => C:\Program Files (x86)\WinThruster\WinThruster.exe
Task: {C8924CBA-B328-40A6-A9A4-BF6EF0996B3B} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO)
Task: {C8C1F110-C824-438D-A675-90B8ED30FDCF} - System32\Tasks\{69E4AD2B-0444-4F0F-938E-E25216565717} => pcalua.exe -a C:\Users\Ruda\Downloads\irfanviewcestina.exe -d C:\Users\Ruda\Downloads
Task: {C9B0E551-C092-4A34-A052-48938833C4AE} - System32\Tasks\{A6A6EE80-91BB-4C25-B7AE-007E7827504E} => pcalua.exe -a C:\Users\Ruda\Downloads\PuranDefragFree73cz.exe -d C:\Users\Ruda\Downloads
Task: {CC12428E-D56B-4AD1-B482-958669ACE552} - System32\Tasks\{497236D4-2B86-47EE-B2DC-494DE0F459E0} => Chrome.exe hxxp://ui.skype.com/ui/0/6.7.0.102/cs/go/help.faq.installer?LastError=1603
Task: {CEC9A8BD-5C61-49CD-A500-1618F447A6D5} - System32\Tasks\{3A295E5E-DC55-4A47-B309-877E9C1DD03D} => pcalua.exe -a "C:\Users\Ruda\Downloads\x86\program files\Ralink Corporation\Ralink Bluetooth Stack\driver\usb\devcon.exe" -d "C:\Users\Ruda\Downloads\x86\program files\Ralink Corporation\Ralink Bluetooth Stack\driver\usb"
Task: {CF9D4545-F641-4ACF-B816-830CB54758B4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {CFFF0114-748E-4136-952C-9885E6DFD2BB} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [2015-07-10] (Microsoft Corporation)
Task: {D03F2332-EE2B-4B19-9FCE-81837046DBA9} - System32\Tasks\{B537248A-7A51-4F21-9537-1F4656D35C43} => pcalua.exe -a "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe" -d "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller"
Task: {D6B185A9-F7F8-4C0A-AD93-8228CEBA629D} - System32\Tasks\Western Digital\SmartWare\____Volume_6e381354_dc9f_4198_8755_bfb76c084475______Volume_fbdf3a95_23ae_11e5_9950_94dbc999140f__ => C:\Program Files (x86)\Western Digital\WD SmartWare\BackupTask.exe [2015-07-20] (Western Digital Technologies, Inc.)
Task: {DC3B6C01-BB96-4CC8-A94A-12D5DADC8CB2} - System32\Tasks\{F1C323FF-2AE3-4EE4-B2A7-664C45CF8786} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u3\FreeRapid-0.9u3
Task: {DCFE36AD-5A4B-4737-8371-E3AECD3D28F2} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-06-25] (ASUSTek Computer Inc.)
Task: {DD548504-31EE-43FF-A573-1E9BCB56DC76} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {E1CC17F3-46BC-4C83-9AB4-2D5301740B16} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-841361005-909514878-2309378359-1002 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {E21340CD-86AA-4ABB-B189-29E74BCD3B4B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-16] (Adobe Systems Incorporated)
Task: {E39B3F81-57A4-4C48-A27C-B7BB6641F6D9} - System32\Tasks\{6093F58B-05B8-4885-AC3E-5CBADB3B9EE8} => pcalua.exe -a "C:\Program Files (x86)\Q-Dir\Q-Dir.exe" -c -uninstall
Task: {E3A4C2E2-F09C-4FB8-AB3B-A5C57EA40DB8} - System32\Tasks\{F54D05B9-8665-451C-B33E-50DBCEE2C466} => pcalua.exe -a C:\Users\Ruda\Downloads\FreeRapid-0.9u4\frd.exe -d C:\Users\Ruda\Downloads\FreeRapid-0.9u4
Task: {E86C242E-58BE-4D9E-9CD7-377E682ABDA1} - System32\Tasks\{46D68E75-36A5-415B-870B-2044C36BB17D} => Chrome.exe hxxp://ui.skype.com/ui/0/6.3.0.105/cs/go/help.faq.installer?LastError=1603
Task: {E959E007-A71C-4952-8EA8-22DE146D6227} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {EAC240FD-628B-421C-B9D9-F9A6699C5447} - System32\Tasks\{8934D43F-07E3-4AC9-8B51-EE69159070D9} => pcalua.exe -a C:\Users\Ruda\Downloads\InstallPlus500.exe -d C:\PerfLogs\Desktop
Task: {EE121801-62E4-413E-90B1-35D247602CDC} - System32\Tasks\{565C191B-0775-4FC9-9A45-B4693D41137F} => pcalua.exe -a "C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe" -d "C:\Program Files (x86)\Maxthon\Bin"
Task: {F0496437-71B1-4E96-9E9C-3BC2F52CDE46} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F1F971D1-C6AC-4C78-BDA2-617D7F2B1D2B} - System32\Tasks\{9153B0BA-90A9-4180-9C9C-7732DF80A851} => pcalua.exe -a C:\Users\Ruda\Downloads\wlsetup-web.exe -d C:\Users\Ruda\Downloads
Task: {F22C2E35-F41F-4796-A405-B7B0FC0004FF} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-02-29] (ASUSTek Computer Inc.)
Task: {F68F5127-7E5C-43A9-B13E-6B79E1600FF9} - System32\Tasks\Wise Disk Cleaner Schedule Task => C:\Program Files (x86)\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe
Task: {F8762AE5-8D0F-4553-964B-38F1CB6524F3} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {F9CEAC5E-8BD9-4E8D-A9DD-72585A11D274} - System32\Tasks\{D0A82C02-D5B6-40F3-A6FE-5C6222ECAC6A} => Chrome.exe hxxp://ui.skype.com/ui/0/6.3.0.105/cs/go/help.faq.installer?LastError=1603
Task: {FACB8164-0888-403B-B4E6-7F59329EA90F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {FBB56E48-46C1-4174-A6F9-1E58A55FC723} - System32\Tasks\{974A3388-1B51-49AC-ADC4-7C199260FE17} => pcalua.exe -a C:\Users\Ruda\Downloads\iview436_setup.exe
Task: {FBC8485F-A585-489F-8E2C-C65FEABC1BEF} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {FFEE4F98-789F-4BC5-9EBF-91D4AC658C46} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_19_0_0_226_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (Whitelisted) ==============

2015-08-03 04:22 - 2015-08-03 04:22 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll
2015-08-19 21:38 - 2015-08-19 21:38 - 00404480 _____ () C:\Windows\System32\diagtrack_wininternal.dll
2014-11-25 20:25 - 2015-02-11 17:25 - 00216576 _____ () C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
2012-05-19 01:03 - 2015-10-27 11:56 - 00011776 _____ () C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
2015-10-01 09:16 - 2015-10-01 09:16 - 02494712 _____ () C:\Windows\system32\CoreUIComponents.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02494712 _____ () C:\Windows\System32\CoreUIComponents.dll
2015-01-08 22:02 - 2015-01-08 22:02 - 00067808 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
2015-10-01 09:15 - 2015-10-01 09:15 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2014-02-25 21:14 - 2014-02-25 21:14 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2014-02-25 21:11 - 2014-02-25 21:11 - 00086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2014-02-25 21:17 - 2015-10-11 23:12 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
2015-10-01 09:17 - 2015-10-01 09:17 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 12:00 - 2015-07-10 17:05 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 02028544 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesService.dll
2015-10-01 09:15 - 2015-10-01 09:15 - 00619008 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SignalsManager.dll
2015-10-01 09:16 - 2015-10-01 09:16 - 00928768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesBackgroundTasks.dll
2014-11-25 20:11 - 2014-11-25 20:11 - 00221184 _____ () C:\Program Files (x86)\GNU\GnuPG\libksba-8.dll
2014-11-25 19:57 - 2014-11-25 19:57 - 00050176 _____ () C:\Program Files (x86)\GNU\GnuPG\libw32pth-0.dll
2014-11-25 20:10 - 2014-11-25 20:10 - 00070144 _____ () C:\Program Files (x86)\GNU\GnuPG\libassuan-0.dll
2014-11-25 20:13 - 2014-11-25 20:13 - 00742912 _____ () C:\Program Files (x86)\GNU\GnuPG\libgcrypt-20.dll
2014-11-25 20:05 - 2014-11-25 20:05 - 00038400 _____ () C:\Program Files (x86)\GNU\GnuPG\libgpg-error-0.dll
2014-11-17 11:01 - 2000-01-01 01:00 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-07-21 17:02 - 2015-07-21 17:02 - 00557056 _____ () C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll
2015-09-25 09:09 - 2015-09-25 09:09 - 01020928 _____ () C:\Users\Ruda\AppData\Roaming\Mozilla\Firefox\Profiles\d929bzy3.default-1439143576991\extensions\support@lastpass.com\platform\WINNT_x86-msvc\components\lpxpcom.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows\cadkasdeinst01cz.exe:$CmdTcID
AlternateDataStreams: C:\Windows\explorer.exe:$CmdTcID
AlternateDataStreams: C:\Windows\notepad.exe:$CmdTcID
AlternateDataStreams: C:\Windows\unins000.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\accountaccessor.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\acmigration.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ACPBackgroundManagerPolicy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ActionCenter.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aitstatic.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AppointmentApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AppXDeploymentClient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AppXDeploymentExtensions.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AppXDeploymentServer.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AppxSysprep.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ASGCoInstaller_x64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\atmlib.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AudioEndpointBuilder.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\audiosrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\authui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\BCMLogon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\bcmttls.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\bcmwlrc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\BingMaps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\bisrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\btcoinst.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\BtContextMenu.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\BthRadioMedia.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\CallHistoryClient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\CellularAPI.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Chakra.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Chakradiag.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ChatApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ci.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cloudAP.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\configmanager2.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ContactApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ContentDeliveryManager.Utilities.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\coredpus.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\CoreMessaging.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\CoreUIComponents.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\CredProvDataModel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\d3d9.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dafWCN.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\DataSenseHandlers.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\DeviceEnroller.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\diagtrack.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\diagtrack_win.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\diagtrack_wininternal.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\difx64.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\directmanipulation.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dmcertinst.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dmcsps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dmenrollengine.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dwmcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\DWrite.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dxgi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\edgehtml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\EmailApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enppmon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enppui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enpres.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enrollmentapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ensppmon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ensppui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enspres.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\enterprisecsps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\escsvc64.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\esdevapp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\esent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\facecredentialprovider.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\fdWCN.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\FntCache.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\fontdrvhost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\fveapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\fwpolicyiomgr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\GamePanel.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\GfxUI.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\hevcdecoder.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\hkcmd.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\HttpsDataSource.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iertutil.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\igfxext.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\igfxpers.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\igfxsrvc.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\igfxtray.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\InputService.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\InstallAgent.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\JpMapControl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\jscript.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\jscript9.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\kerberos.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\KeywordDetectorMsftSidAdapter.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\KnobsCore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\KnobsCsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LicenseManager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LicenseManagerShellext.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationCrowdsource.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationFramework.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationFrameworkInternalPS.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationGeofences.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationPeCell.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationPeIP.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationPermissions.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationPeWiFi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationWebproxy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LocationWiFiAdapter.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LockAppBroker.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LockAppHost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LogonController.dll:$CmdTcID

[rudkr63]

AlternateDataStreams: C:\Windows\system32\MapConfiguration.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MapControlCore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MapsStore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MbaeApi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MbaeApiPublic.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MbaeParserTask.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MBMediaManager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MDMAppInstaller.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mdmmigrator.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mdmregistration.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MessagingDataModel2.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MFCaptureEngine.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfds.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MFMediaEngine.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfmkvsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfmp4srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfmpeg2srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfplat.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MFPlay.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfsvr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\modernexecserver.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mos.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MPSSVC.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MRT.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msctfuimanager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mshtmlmedia.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msmpeg2vdec.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MsSpellCheckingFacility.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mssprxy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mssrch.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msxml3.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msxml6.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MusNotificationUx.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ncryptprov.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ncsi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\netcenter.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NetSetupShim.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NetSetupSvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NetworkMobileSettings.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NetworkStatus.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ngccredprov.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ngckeyenum.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ngcsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nlasvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NlsData0009.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NlsLexicons0009.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\notepad.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NotificationController.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NotificationControllerPS.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NotificationObjFactory.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ntdll.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvapi64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvaudcap64v.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvd3dumx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispco6433788.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispco6434725.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispco6435354.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispco6435560.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispco6435582.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispco6435598.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispgenco6433788.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispgenco6434725.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispgenco6435354.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispgenco6435560.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispgenco6435582.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdispgenco6435598.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NvFBC64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\NvIFR64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvinitx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvoglshim64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvoglv64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvopencl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvumdshimx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvvsvc.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvwgf2umx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\omadmapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\omadmclient.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\OneDriveSettingSyncProvider.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\PackageStateRoaming.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\PhoneCallHistoryApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\PimIndexMaintenance.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\PlayToManager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pnidui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\powertracker.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\prm0009.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\provengine.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\provhandlers.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\provisioningcsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\provops.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\PsmServiceExtHost.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\psmsrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rdbui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RdpGroupPolicyExtension.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RDXService.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ReAgent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\remoteaudioendpoint.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RemoteNaturalLanguage.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\reseteng.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rpcrt4.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RtCRX64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\schedsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SearchProtocolHost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SecConfig.efi:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SensorsApi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SensorService.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SensorsNativeApi.V2.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SettingsHandlers_Notifications.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SettingsHandlers_nt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SettingsHandlers_UserAccount.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SettingSync.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SettingSyncHost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\shacct.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SharedStartModel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SharedStartModelShim.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\shell32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\StoreAgent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SubscriptionMgr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\syncmlhook.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\syncutil.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\sysmain.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SystemEventsBrokerServer.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\tetheringclient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\tetheringservice.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\TextInputFramework.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\tileobjserver.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\TokenBroker.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\tquery.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\twinapi.appcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\twinui.appcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\twinui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\UIAutomationCore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Unistore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\UserDataAccountApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\UserDataService.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\UserMgrProxy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\vaultsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\vcredist_x64.bat:$CmdTcID
AlternateDataStreams: C:\Windows\system32\vcredist_x64.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\VEDataLayerHelpers.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\VEEventDispatcher.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\VEStoreEventHandlers.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ViakaraokeSrv.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\VoiceActivationManager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\VPNv2CSP.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wcmcsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wcmsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WcnApi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WcnNetsh.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wcnwiz.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WdfCoInstaller01009.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wfdprov.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wifinetworkmanager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\win32kbase.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\win32kfull.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WinBioDataModel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.ApplicationModel.Store.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Cortana.Desktop.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Devices.Bluetooth.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Internal.Bluetooth.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Internal.Management.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Internal.Shell.Broker.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Media.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Media.Protection.PlayReady.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Media.Speech.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.Speech.Pal.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\windows.storage.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.UI.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.UI.Immersive.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.UI.Logon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.UI.PicturePassword.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.UI.Shell.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Windows.UI.Xaml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wininet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winload.efi:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winload.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winlogon.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winmde.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winresume.efi:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winresume.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WlanMediaManager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wlansvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wlidsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wltrynt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wmpmde.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\workfolderssvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wpnapps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wpncore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wpx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wu.upgrade.ps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wuaueng.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wuautoappupdate.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WUDFx02000.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wuuhext.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WWAHost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WWanAPI.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wwancfg.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wwanconn.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wwanmm.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wwansvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ActionCenter.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AppointmentApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AppXDeploymentClient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\atmlib.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\authui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\BingMaps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\BtnCtlsU.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\bzDCT.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\bzFlRdr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\CallHistoryClient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\CBLCtlsU.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Chakra.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Chakradiag.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ChatApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ContactApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\CoreMessaging.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\CoreUIComponents.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\CredProvDataModel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\d3d9.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\D3DX9_42.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\directmanipulation.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dwmcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\DWrite.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dxgi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\edgehtml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\EditCtlsU.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\EmailApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\esent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ExLvwU.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\explorer.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\fdWCN.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\FlashPlayerApp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\fmcodec.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\fontdrvhost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\fwpolicyiomgr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\GamePanel.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\GPhotos.scr:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\hevcdecoder.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iertutil.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\InputService.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\IntelCpHeciSvc.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\JpMapControl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\jscript.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\jscript9.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\kerberos.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LblCtlsU.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LicenseManager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LockAppBroker.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LockAppHost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LogonController.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MapConfiguration.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MapControlCore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MbaeApi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MbaeApiPublic.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mdmregistration.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mediarcpt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MessagingDataModel2.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MFCaptureEngine.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfds.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MFMediaEngine.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfmkvsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfmp4srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfmpeg2srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfplat.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MFPlay.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfsvr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mos.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msctfuimanager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mshtmlmedia.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msmpeg2vdec.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mssrch.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msvcr71.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msxml3.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msxml6.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ncryptprov.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\netcenter.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NetSetupShim.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NlsData0009.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NlsLexicons0009.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\notepad.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NotificationObjFactory.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ntdll.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvaudcap32v.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcompiler.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvd3dum.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NvFBC.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\NvIFR.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvinit.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvoglshim32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvoglv32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvopencl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvumdshim.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvwgf2um.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\PackageStateRoaming.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\PhoneCallHistoryApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\PlayToManager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ReAgent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ReInfo.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\remoteaudioendpoint.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\RemoteNaturalLanguage.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\rpcrt4.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\RsCRIcon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\SearchProtocolHost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\SensorsApi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\SensorsNativeApi.V2.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\SettingSync.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\SettingSyncHost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\shacct.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\shell32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\TabStripCtlU.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\tetheringclient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\TextInputFramework.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\TokenBroker.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\tquery.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\twinapi.appcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\twinui.appcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\twinui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\UIAutomationCore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Unistore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\UserDataAccountApis.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\UserMgrProxy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\usoapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\vcredist_x64.bat:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\vcredist_x64.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\VEDataLayerHelpers.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\VEEventDispatcher.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\VoiceActivationManager.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WcnApi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wcnwiz.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wfdprov.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.Internal.Management.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.Media.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.Media.Speech.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.Speech.Pal.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\windows.storage.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.UI.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.UI.Immersive.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.UI.Logon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Windows.UI.Xaml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wininet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\winmde.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wpnapps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WWAHost.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WWanAPI.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\anvsnddrv.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\AsusTP.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\athw10x.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\avc3.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\avckf.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\bcm42rly.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\BdaSup.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btath_a2dp.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btath_avdt.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btath_bus.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btath_flt.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btath_hcrp.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btath_lwflt.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btath_rcp.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btfilter.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\bthhfenum.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\bthmodem.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\bthport.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\btmaux.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\buttonconverter.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\CFRMD.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\dxgkrnl.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\dxgmms1.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\dxgmms2.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\fastfat.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\FWPKCLNT.SYS:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\iaStor.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\IT9135BDA.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mbam.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mbamchameleon.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mountmgr.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\msgpiowin32.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mwac.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\ndis.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\ntfs.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\nvlddmkm.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\nvpciflt.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\nvvad64v.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\pdc.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\portcls.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\rdyboost.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\RtsUer.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\sdbus.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\stornvme.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\storport.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\tcpip.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\tunnel.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\usbhub.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\USBHUB3.SYS:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\usbscan.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\USBXHCI.SYS:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\VClone.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\wdcsam64.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\Wdf01000.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\WdiWiFi.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\wof.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\wpcfltr.sys:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\Drivers\afc.sys:$CmdTcID
AlternateDataStreams: C:\ProgramData\Temp:4D066AD2
AlternateDataStreams: C:\ProgramData\Temp:8AD1F2E0
AlternateDataStreams: C:\ProgramData\Temp:DBC416F8
AlternateDataStreams: C:\ProgramData\Temp:F169C698
AlternateDataStreams: C:\ProgramData\Temp:FAB80532
AlternateDataStreams: C:\Users\Public\Documents\Bluetooth_QualcommAtheros_Win7_64_VER801318.zip:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\1801538.xlsx:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\334.89-notebook-win8-win7-64bit-international-whql.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\337.88-notebook-win8-win7-64bit-international-whql.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\355.60-notebook-win10-64bit-international-whql.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\355.60-notebook-win10-64bit-international-whql.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\AdobeAIRInstaller.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\adobereader-setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\adobereader-setup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\Apache_OpenOffice_4.1.1_Win_x86_install_cs.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\aTube_Catcher_ATU3_8001(1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\aTube_Catcher_ATU3_8001(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\avc-ultimate.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\AVG_Remover.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\AVG_Remover.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\cbsidlm-cbsi188-Ashampoo_Internet_Accelerator-ORG-10699423.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\cc-setup(1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\cc-setup(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\cdbxp_setup_4.5.6.5844.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\cdbxp_setup_4.5.6.5844.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\ChromeSetup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\cispremium_installer(1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\cispremium_installer(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\dfsetup219.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\epson374608eu.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\EpsonConnect130.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\FFSetup3.7.0.0.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\FFSetup3.7.0.0.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\FirefoxSetup36.0cz.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\flashplayer18ppau_ha_install.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\GeForce_Experience_v2.5.12.11.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\GeForce_Experience_v2.5.12.11.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\GPU-Z_ASUS_ROG_0.8.5.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\GPU-Z_ASUS_ROG_0.8.5.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\gs916w64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\gs916w64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\InstallPlus500.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\Install_1.bat:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\InstalRecepty.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\InstalRecepty.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\JavaSetup8u60.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\jre-8u31-windows-x64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\kodi-15.1-Isengard.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\kodi-15.1-Isengard.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\lastpass_x64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\LibreOffice_5.0.2_Win_x86.msi:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\LibreOffice_5.0.2_Win_x86.msi:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\mbam-setup-2.2.0.1024.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\mbam-setup-2.2.0.1024.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\MediaCreationToolx64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\MediaCreationToolx64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\nppInstaller.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\OCCTPT4.4.1.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\OCCTPT4.4.1.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\pdf24-creator-7.2.0.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\pdf24-creator-7.2.0.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\PDFXVwer(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\peazip-5.7.2.WINDOWS.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\peazip-5.7.2.WINDOWS.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\PrintScreen540_Setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\RapportSetup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\RapportSetup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\rcsetup148.exe RECUVA.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\Setup_BullzipPDFPrinter_10_19_0_2457_FREE.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\Seznam.cz.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\Seznam.cz.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\Shockwave_Installer_Slim(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\SkypeSetupFull.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\SkypeSetupFull.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\smplayer-15.9.0-win32.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\smplayer-15.9.0-win32.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\spsetup128.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\SystemExplorerSetup_700.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\ThunderbirdSetup31.7.0.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\ThunderbirdSetup31.7.0.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\TiskObalek_CZ_3229.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\TiskObalek_CZ_3229.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\Uninstall_2.bat:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\uschovna_cz_1_1_0.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\uschovna_cz_1_1_0.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\uTorrent221.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\vlc-2.2.1-win32.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\vlc-2.2.1-win32.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\WinPcap_4_1_3.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\WinPcap_4_1_3.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\XnView-win-full.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\XnView-win-full.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\zps18_cz_aktualizace_02.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\zps18_cz_aktualizace_02.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Downloads\zps18_cz_templates.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Downloads\zps18_cz_templates.exe:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\AppData\Roaming\inst.exe:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Documents\Krčková Jana.1964 .wav:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Documents\PayPal.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Ruda\Documents\PayPal.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Ruda\Documents\Prasek_do_peciva.pdf:$CmdZnID

==================== Safe Mode (Whitelisted) ===================